IMA build time configured policy rules

configname: CONFIG_IMA_APPRAISE_BUILD_POLICY

Linux Kernel Configuration
└─>Security options
└─>IMA build time configured policy rules
In linux kernel since version 3.10 (release Date: 2013-06-30)  
This option defines an IMA appraisal policy at build time, which
is enforced at run time without having to specify a builtin
policy name on the boot command line. The build time appraisal
policy rules persist after loading a custom policy.

Depending on the rules configured, this policy may require kernel
modules, firmware, the kexec kernel image, and/or the IMA policy
to be signed. Unsigned files might prevent the system from
booting or applications from working properly.