6be4a2f2d1
Added Azure Storage Support for policy packages ( #824 )
...
* Added Azure Storage Support for policy packages
* fixed naming
* Removed old comment
2024-11-27 14:24:07 -08:00
d0e6620274
Onboarded RHEL-7, added Azure Helpers PS module ( #820 )
2024-11-26 15:52:20 -08:00
bf3ad79a0a
Restore Debian 12 to moduletest workflow ( #819 )
2024-11-22 12:09:13 -08:00
31313a4c29
github: Run fuzzing nightly ( #816 )
...
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
2024-11-22 09:54:14 -08:00
2f2e4b5516
Fixing memory leaks in moduletest ( #817 )
2024-11-22 09:51:23 -08:00
1071f5d00a
Add a runtime detection & selection of available container runtime ( #815 )
...
* Add a runtime detection & selection of available container runtime
* Fix styling
2024-11-21 11:23:08 -08:00
d29a9ac7bd
Add ASA scans running on CentOS 8 ( #814 )
2024-11-21 09:28:51 -08:00
fa1282416f
Update test matrix and add module tests to NRP test workflow ( #813 )
2024-11-19 14:22:01 -08:00
6f3e6a060b
Minor fuzzer bugfixes ( #800 )
2024-11-18 14:49:15 -08:00
5d18f8a3c6
Run fuzzer inside a container ( #806 )
2024-11-18 14:48:01 -08:00
0344e9a8c8
Add scripts to run microsoft/AttackSurfaceAnalyzer for the azure-osconfig ( #809 )
2024-11-18 12:38:14 -08:00
c437662e52
Fix FormatAllocateString complexity ( #808 )
...
* tests: Add test case showing accidental O(n^2) complexity in FormatAllocateString
* Rewrite FormatAllocateString to avoid reallocation loop
* Add fuzz corpus showing slow CheckFileSystemMountingOption
2024-11-18 10:43:43 -08:00
ec13b63933
Fix memory leak in parson's parse_object_value() ( #801 )
2024-11-18 10:42:58 -08:00
c485e62643
Added policyPackageList as NRP test input ( #802 )
...
* Added policyPackageList as NRP test input
* Added policyPackageList as required
* fixed for PR builds
* Fixed PR builds
* added missing step condition
* Fixed condition
* Fixed paths for test report
2024-11-15 13:26:10 -08:00
be0233f51f
Remove prod workflow trigger ( #805 )
2024-11-14 17:21:41 -08:00
8e8ec12110
Disabling atomic reference counting for Security Baseline module only when compiler is gcc 4.8 or earlier ( #804 )
2024-11-14 14:07:02 -08:00
c07da029f3
Extending the cmake build on Ubuntu 14 with gcc 4.8 to include moduletest and the SecurityBaseline module ( #803 )
2024-11-14 12:13:04 -08:00
0f27955762
Move fuzzer under tests directory ( #796 )
2024-11-13 14:15:00 -08:00
fd2e14996f
Various hardening for commonutils library internal calls for fuzzing ( #798 )
2024-11-13 09:44:24 -08:00
7b94800afe
adapters/pnp: Move aziot config copy to install time ( #793 )
...
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
2024-11-12 16:10:08 -08:00
5b37603917
CI workflow for fuzzing ( #799 )
2024-11-12 13:45:39 -08:00
4ba7d7f98a
Fuzzing targets: variant B ( #795 )
2024-11-11 09:34:29 -08:00
f5f522d5a9
Fixing typo in ASB v2 resource id in validation table (spelling Ensure) ( #794 )
...
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
2024-11-08 16:45:41 -08:00
ff165212b0
Adding Ubuntu 22.04 prerequisites for fuzzer CI ( #791 )
2024-11-08 15:02:01 -08:00
b2d4e9f16d
Initial fuzzer implementation ( #785 )
...
