[PATCH 3/4] arm64: audit: Add AArch32 support

[PATCH 0/4] arm64: Add audit support · AKASHI Takahiro <hidden> · 2013-11-06
[PATCH 1/4] audit: Enable arm64 support · AKASHI Takahiro <hidden> · 2013-11-06
[PATCH 2/4] arm64: Add audit support · AKASHI Takahiro <hidden> · 2013-11-06
[PATCH 2/4] arm64: Add audit support · Will Deacon <hidden> · 2013-11-08
[PATCH 2/4] arm64: Add audit support · AKASHI Takahiro <hidden> · 2013-11-11
[PATCH 3/4] arm64: audit: Add AArch32 support · AKASHI Takahiro <hidden> · 2013-11-06
[PATCH 3/4] arm64: audit: Add AArch32 support · Will Deacon <hidden> · 2013-11-08
[PATCH 3/4] arm64: audit: Add AArch32 support · AKASHI Takahiro <hidden> · 2013-11-11
[PATCH 4/4] arm64: audit: Add audit hook in ptrace/syscall_trace · AKASHI Takahiro <hidden> · 2013-11-06
[PATCH 0/4] arm64: Add audit support · Will Deacon <hidden> · 2013-11-08
[PATCH 0/4] arm64: Add audit support · AKASHI Takahiro <hidden> · 2013-11-11
[PATCH v2 0/6] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-01-17
[PATCH v2 1/6] audit: Enable arm64 support · AKASHI Takahiro <hidden> · 2014-01-17
Re: [PATCH v2 1/6] audit: Enable arm64 support · Catalin Marinas <catalin.marinas@arm.com> · 2014-01-23
Re: [PATCH v2 1/6] audit: Enable arm64 support · AKASHI Takahiro <hidden> · 2014-01-27
Re: [PATCH v2 1/6] audit: Enable arm64 support · Catalin Marinas <catalin.marinas@arm.com> · 2014-01-27
Re: [PATCH v2 1/6] audit: Enable arm64 support · Richard Guy Briggs <hidden> · 2014-01-29
Re: [PATCH v2 1/6] audit: Enable arm64 support · Richard Guy Briggs <hidden> · 2014-01-29
Re: [PATCH v2 1/6] audit: Enable arm64 support · AKASHI Takahiro <hidden> · 2014-02-03
Re: [PATCH v2 1/6] audit: Enable arm64 support · Richard Guy Briggs <hidden> · 2014-02-03
Re: [PATCH v2 1/6] audit: Enable arm64 support · Richard Guy Briggs <hidden> · 2014-02-04
[PATCH] audit: Add CONFIG_HAVE_ARCH_AUDITSYSCALL · AKASHI Takahiro <hidden> · 2014-02-03
[PATCH v2 0/1] audit: Add CONFIG_HAVE_ARCH_AUDITSYSCALL · AKASHI Takahiro <hidden> · 2014-02-25
[PATCH v2 1/1] audit: Add CONFIG_HAVE_ARCH_AUDITSYSCALL · AKASHI Takahiro <hidden> · 2014-02-25
[PATCH v2 1/1] audit: Add CONFIG_HAVE_ARCH_AUDITSYSCALL · Will Deacon <hidden> · 2014-02-25
Re: [PATCH v2 1/1] audit: Add CONFIG_HAVE_ARCH_AUDITSYSCALL · Richard Guy Briggs <hidden> · 2014-02-25
Re: [PATCH v2 1/1] audit: Add CONFIG_HAVE_ARCH_AUDITSYSCALL · Matt Turner <mattst88@gmail.com> · 2014-02-25
Re: [PATCH v2 1/1] audit: Add CONFIG_HAVE_ARCH_AUDITSYSCALL · Michael Ellerman <mpe@ellerman.id.au> · 2014-02-26
[PATCH v2 2/6] arm64: Add regs_return_value() in syscall.h · AKASHI Takahiro <hidden> · 2014-01-17
[PATCH v2 3/6] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-01-17
[PATCH v2 4/6] arm64: audit: Add 32-bit (compat) syscall support · AKASHI Takahiro <hidden> · 2014-01-17
Re: [PATCH v2 4/6] arm64: audit: Add 32-bit (compat) syscall support · Will Deacon <hidden> · 2014-01-17
Re: [PATCH v2 4/6] arm64: audit: Add 32-bit (compat) syscall support · AKASHI Takahiro <hidden> · 2014-01-20
[PATCH v2 5/6] arm64: audit: Add makefile rule to create unistd_32.h for compat syscalls · AKASHI Takahiro <hidden> · 2014-01-17
Re: [PATCH v2 5/6] arm64: audit: Add makefile rule to create unistd_32.h for compat syscalls · Catalin Marinas <catalin.marinas@arm.com> · 2014-01-23
Re: [PATCH v2 5/6] arm64: audit: Add makefile rule to create unistd_32.h for compat syscalls · AKASHI Takahiro <hidden> · 2014-01-27
[PATCH v2 6/6] arm64: audit: Add audit hook in ptrace/syscall_trace · AKASHI Takahiro <hidden> · 2014-01-17
Re: [PATCH v2 6/6] arm64: audit: Add audit hook in ptrace/syscall_trace · Catalin Marinas <catalin.marinas@arm.com> · 2014-01-23
Re: [PATCH v2 0/6] arm64: Add audit support · Richard Guy Briggs <hidden> · 2014-01-17
[PATCH v3 0/3] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-02-03
