[RFC PATCH v7 07/16] ipe: add auditing support

Steve Grubb sgrubb at redhat.com
Wed Oct 13 20:02:30 UTC 2021


Hello,

On Wednesday, October 13, 2021 3:06:26 PM EDT deven.desai at linux.microsoft.com 
wrote:
> Users of IPE require a way to identify when and why an operation fails,
> allowing them to both respond to violations of policy and be notified
> of potentially malicious actions on their systens with respect to IPE
> itself.

Would you mind sending examples of audit events so that we can see what the 
end result is? Some people add them to the commit text. But we still need to 
see what they look like.

Thanks,
-Steve




More information about the Linux-security-module-archive mailing list