commit 0183d699bf06efe5bf92785a2057d57de91f56d2
author Hanno Becker <hanno.becker@arm.com> Fri Jul 12 08:50:37 2019 +0100
committer Hanno Becker <hanno.becker@arm.com> Wed Aug 14 15:06:06 2019 +0100
tree 41efec2adabb992a78ac625dc68e81848cec3588
parent 7ae20e0f4c3c886309fed8b6940696526f90bc86

Mark DTLS replay check as `const` on the SSL context

include/mbedtls/ssl_internal.h

diff --git a/include/mbedtls/ssl_internal.h b/include/mbedtls/ssl_internal.h
index 5889972..2486892 100644
--- a/include/mbedtls/ssl_internal.h
+++ b/include/mbedtls/ssl_internal.h
@@ -969,7 +969,7 @@
 
 /* Visible for testing purposes only */
 #if defined(MBEDTLS_SSL_DTLS_ANTI_REPLAY)
-int mbedtls_ssl_dtls_replay_check( mbedtls_ssl_context *ssl );
+int mbedtls_ssl_dtls_replay_check( mbedtls_ssl_context const *ssl );
 void mbedtls_ssl_dtls_replay_update( mbedtls_ssl_context *ssl );
 #endif
 

library/ssl_tls.c

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index f16b619..d200304 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -4608,7 +4608,7 @@
 /*
  * Return 0 if sequence number is acceptable, -1 otherwise
  */
-int mbedtls_ssl_dtls_replay_check( mbedtls_ssl_context *ssl )
+int mbedtls_ssl_dtls_replay_check( mbedtls_ssl_context const *ssl )
 {
     uint64_t rec_seqnum = ssl_load_six_bytes( ssl->in_ctr + 2 );
     uint64_t bit;