ima: Define new template field imode

This patch defines the new template field imode, which includes the inode mode. It can be used by a remote verifier to verify the EVM portable signature, if it was included with the template fields sig or evmsig. Signed-off-by: Roberto Sassu <roberto.sassu@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
author: Roberto Sassu <roberto.sassu@huawei.com> 2021-05-28 09:38:08 +0200
committer: Mimi Zohar <zohar@linux.ibm.com> 2021-06-01 15:17:30 -0400
commit: f8216f6b957f5657c5f4c97f4b037120c6f236bc (patch)
tree: ce1daa6226b37167710857084645f6444d89b0ba /Documentation/security
parent: ima: Define new template fields iuid and igid (diff)
download: linux-dev-f8216f6b957f5657c5f4c97f4b037120c6f236bc.tar.xz
linux-dev-f8216f6b957f5657c5f4c97f4b037120c6f236bc.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/Documentation/security/IMA-templates.rst b/Documentation/security/IMA-templates.rst
index bf8ce4cf5878..65c1ce451d08 100644
--- a/Documentation/security/IMA-templates.rst
+++ b/Documentation/security/IMA-templates.rst
@@ -77,6 +77,7 @@ descriptors by adding their identifier to the format string
  - 'evmsig': the EVM portable signature;
  - 'iuid': the inode UID;
  - 'igid': the inode GID;
+ - 'imode': the inode mode;
 
 
 Below, there is the list of defined template descriptors:
author	Roberto Sassu <roberto.sassu@huawei.com>	2021-05-28 09:38:08 +0200
committer	Mimi Zohar <zohar@linux.ibm.com>	2021-06-01 15:17:30 -0400
commit	f8216f6b957f5657c5f4c97f4b037120c6f236bc (patch)
tree	ce1daa6226b37167710857084645f6444d89b0ba /Documentation/security
parent	ima: Define new template fields iuid and igid (diff)
download	linux-dev-f8216f6b957f5657c5f4c97f4b037120c6f236bc.tar.xz linux-dev-f8216f6b957f5657c5f4c97f4b037120c6f236bc.zip