ima: Define new template fields xattrnames, xattrlengths and xattrvalues

This patch defines the new template fields xattrnames, xattrlengths and xattrvalues, which contain respectively a list of xattr names (strings, separated by |), lengths (u32, hex) and values (hex). If an xattr is not present, the name and length are not displayed in the measurement list. Reported-by: kernel test robot <lkp@intel.com> (Missing prototype def) Signed-off-by: Roberto Sassu <roberto.sassu@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
author: Roberto Sassu <roberto.sassu@huawei.com> 2021-06-01 10:23:38 +0200
committer: Mimi Zohar <zohar@linux.ibm.com> 2021-06-02 18:56:13 -0400
commit: 8314b6732ae4e600bb933e108f96ce0176acb09c (patch)
tree: 9fd2990b529a468a574454461ee8a92f763e23ff /Documentation/security
parent: 8c7a703ec9787a1b45b024e9acd253328422dcbd (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/Documentation/security/IMA-templates.rst b/Documentation/security/IMA-templates.rst
index 65c1ce451d08..6a58760a0a35 100644
--- a/Documentation/security/IMA-templates.rst
+++ b/Documentation/security/IMA-templates.rst
@@ -78,6 +78,10 @@ descriptors by adding their identifier to the format string
  - 'iuid': the inode UID;
  - 'igid': the inode GID;
  - 'imode': the inode mode;
+ - 'xattrnames': a list of xattr names (separated by |), only if the xattr is
+    present;
+ - 'xattrlengths': a list of xattr lengths (u32), only if the xattr is present;
+ - 'xattrvalues': a list of xattr values;
 
 
 Below, there is the list of defined template descriptors:
author	Roberto Sassu <roberto.sassu@huawei.com>	2021-06-01 10:23:38 +0200
committer	Mimi Zohar <zohar@linux.ibm.com>	2021-06-02 18:56:13 -0400
commit	8314b6732ae4e600bb933e108f96ce0176acb09c (patch)
tree	9fd2990b529a468a574454461ee8a92f763e23ff /Documentation/security
parent	8c7a703ec9787a1b45b024e9acd253328422dcbd (diff)