Re: [RFC PATCH v11 15/19] fsverity: consume builtin signature via LSM hook

From: Fan Wu
Date: Thu Oct 05 2023 - 12:00:06 EST

Next message: Kirill A. Shutemov: "[PATCH 10/13] x86/tdx: Convert shared memory back to private on kexec"
Previous message: Amir Goldstein: "Re: [PATCH v2 89/89] fs: move i_generation into new hole created after timestamp conversion"
In reply to: Eric Biggers: "Re: [RFC PATCH v11 15/19] fsverity: consume builtin signature via LSM hook"
Next in thread: Fan Wu: "[RFC PATCH v11 08/19] uapi|audit|ipe: add ipe auditing support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 10/4/2023 7:27 PM, Eric Biggers wrote:

On Wed, Oct 04, 2023 at 03:09:42PM -0700, Fan Wu wrote:

+#ifdef CONFIG_FS_VERITY_BUILTIN_SIGNATURES
+static int fsverity_inode_setsecurity(struct inode *inode,
+ struct fsverity_descriptor *desc)
+{
+ return security_inode_setsecurity(inode, FS_VERITY_INODE_SEC_NAME,
+ desc->signature,
+ le32_to_cpu(desc->sig_size), 0);
+}

Why isn't the type of the second argument 'const struct fsverity_descriptor *'?

- Eric

Thanks for the suggestion. I agree that adding 'const' here is a better approach. I will update this in the next version.

-Fan

Next message: Kirill A. Shutemov: "[PATCH 10/13] x86/tdx: Convert shared memory back to private on kexec"
Previous message: Amir Goldstein: "Re: [PATCH v2 89/89] fs: move i_generation into new hole created after timestamp conversion"
In reply to: Eric Biggers: "Re: [RFC PATCH v11 15/19] fsverity: consume builtin signature via LSM hook"
Next in thread: Fan Wu: "[RFC PATCH v11 08/19] uapi|audit|ipe: add ipe auditing support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]