Re: [PATCH] IMA: Add log statements for failure conditions

From: Lakshmi Ramasubramanian
Date: Fri Jun 05 2020 - 15:54:18 EST

Next message: Dennis Zhou: "Re: [PATCH v1 4/5] mm: memcg: charge memcg percpu memory to the parent cgroup"
Previous message: Dennis Zhou: "Re: [PATCH v1 3/5] mm: memcg/percpu: per-memcg percpu memory statistics"
In reply to: Paul Moore: "Re: [PATCH] IMA: Add log statements for failure conditions"
Next in thread: Paul Moore: "Re: [PATCH] IMA: Add log statements for failure conditions"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 6/5/20 12:37 PM, Paul Moore wrote:

If it's audit related, it's generally best to CC the linux-audit list,
not just me (fixed).

It's not clear to me what this pr_err() is trying to indicate other
than *something* failed. Can someone provide some more background on
this message?

process_buffer_measurement() is currently used to measure
"kexec command line", "keys", and "blacklist-hash". If there was any error in the measurement, this pr_err() will indicate which of the above measurement failed and the related error code.

Please let me know if you need more info on this one.

Since a pr_xyz() call was already present, I just wanted to change the log level to keep the code change to the minimum. But if audit log is the right approach for this case, I'll update.

thanks,
-lakshmi

Next message: Dennis Zhou: "Re: [PATCH v1 4/5] mm: memcg: charge memcg percpu memory to the parent cgroup"
Previous message: Dennis Zhou: "Re: [PATCH v1 3/5] mm: memcg/percpu: per-memcg percpu memory statistics"
In reply to: Paul Moore: "Re: [PATCH] IMA: Add log statements for failure conditions"
Next in thread: Paul Moore: "Re: [PATCH] IMA: Add log statements for failure conditions"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]