[PATCH v3 1/3] arm64: Add regs_return_value() in syscall.h · AKASHI Takahiro <hidden> · 2014-02-03
Re: [PATCH v3 1/3] arm64: Add regs_return_value() in syscall.h · Will Deacon <hidden> · 2014-02-04
[PATCH v3 2/3] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-02-03
Re: [PATCH v3 2/3] arm64: Add audit support · Will Deacon <hidden> · 2014-02-04
[PATCH v3 3/3] arm64: audit: Add audit hook in ptrace/syscall_trace · AKASHI Takahiro <hidden> · 2014-02-03
Re: [PATCH v3 3/3] arm64: audit: Add audit hook in ptrace/syscall_trace · Will Deacon <hidden> · 2014-02-04
Re: [PATCH v3 3/3] arm64: audit: Add audit hook in ptrace/syscall_trace · AKASHI Takahiro <hidden> · 2014-02-05
[PATCH] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-02-07
Re: [PATCH] arm64: make a single hook to syscall_trace() for all syscall features · Richard Guy Briggs <hidden> · 2014-02-11
Re: [PATCH] arm64: make a single hook to syscall_trace() for all syscall features · Will Deacon <hidden> · 2014-02-17
Re: [PATCH] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-02-19
[PATCH v2 0/1] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-02-25
[PATCH v2 1/1] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-02-25
Re: [PATCH v2 1/1] arm64: make a single hook to syscall_trace() for all syscall features · Will Deacon <hidden> · 2014-02-25
Re: [PATCH v2 1/1] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-02-26
Re: [PATCH v2 1/1] arm64: make a single hook to syscall_trace() for all syscall features · Will Deacon <hidden> · 2014-02-26
Re: [PATCH v2 1/1] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-02-27
[PATCH v3 0/2] arm64: prerequisites for audit and ftrace · AKASHI Takahiro <hidden> · 2014-02-28
[PATCH v3 1/2] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-02-28
Re: [PATCH v3 1/2] arm64: make a single hook to syscall_trace() for all syscall features · Will Deacon <hidden> · 2014-02-28
[PATCH v3 2/2] arm64: Add regs_return_value() in syscall.h · AKASHI Takahiro <hidden> · 2014-02-28
[PATCH v4 0/3] arm64: prerequisites for audit and ftrace · AKASHI Takahiro <hidden> · 2014-03-13
[PATCH v4 1/3] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-03-13
Re: [PATCH v4 1/3] arm64: make a single hook to syscall_trace() for all syscall features · Will Deacon <hidden> · 2014-03-13
[PATCH v4 2/3] arm64: split syscall_trace() into separate functions for enter/exit · AKASHI Takahiro <hidden> · 2014-03-13
Re: [PATCH v4 2/3] arm64: split syscall_trace() into separate functions for enter/exit · Will Deacon <hidden> · 2014-03-13
Re: [PATCH v4 2/3] arm64: split syscall_trace() into separate functions for enter/exit · AKASHI Takahiro <hidden> · 2014-03-14
[PATCH v4 3/3] arm64: Add regs_return_value() in syscall.h · AKASHI Takahiro <hidden> · 2014-03-13
[PATCH v5 0/4] arm64: prerequisites for audit and ftrace · AKASHI Takahiro <hidden> · 2014-03-15
[PATCH v5 1/4] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-03-15
[PATCH v5 2/4] arm64: split syscall_trace() into separate functions for enter/exit · AKASHI Takahiro <hidden> · 2014-03-15
Re: [PATCH v5 2/4] arm64: split syscall_trace() into separate functions for enter/exit · Richard Guy Briggs <hidden> · 2014-03-16
Re: [PATCH v5 2/4] arm64: split syscall_trace() into separate functions for enter/exit · Will Deacon <hidden> · 2014-04-16
Re: [PATCH v5 2/4] arm64: split syscall_trace() into separate functions for enter/exit · AKASHI Takahiro <hidden> · 2014-04-28
[PATCH v5 3/4] arm64: Add regs_return_value() in syscall.h · AKASHI Takahiro <hidden> · 2014-03-15
[PATCH v5 4/4] arm64: is_compat_task is defined both in asm/compat.h and linux/compat.h · AKASHI Takahiro <hidden> · 2014-03-15
Re: [PATCH v5 4/4] arm64: is_compat_task is defined both in asm/compat.h and linux/compat.h · Richard Guy Briggs <hidden> · 2014-03-16
Re: [PATCH v5 4/4] arm64: is_compat_task is defined both in asm/compat.h and linux/compat.h · Will Deacon <hidden> · 2014-04-16
