Lines Matching +full:files +full:- +full:based

1 # SPDX-License-Identifier: GPL-2.0-only
20 	  values of executables and other sensitive system files,
28 	  whether or not critical system files have been modified.
60 	  Disabling this option will disregard LSM based policy rules.
71 	  limited to 255 characters.  The 'ima-ng' measurement list
78 		bool "ima-ng (default)"
80 		bool "ima-sig"
87 	default "ima-ng" if IMA_NG_TEMPLATE
88 	default "ima-sig" if IMA_SIG_TEMPLATE
163 	  <http://linux-ima.sourceforge.net>
173           based on run time secure boot flags.
187 	  to be signed.  Unsigned files might prevent the system from
221 	  Kernel module signatures can only be verified by IMA-appraisal,
242 	bool "Support module-style signatures for appraisal"
249 	   Adds support for signatures appended to files. The format of the
267 	bool "Permit keys validly signed by a built-in or secondary CA cert (EXPERIMENTAL)"
275 	  key is validly signed by a CA cert in the system built-in or
281 	  built-in or secondary trusted keyrings.
299 	   File signature verification is based on the public keys
313 	bool "Require signed user-space initialization"
317 	   This option requires user-space init to be signed.
336           trusted boot based on IMA runtime policies.