[apparmor] [PATCH RESEND] apparmor: Remove redundant if check in sk_peer_get_label
John Johansen
john.johansen at canonical.com
Wed Mar 18 06:32:23 UTC 2026
On 3/17/26 17:21, Thorsten Blum wrote:
> Remove the redundant if check in sk_peer_get_label() and return
> ERR_PTR(-ENOPROTOOPT) directly.
>
> Signed-off-by: Thorsten Blum <thorsten.blum at linux.dev>
this has now been pulled into my tree
> ---
> security/apparmor/lsm.c | 6 +-----
> 1 file changed, 1 insertion(+), 5 deletions(-)
>
> diff --git a/security/apparmor/lsm.c b/security/apparmor/lsm.c
> index c1d42fc72fdb..f7bcfed40222 100644
> --- a/security/apparmor/lsm.c
> +++ b/security/apparmor/lsm.c
> @@ -1528,15 +1528,11 @@ static int apparmor_socket_sock_rcv_skb(struct sock *sk, struct sk_buff *skb)
> static struct aa_label *sk_peer_get_label(struct sock *sk)
> {
> struct aa_sk_ctx *ctx = aa_sock(sk);
> - struct aa_label *label = ERR_PTR(-ENOPROTOOPT);
>
> if (rcu_access_pointer(ctx->peer))
> return aa_get_label_rcu(&ctx->peer);
>
> - if (sk->sk_family != PF_UNIX)
> - return ERR_PTR(-ENOPROTOOPT);
> -
> - return label;
> + return ERR_PTR(-ENOPROTOOPT);
> }
>
> /**
More information about the AppArmor
mailing list