[PATCH v6 0/4] arm64: prerequisites for audit and ftrace · AKASHI Takahiro <hidden> · 2014-04-30
[PATCH v6 1/4] arm64: make a single hook to syscall_trace() for all syscall features · AKASHI Takahiro <hidden> · 2014-04-30
[PATCH v6 2/4] arm64: split syscall_trace() into separate functions for enter/exit · AKASHI Takahiro <hidden> · 2014-04-30
[PATCH v6 3/4] arm64: Add regs_return_value() in syscall.h · AKASHI Takahiro <hidden> · 2014-04-30
[PATCH v6 4/4] arm64: is_compat_task is defined both in asm/compat.h and linux/compat.h · AKASHI Takahiro <hidden> · 2014-04-30
Re: [PATCH v6 0/4] arm64: prerequisites for audit and ftrace · Catalin Marinas <catalin.marinas@arm.com> · 2014-05-12
[PATCH v4 0/3] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-02-07
[PATCH v4 1/3] arm64: Add regs_return_value() in syscall.h · AKASHI Takahiro <hidden> · 2014-02-07
[PATCH v4 2/3] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-02-07
[PATCH v4 3/3] arm64: audit: Add audit hook in ptrace/syscall_trace · AKASHI Takahiro <hidden> · 2014-02-07
Re: [PATCH v4 3/3] arm64: audit: Add audit hook in ptrace/syscall_trace · Will Deacon <hidden> · 2014-02-17
Re: [PATCH v4 0/3] arm64: Add audit support · Richard Guy Briggs <hidden> · 2014-02-11
[PATCH v5 0/3] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-02-25
[PATCH v5 1/3] arm64: Add regs_return_value() in syscall.h · AKASHI Takahiro <hidden> · 2014-02-25
[PATCH v5 2/3] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-02-25
[PATCH v5 3/3] arm64: audit: Add audit hook in ptrace/syscall_trace · AKASHI Takahiro <hidden> · 2014-02-25
[PATCH v6 0/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-02-28
[PATCH v6 1/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-02-28
Re: [PATCH v6 1/2] arm64: Add audit support · Richard Guy Briggs <hidden> · 2014-03-05
Re: [PATCH v6 1/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-03-06
[PATCH v6 2/2] arm64: audit: Add audit hook in ptrace/syscall_trace · AKASHI Takahiro <hidden> · 2014-02-28
Re: [PATCH v6 2/2] arm64: audit: Add audit hook in ptrace/syscall_trace · Will Deacon <hidden> · 2014-02-28
Re: [PATCH v6 2/2] arm64: audit: Add audit hook in ptrace/syscall_trace · Richard Guy Briggs <hidden> · 2014-02-28
Re: [PATCH v6 2/2] arm64: audit: Add audit hook in ptrace/syscall_trace · AKASHI Takahiro <hidden> · 2014-03-06
Re: [PATCH v6 2/2] arm64: audit: Add audit hook in ptrace/syscall_trace · Richard Guy Briggs <hidden> · 2014-03-06
[PATCH v7 0/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-03-13
[PATCH v7 1/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-03-13
[PATCH v7 2/2] arm64: audit: Add audit hook in syscall_trace_enter/exit() · AKASHI Takahiro <hidden> · 2014-03-13
Re: [PATCH v7 2/2] arm64: audit: Add audit hook in syscall_trace_enter/exit() · Will Deacon <hidden> · 2014-03-13
[PATCH_v8 0/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-03-15
[PATCH_v8 1/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-03-15
[PATCH_v8 2/2] arm64: audit: Add audit hook in syscall_trace_enter/exit() · AKASHI Takahiro <hidden> · 2014-03-15
Re: [PATCH_v8 2/2] arm64: audit: Add audit hook in syscall_trace_enter/exit() · Will Deacon <hidden> · 2014-04-16
Re: [PATCH_v8 2/2] arm64: audit: Add audit hook in syscall_trace_enter/exit() · AKASHI Takahiro <hidden> · 2014-04-28
Re: [PATCH_v8 0/2] arm64: Add audit support · Don Dutile <hidden> · 2014-04-11
Re: [PATCH_v8 0/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-04-28
Re: [PATCH_v8 0/2] arm64: Add audit support · Don Dutile <hidden> · 2014-04-28
[PATCH v9 0/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-04-30
[PATCH v9 1/2] arm64: Add audit support · AKASHI Takahiro <hidden> · 2014-04-30
[PATCH v9 2/2] arm64: audit: Add audit hook in syscall_trace_enter/exit() · AKASHI Takahiro <hidden> · 2014-04-30

