Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by smtp.lore.kernel.org (Postfix) with ESMTP id 75DDAC636D6 for ; Tue, 31 Jan 2023 02:11:31 +0000 (UTC) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231388AbjAaCLa (ORCPT ); Mon, 30 Jan 2023 21:11:30 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:41828 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229460AbjAaCL2 (ORCPT ); Mon, 30 Jan 2023 21:11:28 -0500 Received: from szxga08-in.huawei.com (szxga08-in.huawei.com [45.249.212.255]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 100952C642; Mon, 30 Jan 2023 18:11:27 -0800 (PST) Received: from dggpeml500023.china.huawei.com (unknown [172.30.72.53]) by szxga08-in.huawei.com (SkyGuard) with ESMTP id 4P5T504NvCz16NHn; Tue, 31 Jan 2023 10:09:24 +0800 (CST) Received: from [10.67.110.112] (10.67.110.112) by dggpeml500023.china.huawei.com (7.185.36.114) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.34; Tue, 31 Jan 2023 10:11:24 +0800 Message-ID: Date: Tue, 31 Jan 2023 10:11:24 +0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.5.1 Subject: Re: [PATCH -next] evm: call dump_security_xattr() in all cases to remove code duplication Content-Language: en-US From: xiujianfeng To: , , , , CC: , , References: <20230131020031.114086-1-xiujianfeng@huawei.com> In-Reply-To: <20230131020031.114086-1-xiujianfeng@huawei.com> Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit X-Originating-IP: [10.67.110.112] X-ClientProxiedBy: dggems705-chm.china.huawei.com (10.3.19.182) To dggpeml500023.china.huawei.com (7.185.36.114) X-CFilter-Loop: Reflected Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org sorry, I forget to add v2 tag, this is based on commit b8dc57947379 ("ima: fix ima_delete_rules() kernel-doc warning"). On 2023/1/31 10:00, Xiu Jianfeng wrote: > Currently dump_security_xattr() is used to dump security xattr value > which is larger than 64 bytes, otherwise, pr_debug() is used. In order > to remove code duplication, refator dump_security_xattr() and call it in > all cases. > > Signed-off-by: Xiu Jianfeng > --- > security/integrity/evm/evm_crypto.c | 33 ++++++++++++++--------------- > 1 file changed, 16 insertions(+), 17 deletions(-) > > diff --git a/security/integrity/evm/evm_crypto.c b/security/integrity/evm/evm_crypto.c > index fa5ff13fa8c9..0fe6c9cd8eab 100644 > --- a/security/integrity/evm/evm_crypto.c > +++ b/security/integrity/evm/evm_crypto.c > @@ -183,8 +183,8 @@ static void hmac_add_misc(struct shash_desc *desc, struct inode *inode, > * Dump large security xattr values as a continuous ascii hexademical string. > * (pr_debug is limited to 64 bytes.) > */ > -static void dump_security_xattr(const char *prefix, const void *src, > - size_t count) > +static void dump_security_xattr_l(const char *prefix, const void *src, > + size_t count) > { > #if defined(DEBUG) || defined(CONFIG_DYNAMIC_DEBUG) > char *asciihex, *p; > @@ -200,6 +200,16 @@ static void dump_security_xattr(const char *prefix, const void *src, > #endif > } > > +static void dump_security_xattr(const char *name, const char *value, > + size_t value_len) > +{ > + if (value_len < 64) > + pr_debug("%s: (%zu) [%*phN]\n", name, value_len, > + (int)value_len, value); > + else > + dump_security_xattr_l(name, value, value_len); > +} > + > /* > * Calculate the HMAC value across the set of protected security xattrs. > * > @@ -254,15 +264,9 @@ static int evm_calc_hmac_or_hash(struct dentry *dentry, > if (is_ima) > ima_present = true; > > - if (req_xattr_value_len < 64) > - pr_debug("%s: (%zu) [%*phN]\n", req_xattr_name, > - req_xattr_value_len, > - (int)req_xattr_value_len, > - req_xattr_value); > - else > - dump_security_xattr(req_xattr_name, > - req_xattr_value, > - req_xattr_value_len); > + dump_security_xattr(req_xattr_name, > + req_xattr_value, > + req_xattr_value_len); > continue; > } > size = vfs_getxattr_alloc(&init_user_ns, dentry, xattr->name, > @@ -286,12 +290,7 @@ static int evm_calc_hmac_or_hash(struct dentry *dentry, > if (is_ima) > ima_present = true; > > - if (xattr_size < 64) > - pr_debug("%s: (%zu) [%*phN]", xattr->name, xattr_size, > - (int)xattr_size, xattr_value); > - else > - dump_security_xattr(xattr->name, xattr_value, > - xattr_size); > + dump_security_xattr(xattr->name, xattr_value, xattr_size); > } > hmac_add_misc(desc, inode, type, data->digest); >