[PATCH] IMA: Add log statements for failure conditions
Lakshmi Ramasubramanian
nramas at linux.microsoft.com
Fri Jun 5 21:36:22 UTC 2020
On 6/5/20 2:34 PM, Mimi Zohar wrote:
>>
>> Maybe I can use the audit_msgno "AUDIT_INTEGRITY_PCR" with appropriate
>> strings for "op" and "cause".
>>
>> Mimi - please let me know if you think this audit_msgno would be ok to
>> use. I see this code used, for instance, for boot aggregate measurement.
>>
>> integrity_audit_msg(AUDIT_INTEGRITY_PCR, NULL, boot_aggregate_name, op,
>> audit_cause, result, 0);
>
> Yes, AUDIT_INTEGRITY_PCR is also used for failures to add to the
> measurement list.
>
thanks - i'll post an updated patch shortly.
-lakshmi
More information about the Linux-audit
mailing list