CVE-2023-0614 s4-acl: Make some parameters const

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15270

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
[abartlet@samba.org Adapted to code without newer
 acl_check_access_on_attribute_implicit_owner name]

diff --git a/source4/dsdb/samdb/ldb_modules/acl_util.c b/source4/dsdb/samdb/ldb_modules/acl_util.c
index ebaac067b93235d9c0f57aa45d028169b5a5379d..a7251407f447c5245fa3c949ead624fdbb4add68 100644 (file)
--- a/source4/dsdb/samdb/ldb_modules/acl_util.c
+++ b/source4/dsdb/samdb/ldb_modules/acl_util.c
@@ -97,8 +97,8 @@ int dsdb_module_check_access_on_dn(struct ldb_module *module,
 
 int acl_check_access_on_attribute(struct ldb_module *module,
                                  TALLOC_CTX *mem_ctx,
-                                 struct security_descriptor *sd,
-                                 struct dom_sid *rp_sid,
+                                 const struct security_descriptor *sd,
+                                 const struct dom_sid *rp_sid,
                                  uint32_t access_mask,
                                  const struct dsdb_attribute *attr,
                                  const struct dsdb_class *objectclass)