Integrate USBGuard with Linux Audit subsystem so that the decision taken by USBGuard are part of the Linux Audit trail. Use the audit_log_user_message(3) API function to audit an event of type:
#define AUDIT_USER_DEVICE 1137 /* User space hotplug device changes */
Upstream work is being done in the private-linux-audit branch: https://github.com/dkopecek/usbguard/tree/private-linux-audit
Created attachment 1343661 [details]
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.