├── .gitignore ├── .travis.yml ├── CODE_OF_CONDUCT.md ├── LICENSE ├── Makefile ├── README.md ├── audit_constant.go ├── audit_events.go ├── auditconstant_string.go ├── auditprint └── auditprint.go ├── buffer.go ├── headers ├── access_tab.go ├── audit_x64.go ├── audit_x64_i2s.go ├── cap_tab.go ├── clock_tab.go ├── cloneflag_tab.go ├── epollctl_tab.go ├── fcntl_cmd_tab.go ├── field_tab.go ├── ftype_tab.go ├── icmptype_tab.go ├── ioctlreq_tab.go ├── ip6optname_tab.go ├── ipc_tab.go ├── ipoptname_tab.go ├── mmap_tab.go ├── mount_tab.go ├── nfproto_tab.go ├── pktoptname_tab.go ├── prctl_opt_tab.go ├── protocol_tab.go ├── ptrace_tab.go ├── recv_tab.go ├── rlimit_tab.go ├── sched_tab.go ├── seccomp_tab.go ├── seek_tab.go ├── signal_tab.go ├── sock_tab.go ├── sockfam_tab.go ├── socklevel_tab.go ├── sockoptname_tab.go ├── socktype_tab.go ├── tcpoptname_tab.go └── umount_tab.go ├── interpret.go ├── libaudit.go ├── libaudit_test.go ├── lookup_tables.go ├── parser.go ├── parser_test.go ├── rules.go ├── rules_test.go ├── s2i_type_conversion.json ├── testdata ├── badpathnostrictpath.json ├── rules.json └── strictpathfail.json └── vendor └── github.com └── lunixbochs └── struc ├── .travis.yml ├── LICENSE ├── README.md ├── bench_test.go ├── binary.go ├── custom.go ├── custom_float16.go ├── custom_float16_test.go ├── custom_test.go ├── field.go ├── field_test.go ├── fields.go ├── fields_test.go ├── legacy.go ├── packable_test.go ├── packer.go ├── parse.go ├── parse_test.go ├── struc.go ├── struc_test.go ├── types.go └── types_test.go /.gitignore: -------------------------------------------------------------------------------- 1 | *.swp 2 | -------------------------------------------------------------------------------- /.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/.travis.yml -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/Makefile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/README.md -------------------------------------------------------------------------------- /audit_constant.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/audit_constant.go -------------------------------------------------------------------------------- /audit_events.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/audit_events.go -------------------------------------------------------------------------------- /auditconstant_string.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/auditconstant_string.go -------------------------------------------------------------------------------- /auditprint/auditprint.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/auditprint/auditprint.go -------------------------------------------------------------------------------- /buffer.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/buffer.go -------------------------------------------------------------------------------- /headers/access_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/access_tab.go -------------------------------------------------------------------------------- /headers/audit_x64.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/audit_x64.go -------------------------------------------------------------------------------- /headers/audit_x64_i2s.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/audit_x64_i2s.go -------------------------------------------------------------------------------- /headers/cap_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/cap_tab.go -------------------------------------------------------------------------------- /headers/clock_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/clock_tab.go -------------------------------------------------------------------------------- /headers/cloneflag_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/cloneflag_tab.go -------------------------------------------------------------------------------- /headers/epollctl_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/epollctl_tab.go -------------------------------------------------------------------------------- /headers/fcntl_cmd_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/fcntl_cmd_tab.go -------------------------------------------------------------------------------- /headers/field_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/field_tab.go -------------------------------------------------------------------------------- /headers/ftype_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/ftype_tab.go -------------------------------------------------------------------------------- /headers/icmptype_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/icmptype_tab.go -------------------------------------------------------------------------------- /headers/ioctlreq_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/ioctlreq_tab.go -------------------------------------------------------------------------------- /headers/ip6optname_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/ip6optname_tab.go -------------------------------------------------------------------------------- /headers/ipc_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/ipc_tab.go -------------------------------------------------------------------------------- /headers/ipoptname_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/ipoptname_tab.go -------------------------------------------------------------------------------- /headers/mmap_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/mmap_tab.go -------------------------------------------------------------------------------- /headers/mount_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/mount_tab.go -------------------------------------------------------------------------------- /headers/nfproto_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/nfproto_tab.go -------------------------------------------------------------------------------- /headers/pktoptname_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/pktoptname_tab.go -------------------------------------------------------------------------------- /headers/prctl_opt_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/prctl_opt_tab.go -------------------------------------------------------------------------------- /headers/protocol_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/protocol_tab.go -------------------------------------------------------------------------------- /headers/ptrace_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/ptrace_tab.go -------------------------------------------------------------------------------- /headers/recv_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/recv_tab.go -------------------------------------------------------------------------------- /headers/rlimit_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/rlimit_tab.go -------------------------------------------------------------------------------- /headers/sched_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/sched_tab.go -------------------------------------------------------------------------------- /headers/seccomp_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/seccomp_tab.go -------------------------------------------------------------------------------- /headers/seek_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/seek_tab.go -------------------------------------------------------------------------------- /headers/signal_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/signal_tab.go -------------------------------------------------------------------------------- /headers/sock_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/sock_tab.go -------------------------------------------------------------------------------- /headers/sockfam_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/sockfam_tab.go -------------------------------------------------------------------------------- /headers/socklevel_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/socklevel_tab.go -------------------------------------------------------------------------------- /headers/sockoptname_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/sockoptname_tab.go -------------------------------------------------------------------------------- /headers/socktype_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/socktype_tab.go -------------------------------------------------------------------------------- /headers/tcpoptname_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/tcpoptname_tab.go -------------------------------------------------------------------------------- /headers/umount_tab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/headers/umount_tab.go -------------------------------------------------------------------------------- /interpret.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/interpret.go -------------------------------------------------------------------------------- /libaudit.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/libaudit.go -------------------------------------------------------------------------------- /libaudit_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/libaudit_test.go -------------------------------------------------------------------------------- /lookup_tables.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/lookup_tables.go -------------------------------------------------------------------------------- /parser.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/parser.go -------------------------------------------------------------------------------- /parser_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/parser_test.go -------------------------------------------------------------------------------- /rules.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/rules.go -------------------------------------------------------------------------------- /rules_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/rules_test.go -------------------------------------------------------------------------------- /s2i_type_conversion.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/s2i_type_conversion.json -------------------------------------------------------------------------------- /testdata/badpathnostrictpath.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/testdata/badpathnostrictpath.json -------------------------------------------------------------------------------- /testdata/rules.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/testdata/rules.json -------------------------------------------------------------------------------- /testdata/strictpathfail.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/testdata/strictpathfail.json -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/.travis.yml -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/LICENSE -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/README.md -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/bench_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/bench_test.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/binary.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/binary.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/custom.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/custom.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/custom_float16.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/custom_float16.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/custom_float16_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/custom_float16_test.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/custom_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/custom_test.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/field.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/field.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/field_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/field_test.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/fields.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/fields.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/fields_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/fields_test.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/legacy.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/legacy.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/packable_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/packable_test.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/packer.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/packer.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/parse.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/parse.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/parse_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/parse_test.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/struc.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/struc.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/struc_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/struc_test.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/types.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/types.go -------------------------------------------------------------------------------- /vendor/github.com/lunixbochs/struc/types_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/mozilla/libaudit-go/HEAD/vendor/github.com/lunixbochs/struc/types_test.go --------------------------------------------------------------------------------