[PATCH net-next 0/4] net: Mark the sk parameter of routing functions as 'const'.
Guillaume Nault
gnault at redhat.com
Tue Jul 11 13:06:00 UTC 2023
The sk_getsecid security hook prevents the use of a const sk pointer in
several routing functions. Since this hook should only read sk data,
make its sk argument const (patch 1), then constify the sk parameter of
various routing functions (patches 2-4).
Build-tested with make allmodconfig.
Guillaume Nault (4):
security: Constify sk in the sk_getsecid hook.
ipv4: Constify the sk parameter of ip_route_output_*().
ipv6: Constify the sk parameter of several helper functions.
pptp: Constify the po parameter of pptp_route_output().
drivers/net/ppp/pptp.c | 4 ++--
include/linux/icmpv6.h | 10 ++++------
include/linux/lsm_hook_defs.h | 2 +-
include/linux/security.h | 5 +++--
include/net/route.h | 6 +++---
net/ipv6/datagram.c | 7 ++++---
net/ipv6/icmp.c | 6 ++----
net/ipv6/mcast.c | 8 +++-----
security/security.c | 2 +-
security/selinux/hooks.c | 4 ++--
10 files changed, 25 insertions(+), 29 deletions(-)
--
2.39.2
More information about the Linux-security-module-archive
mailing list