Component Type: kbuild config

Description: Appraise kexec kernel image signatures

More info: Enabling this rule will require all kexec'ed kernel images to be signed and verified by a public key on the trusted IMA keyring. Kernel image signatures can not be verified by the original kexec_load syscall. Enabling this rule will prevent its usage.

Build project: Kconfig (Linux kconfig) (Path: security\integrity\ima\Kconfig )

Other views: file explorer