From a47f57a9517c1928ae3324eeb13388ab3bfd2e18 Mon Sep 17 00:00:00 2001 From: Andrey Konovalov Date: Thu, 11 Jun 2020 00:04:10 +0200 Subject: sys/linux: rename apparmor.txt to security_apparmor.txt --- sys/linux/apparmor.txt | 45 ------------------------------ sys/linux/apparmor_386.const | 5 ---- sys/linux/apparmor_amd64.const | 5 ---- sys/linux/apparmor_arm.const | 5 ---- sys/linux/apparmor_arm64.const | 5 ---- sys/linux/apparmor_mips64le.const | 5 ---- sys/linux/apparmor_ppc64le.const | 5 ---- sys/linux/security_apparmor.txt | 45 ++++++++++++++++++++++++++++++ sys/linux/security_apparmor_386.const | 5 ++++ sys/linux/security_apparmor_amd64.const | 5 ++++ sys/linux/security_apparmor_arm.const | 5 ++++ sys/linux/security_apparmor_arm64.const | 5 ++++ sys/linux/security_apparmor_mips64le.const | 5 ++++ sys/linux/security_apparmor_ppc64le.const | 5 ++++ 14 files changed, 75 insertions(+), 75 deletions(-) delete mode 100644 sys/linux/apparmor.txt delete mode 100644 sys/linux/apparmor_386.const delete mode 100644 sys/linux/apparmor_amd64.const delete mode 100644 sys/linux/apparmor_arm.const delete mode 100644 sys/linux/apparmor_arm64.const delete mode 100644 sys/linux/apparmor_mips64le.const delete mode 100644 sys/linux/apparmor_ppc64le.const create mode 100644 sys/linux/security_apparmor.txt create mode 100644 sys/linux/security_apparmor_386.const create mode 100644 sys/linux/security_apparmor_amd64.const create mode 100644 sys/linux/security_apparmor_arm.const create mode 100644 sys/linux/security_apparmor_arm64.const create mode 100644 sys/linux/security_apparmor_mips64le.const create mode 100644 sys/linux/security_apparmor_ppc64le.const (limited to 'sys') diff --git a/sys/linux/apparmor.txt b/sys/linux/apparmor.txt deleted file mode 100644 index c7bb1c7a5..000000000 --- a/sys/linux/apparmor.txt +++ /dev/null @@ -1,45 +0,0 @@ -# Copyright 2018 syzkaller project authors. All rights reserved. -# Use of this source code is governed by Apache 2 LICENSE that can be found in the LICENSE file. - -resource fd_apparmor_current[fd] - -openat$apparmor_task_current(fd const[AT_FDCWD], file ptr[in, string["/proc/self/attr/current"]], flags const[O_RDWR], mode const[0]) fd_apparmor_current -openat$apparmor_thread_current(fd const[AT_FDCWD], file ptr[in, string["/proc/thread-self/attr/current"]], flags const[O_RDWR], mode const[0]) fd_apparmor_current -write$apparmor_current(fd fd_apparmor_current, data ptr[in, apparmor_current_attr], len len[data]) - -apparmor_current_attr [ - hat apparmor_current_hat - profile apparmor_current_profile -] [varlen] - -apparmor_current_hat { - cmd stringnoz[apparmor_hat_cmds] - token fmt[hex, int64[0:4]] - delim const['^', int8] -# TODO: what are these hats? should we pass some strings from apparmor profile? - hats array[string] -} [packed] - -apparmor_hat_cmds = "changehat ", "permhat " - -apparmor_current_profile { - cmd stringnoz[apparmor_profile_cmds] -# TODO: what is this profile/fqname? - profile string -} [packed] - -apparmor_profile_cmds = "changeprofile ", "permprofile ", "stack " - -resource fd_apparmor_exec[fd] - -openat$apparmor_task_exec(fd const[AT_FDCWD], file