-
Notifications
You must be signed in to change notification settings - Fork 667
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
MacOS socket audit token #2529
MacOS socket audit token #2529
Conversation
So the LOCAL_PEERTOKEN it adds may be guaranteed to be available. Signed-off-by: Paul Mabileau <[email protected]>
…d of 0 Should be more readable. Signed-off-by: Paul Mabileau <[email protected]>
audit_token_t is taken from endpoint-sec-sys. Signed-off-by: Paul Mabileau <[email protected]>
Signed-off-by: Paul Mabileau <[email protected]>
Signed-off-by: Paul Mabileau <[email protected]>
b1e47c0
to
c5d6f2b
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Implementation looks good, thanks for the patch!
Hey, thanks for the super quick reply!
Yes, I double-checked and they actually do run! I initially pushed just to see the result of the CI run before launching my whole macOS machinery (I don't work from one) and fixing any upcoming issue, but when I saw that every test job was green on the first attempt, I was immediately doubtful and when searching with my browser's search, I couldn't find the test name in the logs, but that was just due to GitHub's auto load and unload of logs, so the integrated search is really the source of truth here 😅 Anyway, if everything is good for you, then it is for me too! |
Super cool, thanks a bunch! |
What does this PR do
This adds a new API for
getsockopt
aroundlibc::LOCAL_PEERTOKEN
following rust-lang/libc#3929. The return type definition is the low-levelaudit_token_t
as defined inosfmk/mach/message.h
and taken fromendpoint-sec-sys
. A small test was added for it.Checklist:
CONTRIBUTING.md