On Oct 10, 2024 =?UTF-8?q?Micka=C3=ABl=20Sala=C3=BCn?= <mic@xxxxxxxxxxx> wrote:
>
> Use the new inode_get_ino() helper to log the user space's view of
> inode's numbers instead of the private kernel values.
>
> Cc: Mimi Zohar <zohar@xxxxxxxxxxxxx>
> Cc: Roberto Sassu <roberto.sassu@xxxxxxxxxx>
> Cc: Dmitry Kasatkin <dmitry.kasatkin@xxxxxxxxx>
> Cc: Eric Snowberg <eric.snowberg@xxxxxxxxxx>
> Signed-off-by: Mickaël Salaün <mic@xxxxxxxxxxx>
> ---
> security/integrity/integrity_audit.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
Should we also need to update the inode value used in hmac_add_misc()?
diff --git a/security/integrity/evm/evm_crypto.c b/security/integrity/evm/evm_crypto.c
index 7c06ffd633d2..68ae454e187f 100644
--- a/security/integrity/evm/evm_crypto.c
+++ b/security/integrity/evm/evm_crypto.c
@@ -155,7 +155,7 @@ static void hmac_add_misc(struct shash_desc *desc, struct inode *inode,
* signatures
*/
if (type != EVM_XATTR_PORTABLE_DIGSIG) {
- hmac_misc.ino = inode->i_ino;
+ hmac_misc.ino = inode_get_ino(inode->i_ino);
hmac_misc.generation = inode->i_generation;
}
/* The hmac uid and gid must be encoded in the initial user
--
paul-moore.com