ptr[in, string["/proc/self/attr/exec"]], flags const[O_RDWR], mode const[0]) fd_apparmor_exec -openat$apparmor_thread_exec(fd const[AT_FDCWD], file ptr[in, string["/proc/thread-self/attr/exec"]], flags const[O_RDWR], mode const[0]) fd_apparmor_exec -write$apparmor_exec(fd fd_apparmor_exec, data ptr[in, apparmor_exec_attr], len len[data]) - -apparmor_exec_attr { - cmd stringnoz[apparmor_exec_profile_cmds] -# TODO: what is this profile/fqname? - profile string -} [packed] - -apparmor_exec_profile_cmds = "exec ", "stack " diff --git a/sys/linux/apparmor_386.const b/sys/linux/apparmor_386.const deleted file mode 100644 index f1b68d8dd..000000000 --- a/sys/linux/apparmor_386.const +++ /dev/null @@ -1,5 +0,0 @@ -# AUTOGENERATED FILE -# AT_FDCWD is not set -# O_RDWR is not set -__NR_openat = 295 -__NR_write = 4 diff --git a/sys/linux/apparmor_amd64.const b/sys/linux/apparmor_amd64.const deleted file mode 100644 index 3b36274ad..000000000 --- a/sys/linux/apparmor_amd64.const +++ /dev/null @@ -1,5 +0,0 @@ -# AUTOGENERATED FILE -# AT_FDCWD is not set -# O_RDWR is not set -__NR_openat = 257 -__NR_write = 1 diff --git a/sys/linux/apparmor_arm.const b/sys/linux/apparmor_arm.const deleted file mode 100644 index 67a2c0219..000000000 --- a/sys/linux/apparmor_arm.const +++ /dev/null @@ -1,5 +0,0 @@ -# AUTOGENERATED FILE -# AT_FDCWD is not set -# O_RDWR is not set -__NR_openat = 322 -__NR_write = 4 diff --git a/sys/linux/apparmor_arm64.const b/sys/linux/apparmor_arm64.const deleted file mode 100644 index 230884f4c..000000000 --- a/sys/linux/apparmor_arm64.const +++ /dev/null @@ -1,5 +0,0 @@ -# AUTOGENERATED FILE -# AT_FDCWD is not set -# O_RDWR is not set -__NR_openat = 56 -__NR_write = 64 diff --git a/sys/linux/apparmor_mips64le.const b/sys/linux/apparmor_mips64le.const deleted file mode 100644 index a9930c6ab..000000000 --- a/sys/linux/apparmor_mips64le.const +++ /dev/null @@ -1,5 +0,0 @@ -# AUTOGENERATED FILE -# AT_FDCWD is not set -# O_RDWR is not set -__NR_openat = 5247 -__NR_write = 5001 diff --git a/sys/linux/apparmor_ppc64le.const b/sys/linux/apparmor_ppc64le.const deleted file mode 100644 index 3822466f5..000000000 --- a/sys/linux/apparmor_ppc64le.const +++ /dev/null @@ -1,5 +0,0 @@ -# AUTOGENERATED FILE -# AT_FDCWD is not set -# O_RDWR is not set -__NR_openat = 286 -__NR_write = 4 diff --git a/sys/linux/security_apparmor.txt b/sys/linux/security_apparmor.txt new file mode 100644 index 000000000..c7bb1c7a5 --- /dev/null +++ b/sys/linux/security_apparmor.txt @@ -0,0 +1,45 @@ +# Copyright 2018 syzkaller project authors. All rights reserved. +# Use of this source code is governed by Apache 2 LICENSE that can be found in the LICENSE file. + +resource fd_apparmor_current[fd] + +openat$apparmor_task_current(fd const[AT_FDCWD], file ptr[in, string["/proc/self/attr/current"]], flags const[O_RDWR], mode const[0]) fd_apparmor_current +openat$apparmor_thread_current(fd const[AT_FDCWD], file ptr[in, string["/proc/thread-self/attr/current"]], flags const[O_RDWR], mode const[0]) fd_apparmor_current +write$apparmor_current(fd fd_apparmor_current, data ptr[in, apparmor_current_attr], len