STALE4400d

Revisions (8)

2013-11-06 v1 [diff vs current]
2013-11-08 v1 current
2013-11-11 v1 [diff vs current]
2014-01-17 v2 [diff vs current]
2014-02-03 v3 [diff vs current]
2014-02-07 v4 [diff vs current]
2014-02-25 v5 [diff vs current]
2014-07-04 v10 [diff vs current]

From: Will Deacon <hidden>
Date: 2013-11-08 14:55:27

On Wed, Nov 06, 2013 at 10:25:45AM +0000, AKASHI Takahiro wrote:

quoted hunk ↗ jump to hunk

---
 arch/arm64/include/asm/audit32.h  |   12 ++
 arch/arm64/include/asm/unistd32.h |  387 +++++++++++++++++++++++++++++++++++++
 arch/arm64/kernel/Makefile        |    3 +
 arch/arm64/kernel/audit.c         |   18 ++
 arch/arm64/kernel/audit32.c       |   46 +++++
 5 files changed, 466 insertions(+)
 create mode 100644 arch/arm64/include/asm/audit32.h
 create mode 100644 arch/arm64/kernel/audit32.c

diff --git a/arch/arm64/include/asm/audit32.h b/arch/arm64/include/asm/audit32.h
new file mode 100644
index 0000000..debfe57
--- /dev/null
+++ b/arch/arm64/include/asm/audit32.h

@@ -0,0 +1,12 @@
+#ifndef __ASM_AUDIT32_H
+#define __ASM_AUDIT32_H
+
+extern unsigned aarch32_dir_class[];
+extern unsigned aarch32_read_class[];
+extern unsigned aarch32_write_class[];
+extern unsigned aarch32_chattr_class[];
+extern unsigned aarch32_signal_class[];
+
+extern int aarch32_classify_syscall(unsigned);
+
+#endif /* __ASM_AUDIT32_H */

diff --git a/arch/arm64/include/asm/unistd32.h b/arch/arm64/include/asm/unistd32.h
index 58125bf..fdf5e56 100644
--- a/arch/arm64/include/asm/unistd32.h
+++ b/arch/arm64/include/asm/unistd32.h

@@ -21,6 +21,393 @@
 #define __SYSCALL(x, y)
 #endif

+#ifdef __AARCH32_AUDITSYSCALL
+/*
+ * FIXME: Currenty only audit uses (part of) these definitions.
+ * See audit32.c
+ */
+#define __NR_restart_syscall 0
+#define __NR_exit 1
+#define __NR_fork 2
+#define __NR_read 3

Don't bother with this file. It's a needless replication of data already in
the file and you don't even need it all.

quoted hunk ↗ jump to hunk

diff --git a/arch/arm64/kernel/audit32.c b/arch/arm64/kernel/audit32.c
new file mode 100644
index 0000000..2aa4d7d
--- /dev/null
+++ b/arch/arm64/kernel/audit32.c

@@ -0,0 +1,46 @@
+#define __AARCH32_AUDITSYSCALL
+#include <asm/unistd32.h>
+
+unsigned aarch32_dir_class[] = {
+#include <asm-generic/audit_dir_write.h>
+~0U
+};
+
+unsigned aarch32_read_class[] = {
+#include <asm-generic/audit_read.h>
+~0U
+};
+
+unsigned aarch32_write_class[] = {
+#include <asm-generic/audit_write.h>
+~0U
+};
+
+unsigned aarch32_chattr_class[] = {
+#include <asm-generic/audit_change_attr.h>
+~0U
+};
+
+unsigned aarch32_signal_class[] = {
+#include <asm-generic/audit_signal.h>
+~0U
+};
+
+int aarch32_classify_syscall(unsigned syscall)
+{
+       switch(syscall) {
+       case __NR_open:
+               return 2;
+       case __NR_openat:
+               return 3;
+       /*
+        * obsolute in EABI
+        * case __NR_socketcall:
+        *      return 4;
+        */
+       case __NR_execve:
+               return 5;
+       default:
+               return 1; /* 32-bit on biarch */
+       }

Instead, just add __NR_compat_{open,openat,execve}, like we have done for
the signal-related syscalls.

Also, can't the generic lib/audit.c be reworked to work with compat too?

Will

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help