Home
last modified time | relevance | path

Searched refs:an (Results 1 – 9 of 9) sorted by relevance

/security/integrity/ima/
DKconfig20 as they are read or executed. If an attacker manages
21 to change the contents of an important system file
25 an aggregate integrity value over this list inside the
158 bool "Enable loading an IMA architecture specific policy"
163 This option enables loading an IMA architecture specific policy
171 This option defines an IMA appraisal policy at build time, which
268 This option creates an IMA blacklist keyring, which contains all
271 an error is returned to the caller.
/security/smack/
DKconfig46 bool "Treat delivering signals as an append operation"
52 will be an append operation instead. This makes it possible
/security/integrity/evm/
DKconfig59 bool "Load an X509 certificate onto the '.evm' trusted keyring"
63 Load an X509 certificate onto the '.evm' trusted keyring.
/security/safesetid/
DKconfig8 SafeSetID is an LSM module that gates the setid family of syscalls to
/security/loadpin/
DKconfig10 rejected. This is best used on systems without an initrd that
/security/lockdown/
DKconfig6 Build support for an LSM that enforces a coarse kernel lockdown
/security/
DKconfig199 To provide an additional layer of security, route all of these
210 STATIC_USERMODEHELPER_PATH to an empty string.
223 specify an empty string here (i.e. "").
/security/apparmor/
Dlabel.c165 static int vec_cmp(struct aa_profile **a, int an, struct aa_profile **b, int bn) in vec_cmp() argument
173 AA_BUG(an <= 0); in vec_cmp()
176 for (i = 0; i < an && i < bn; i++) { in vec_cmp()
183 return an - bn; in vec_cmp()
/security/keys/
DKconfig38 filesystem in which each method needs to request an authentication