VFS: security/: d_backing_inode() annotations

 */

static inline bool is_deleted(struct dentry *dentry)

{

	if (d_unlinked(dentry) && dentry->d_inode->i_nlink == 0)

	if (d_unlinked(dentry) && d_backing_inode(dentry)->i_nlink == 0)

		return 1;

	return 0;

}

	struct path link = { new_dir->mnt, new_dentry };

	struct path target = { new_dir->mnt, old_dentry };

	struct path_cond cond = {

		old_dentry->d_inode->i_uid,

		old_dentry->d_inode->i_mode

		d_backing_inode(old_dentry)->i_uid,

		d_backing_inode(old_dentry)->i_mode

	};

	char *buffer = NULL, *buffer2 = NULL;

	const char *lname, *tname = NULL, *info = NULL;

				  struct dentry *dentry, u32 mask)

{

	struct path path = { mnt, dentry };

	struct path_cond cond = { dentry->d_inode->i_uid,

				  dentry->d_inode->i_mode

	struct path_cond cond = { d_backing_inode(dentry)->i_uid,

				  d_backing_inode(dentry)->i_mode

	};

	return common_perm(op, &path, mask, &cond);

static int common_perm_rm(int op, struct path *dir,

			  struct dentry *dentry, u32 mask)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	struct path_cond cond = { };

	if (!inode || !dir->mnt || !mediated_filesystem(dentry))

static int apparmor_path_truncate(struct path *path)

{

	struct path_cond cond = { path->dentry->d_inode->i_uid,

				  path->dentry->d_inode->i_mode

	struct path_cond cond = { d_backing_inode(path->dentry)->i_uid,

				  d_backing_inode(path->dentry)->i_mode

	};

	if (!path->mnt || !mediated_filesystem(path->dentry))

	if (!unconfined(profile)) {

		struct path old_path = { old_dir->mnt, old_dentry };

		struct path new_path = { new_dir->mnt, new_dentry };

		struct path_cond cond = { old_dentry->d_inode->i_uid,

					  old_dentry->d_inode->i_mode

		struct path_cond cond = { d_backing_inode(old_dentry)->i_uid,

					  d_backing_inode(old_dentry)->i_mode

		};

		error = aa_path_perm(OP_RENAME_SRC, profile, &old_path, 0,

static int apparmor_path_chown(struct path *path, kuid_t uid, kgid_t gid)

{

	struct path_cond cond =  { path->dentry->d_inode->i_uid,

				   path->dentry->d_inode->i_mode

	struct path_cond cond =  { d_backing_inode(path->dentry)->i_uid,

				   d_backing_inode(path->dentry)->i_mode

	};

	if (!mediated_filesystem(path->dentry))

 */

int cap_inode_need_killpriv(struct dentry *dentry)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	int error;

	if (!inode->i_op->getxattr)

 */

int cap_inode_killpriv(struct dentry *dentry)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	if (!inode->i_op->removexattr)

	       return 0;

 */

int get_vfs_caps_from_disk(const struct dentry *dentry, struct cpu_vfs_cap_data *cpu_caps)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	__u32 magic_etc;

	unsigned tocopy, i;

	int size;

				size_t req_xattr_value_len,

				char type, char *digest)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	struct shash_desc *desc;

	char **xattrname;

	size_t xattr_size = 0;

int evm_update_evmxattr(struct dentry *dentry, const char *xattr_name,

			const char *xattr_value, size_t xattr_value_len)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	struct evm_ima_xattr_data xattr_data;

	int rc = 0;

static int evm_find_protected_xattrs(struct dentry *dentry)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	char **xattr;

	int error;

	int count = 0;

			/* Replace RSA with HMAC if not mounted readonly and

			 * not immutable

			 */

			if (!IS_RDONLY(dentry->d_inode) &&

			    !IS_IMMUTABLE(dentry->d_inode))

			if (!IS_RDONLY(d_backing_inode(dentry)) &&

			    !IS_IMMUTABLE(d_backing_inode(dentry)))

				evm_update_evmxattr(dentry, xattr_name,

						    xattr_value,

						    xattr_value_len);

		return INTEGRITY_UNKNOWN;

	if (!iint) {

		iint = integrity_iint_find(dentry->d_inode);

		iint = integrity_iint_find(d_backing_inode(dentry));

		if (!iint)

			return INTEGRITY_UNKNOWN;

	}

 */

static enum integrity_status evm_verify_current_integrity(struct dentry *dentry)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	if (!evm_initialized || !S_ISREG(inode->i_mode) || evm_fixmode)

		return 0;

	if (evm_status == INTEGRITY_NOXATTRS) {

		struct integrity_iint_cache *iint;

		iint = integrity_iint_find(dentry->d_inode);

		iint = integrity_iint_find(d_backing_inode(dentry));

		if (iint && (iint->flags & IMA_NEW_FILE))

			return 0;

	}

out:

	if (evm_status != INTEGRITY_PASS)

		integrity_audit_msg(AUDIT_INTEGRITY_METADATA, dentry->d_inode,

		integrity_audit_msg(AUDIT_INTEGRITY_METADATA, d_backing_inode(dentry),

				    dentry->d_name.name, "appraise_metadata",

				    integrity_status_msg[evm_status],

				    -EPERM, 0);

 */

void evm_inode_post_removexattr(struct dentry *dentry, const char *xattr_name)

{

	struct inode *inode = dentry->d_inode;

	struct inode *inode = d_backing_inode(dentry);

	if (!evm_initialized || !evm_protected_xattr(xattr_name))

		return;

	if ((evm_status == INTEGRITY_PASS) ||

	    (evm_status == INTEGRITY_NOXATTRS))

		return 0;

	integrity_audit_msg(AUDIT_INTEGRITY_METADATA, dentry->d_inode,

	integrity_audit_msg(AUDIT_INTEGRITY_METADATA, d_backing_inode(dentry),

			    dentry->d_name.name, "appraise_metadata",

			    integrity_status_msg[evm_status], -EPERM, 0);

	return -EPERM;