mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 16:35:02 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
apparmor/parser/tst/simple_tests/unix
History
John Johansen 0a52cf81e3 parser: add support for autobind sockets 
af_unix allows for sockets to be bound to a name that is autogenerated.
Currently this type of binding is only supported by a very generic
rule.

  unix (bind) type=dgram,

but this allows both sockets with specified names and anonymous
sockets. Extend unix rule syntax to support specifying just an
auto bind socket by specifying addr=auto

eg.

  unix (bind) addr=auto,

It is important to note that addr=auto only works for the bind
permission as once the socket is bound to an autogenerated address,
the addr with have a valid unique value that can be matched against
with a regular

  addr=@name

expression

Fixes: https://bugs.launchpad.net/apparmor/+bug/1867216
MR: https://gitlab.com/apparmor/apparmor/-/merge_requests/521
Signed-off-by: John Johansen <john.johansen@canonical.com>
2020-09-29 03:34:56 -07:00
..
bad_attr_1.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_attr_2.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_attr_3.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_attr_4.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_attr_5.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
bad_bind_1.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
bad_bind_2.sd Remove the use of dbus from comments and policy from unix tests 2017-10-09 13:18:08 -07:00
bad_create_1.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_create_2.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_listen_1.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_listen_2.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_modifier_1.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
bad_modifier_2.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
bad_modifier_3.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
bad_modifier_4.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
bad_opt_1.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_opt_2.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_opt_3.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_opt_4.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_opt_5.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
bad_outside_1.sd Add tests for various rules outside of a profile 2015-10-19 21:13:48 +02:00
bad_peer_1.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
bad_peer_2.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
bad_regex_01.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
bad_regex_02.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
bad_regex_03.sd Remove the use of dbus from comments and policy from unix tests 2017-10-09 13:18:08 -07:00
bad_regex_04.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
bad_shutdown_1.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_shutdown_2.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
bad_shutdown_3.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
ok_accept_1.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_accept_2.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_attr_1.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_attr_2.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_attr_3.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_attr_4.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_attr_5.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
ok_attr_6.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
ok_attr_7.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
ok_attr_8.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
ok_bind_1.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
ok_bind_2.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_bind_3.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_connect_1.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_connect_2.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_create_1.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_create_2.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_create_3.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
ok_create_4.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
ok_embedded_0_1.sd And the related patch to fix globbing for af_unix abstract names 2015-02-12 10:19:16 -08:00
ok_embedded_0_2.sd And the related patch to fix globbing for af_unix abstract names 2015-02-12 10:19:16 -08:00
ok_embedded_0_3.sd And the related patch to fix globbing for af_unix abstract names 2015-02-12 10:19:16 -08:00
ok_listen_1.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_listen_2.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_listen_3.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
ok_msg_1.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
ok_msg_2.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
ok_msg_3.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
ok_msg_4.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
ok_msg_5.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
ok_msg_6.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
ok_msg_7.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
ok_msg_8.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
ok_msg_9.sd parser: Convert af_unix rules to support addr= rather than path= 2014-09-03 14:02:25 -07:00
ok_msg_10.sd parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
ok_msg_11.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_12.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_13.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_14.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_15.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_16.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_17.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_18.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_19.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_msg_20.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
ok_opt_1.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_opt_2.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_opt_3.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_opt_4.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_opt_5.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
ok_opt_6.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00
ok_opt_7.sd parser: add support for autobind sockets 2020-09-29 03:34:56 -07:00
ok_regex_01.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_02.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_03.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_04.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_05.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_06.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_07.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_08.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_09.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_11.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_12.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_13.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_14.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_15.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_16.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_17.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_18.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_regex_19.sd Parser: fix error when using regex profile names in IPC rules 2014-10-01 15:54:30 -07:00
ok_shutdown_1.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_shutdown_2.sd parser: let unix keyword accept bare send, receive keywords 2014-09-03 15:05:56 -07:00
ok_shutdown_3.sd parser: tests: exercise local and peer addr perms 2014-09-22 11:36:14 -05:00