Lines Matching +full:files +full:- +full:based

7 		values of executables and other sensitive system files
8 		loaded into the run-time of this system.  At runtime,
9 		the policy can be constrained based on LSM specific data.
42 			fsuuid:= file system UUID (e.g 8bcbe394-4f13-4144-be8e-5aa9ea2ce2f6)
56 				limited to fsverity digest based signatures
64 			    Require fs-verity's file digest instead of the
70 			(eg, ima-ng). Only valid when action is "measure".
75 			appraise_algos:= comma-separated list of hash algorithms
77 			files where the security.ima xattr was hashed with one
122 		all files mmapped executable in file_mmap, and all files
124 		policy appraises all files owned by root.
165 		Example of a 'measure' rule requiring fs-verity's digests
169 				template=ima-ngv2
171 		Example of 'measure' and 'appraise' rules requiring fs-verity
174 		The 'measure' rule specifies the 'ima-sigv3' template option,
179 				template=ima-sigv3
189 		either based on a filesystem's UUID (fsuuid) or based on LSM