Lines Matching +full:key +full:- +full:enable
7 HMAC-sha1 value across the extended attributes, storing the
11 an HMAC-sha1 generated locally with a
12 trusted/encrypted key stored in the Kernel Key
15 asymmetric key. These keys are loaded onto root's
23 0 Enable HMAC validation and creation
24 1 Enable digital signature validation
25 2 Permit modification of EVM-protected metadata at
35 will enable HMAC validation and creation
41 will enable HMAC and digital signature validation and
48 will enable digital signature validation, permit
49 modification of EVM-protected metadata and
65 Note that once an HMAC key has been loaded, it will no longer
66 be possible to enable metadata modification. Signaling that an
67 HMAC key has been loaded will clear the corresponding flag.
74 Loading an HMAC key is the only way to disable metadata
77 Until key loading has been signaled EVM can not create
85 Documentation/security/keys/trusted-encrypted.rst. Both
87 core/ima-setup) have support for loading keys at boot