Lines Matching +full:key +full:- +full:enable
8 HMAC-sha1 value across the extended attributes, storing the
12 an HMAC-sha1 generated locally with a
13 trusted/encrypted key stored in the Kernel Key
16 asymmetric key. These keys are loaded onto root's
24 0 Enable HMAC validation and creation
25 1 Enable digital signature validation
26 2 Permit modification of EVM-protected metadata at
36 will enable HMAC validation and creation
42 will enable HMAC and digital signature validation and
49 will enable digital signature validation, permit
50 modification of EVM-protected metadata and
72 Note that once an HMAC key has been loaded, it will no longer
73 be possible to enable metadata modification. Signaling that an
74 HMAC key has been loaded will clear the corresponding flag.
81 Loading an HMAC key is the only way to disable metadata
84 Until key loading has been signaled EVM can not create
92 Documentation/security/keys/trusted-encrypted.rst. Both
94 core/ima-setup) have support for loading keys at boot