From 3be86de046e00897e05f1330b9fe17459735f294 Mon Sep 17 00:00:00 2001
From: Dmitry Vyukov <dvyukov@google.com>
Date: Fri, 23 Feb 2018 11:55:37 +0100
Subject: sys/linux: prevent programs from doing arbitrary writes with
 ARCH_SET_FS

---
 prog/encoding.go | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'prog/encoding.go')

diff --git a/prog/encoding.go b/prog/encoding.go
index daa7eb71d..38f24f8fa 100644
--- a/prog/encoding.go
+++ b/prog/encoding.go
@@ -217,6 +217,9 @@ func (target *Target) Deserialize(data []byte) (prog *Prog, err error) {
 	if err := prog.validate(); err != nil {
 		return nil, err
 	}
+	for _, c := range prog.Calls {
+		target.SanitizeCall(c)
+	}
 	return
 }
 
-- 
cgit mrf-deployment