len[data]) + +apparmor_current_attr [ + hat apparmor_current_hat + profile apparmor_current_profile +] [varlen] + +apparmor_current_hat { + cmd stringnoz[apparmor_hat_cmds] + token fmt[hex, int64[0:4]] + delim const['^', int8] +# TODO: what are these hats? should we pass some strings from apparmor profile? + hats array[string] +} [packed] + +apparmor_hat_cmds = "changehat ", "permhat " + +apparmor_current_profile { + cmd stringnoz[apparmor_profile_cmds] +# TODO: what is this profile/fqname? + profile string +} [packed] + +apparmor_profile_cmds = "changeprofile ", "permprofile ", "stack " + +resource fd_apparmor_exec[fd] + +openat$apparmor_task_exec(fd const[AT_FDCWD], file ptr[in, string["/proc/self/attr/exec"]], flags const[O_RDWR], mode const[0]) fd_apparmor_exec +openat$apparmor_thread_exec(fd const[AT_FDCWD], file ptr[in, string["/proc/thread-self/attr/exec"]], flags const[O_RDWR], mode const[0]) fd_apparmor_exec +write$apparmor_exec(fd fd_apparmor_exec, data ptr[in, apparmor_exec_attr], len len[data]) + +apparmor_exec_attr { + cmd stringnoz[apparmor_exec_profile_cmds] +# TODO: what is this profile/fqname? + profile string +} [packed] + +apparmor_exec_profile_cmds = "exec ", "stack " diff --git a/sys/linux/security_apparmor_386.const b/sys/linux/security_apparmor_386.const new file mode 100644 index 000000000..f1b68d8dd --- /dev/null +++ b/sys/linux/security_apparmor_386.const @@ -0,0 +1,5 @@ +# AUTOGENERATED FILE +# AT_FDCWD is not set +# O_RDWR is not set +__NR_openat = 295 +__NR_write = 4 diff --git a/sys/linux/security_apparmor_amd64.const b/sys/linux/security_apparmor_amd64.const new file mode 100644 index 000000000..3b36274ad --- /dev/null +++ b/sys/linux/security_apparmor_amd64.const @@ -0,0 +1,5 @@ +# AUTOGENERATED FILE +# AT_FDCWD is not set +# O_RDWR is not set +__NR_openat = 257 +__NR_write = 1 diff --git a/sys/linux/security_apparmor_arm.const b/sys/linux/security_apparmor_arm.const new file mode 100644 index 000000000..67a2c0219 --- /dev/null +++ b/sys/linux/security_apparmor_arm.const @@ -0,0 +1,5 @@ +# AUTOGENERATED FILE +# AT_FDCWD is not set +# O_RDWR is not set +__NR_openat = 322 +__NR_write = 4 diff --git a/sys/linux/security_apparmor_arm64.const b/sys/linux/security_apparmor_arm64.const new file mode 100644 index 000000000..230884f4c --- /dev/null +++ b/sys/linux/security_apparmor_arm64.const @@ -0,0 +1,5 @@ +# AUTOGENERATED FILE +# AT_FDCWD is not set +# O_RDWR is not set +__NR_openat = 56 +__NR_write = 64 diff --git a/sys/linux/security_apparmor_mips64le.const b/sys/linux/security_apparmor_mips64le.const new file mode 100644 index 000000000..a9930c6ab --- /dev/null +++ b/sys/linux/security_apparmor_mips64le.const @@ -0,0 +1,5 @@ +# AUTOGENERATED FILE +# AT_FDCWD is not set +# O_RDWR is not set +__NR_openat = 5247 +__NR_write = 5001 diff --git a/sys/linux/security_apparmor_ppc64le.const b/sys/linux/security_apparmor_ppc64le.const new file mode 100644 index 000000000..3822466f5 --- /dev/null +++ b/sys/linux/security_apparmor_ppc64le.const @@ -0,0 +1,5 @@ +# AUTOGENERATED FILE +# AT_FDCWD is not set +# O_RDWR is not set +__NR_openat = 286 +__NR_write = 4 -- cgit mrf-deployment