Lines Matching +full:boot +full:- +full:time

1 # SPDX-License-Identifier: GPL-2.0-only
36 	bool "Enable carrying the IMA measurement list across a soft boot"
41 	   a TPM's quote after a soft boot, the IMA measurement list of the
42 	   running kernel must be saved and restored on boot.
71 	  limited to 255 characters.  The 'ima-ng' measurement list
74 	  by specifying "ima_template=" on the boot command line.
77 		bool "ima-ng (default)"
79 		bool "ima-sig"
84 	default "ima-ng" if IMA_NG_TEMPLATE
85 	default "ima-sig" if IMA_SIG_TEMPLATE
155 	  <http://linux-ima.sourceforge.net>
165           based on run time secure boot flags.
168 	bool "IMA build time configured policy rules"
172 	  This option defines an IMA appraisal policy at build time, which
173 	  is enforced at run time without having to specify a builtin
174 	  policy name on the boot command line.  The build time appraisal
213 	  Kernel module signatures can only be verified by IMA-appraisal,
226 	bool "ima_appraise boot parameter"
231 	  (eg. fix, log) from the boot command line.
234 	bool "Support module-style signatures for appraisal"
247 	bool "Permit keys validly signed by a built-in, machine (if configured) or secondary"
255 	  key is validly signed by a CA cert in the system built-in,
262 	  built-in, machine (if configured) or secondary trusted keyrings.
294 	bool "Require signed user-space initialization"
298 	   This option requires user-space init to be signed.
316           trusted boot based on IMA runtime policies.