Lines Matching +full:critical +full:- +full:action
8 loaded into the run-time of this system. At runtime,
20 rule format: action [condition ...]
22 action: measure | dont_measure | appraise | dont_appraise |
42 fsuuid:= file system UUID (e.g 8bcbe394-4f13-4144-be8e-5aa9ea2ce2f6)
64 Require fs-verity's file digest instead of the
68 when action is "measure" and func is KEY_CHECK.
70 (eg, ima-ng). Only valid when action is "measure".
73 data_label:= a unique string used for grouping and limiting critical data.
74 For example, "selinux" to measure critical data for SELinux.
75 appraise_algos:= comma-separated list of hash algorithms
165 Example of a 'measure' rule requiring fs-verity's digests
169 template=ima-ngv2
171 Example of 'measure' and 'appraise' rules requiring fs-verity
174 The 'measure' rule specifies the 'ima-sigv3' template option,
179 template=ima-sigv3