* Empty fuzzer implementation (CMake stuff only)
* SecurityBaselineMmiGet and SecurityBaselineMmiSet fuzz targets
* More fuzzing targets #1
* More fuzzing targets #2
* Add crash corpus #1
2024-11-05 13:02:12 -08:00
ac99485937
Optimizing ASB v2's commonutils!AppendPayloadToFile implementation ( #790 )
2024-11-05 13:01:14 -08:00
93d1f26457
Normalized stage_create_zip/create_zip ( #789 )
...
* normalized stage_create_zip/create_zip
* addressed comments
2024-11-04 16:53:34 -08:00
6fce34f400
Updating test policy definitions to match most current policy packages built from main today 11/04/2024 ( #788 )
2024-11-04 13:06:06 -08:00
55526dbba9
Small optimization for compiler check for platform and modules build ( #787 )
2024-11-01 14:41:52 -07:00
71c45a6ccc
Fix build on clang compiler ( #782 )
2024-11-01 11:57:10 -07:00
ee217be736
First set of bug fixes resulting from fuzzing (work in progress) ( #786 )
2024-11-01 10:59:01 -07:00
9b05bab36a
Use shared policy package artifacts across NRP tests ( #784 )
2024-10-30 09:54:18 -07:00
1724674d6f
Hardening commonutils!DeviceUtils functions for cases when ExecuteCommand succeeds without any text results ( #783 )
2024-10-28 18:05:22 -07:00
007209b747
Fix possible NULL dereference when lscpu command fails ( #781 )
2024-10-28 14:47:04 -07:00
34be52c935
Updating test policy definitions for ASB v2 and SSH for latest policy rules names and ids ( #780 )
2024-10-28 14:31:07 -07:00
0fc24419e8
Updating ASB v2 rule names ( #779 )
2024-10-25 15:57:05 -07:00
6ae4df53f6
Re-adding building from source CMake 3 for Ubuntu 14 build of the NRP and the policy packages ( #778 )
2024-10-24 13:44:14 -07:00
da22a42765
Cutting unnecessary dependencies for NRP and policy packages build on Ubuntu 14 workflow ( #776 )
2024-10-23 17:08:18 -07:00
eca8cd473a
Adding Ubuntu 14.04 and 'OSConfig for MC' policy packages build workflow ( #775 )
2024-10-22 15:13:11 -07:00
1c6cd5b7c8
Add sanitizers build github workflow ( #772 )
2024-10-22 14:56:06 -07:00
7c42863d19
Fixing readme for the Universal NRP adapter ( #774 )
2024-10-22 10:34:48 -07:00
934f5dfa72
Avoiding double close on temp file handle ( #773 )
2024-10-21 12:47:57 -07:00
8f5012b24f
Fixing ASB v2 temporary file creation race condition that may lead to /etc/shadow file exposure to unprivileged users ( #771 )
2024-10-18 13:12:56 -07:00
51c3e5ab09
Adding Rule Ids for ASB v2 via MC reason codes and last bits of ASB v2 stabilization ( #770 )
2024-10-17 21:51:12 -07:00
bd2af1860c
Fix various issues reported by address sanitizer from the unit tests ( #768 )
2024-10-15 10:52:29 -07:00
a141897d0a
Updating the ASB v2 policy package name for the MC CI automation tests ( #769 )
2024-10-11 11:11:02 -07:00
c8153b210e
Consolidating the materials for ASB v2 and SSH policies ( #767 )
2024-10-09 16:18:08 -07:00
a0f109f0d1
Migrated to AME infrastructure ( #765 )
2024-09-26 13:48:38 -07:00
043878e345
Fixing ASB v2's auditEnsureSystemdJournaldServicePersistsLogMessages and remediateEnsureSystemdJournaldServicePersistsLogMessages ( #764 )
2024-09-17 09:15:39 -07:00
0b85eadff1
Fix for ASB v2's auditEnsureDotDoesNotAppearInRootsPath ( #763 )
2024-09-12 18:25:22 -07:00
Ahmed Messaoud
Robert Schaedler
Jeremi Piotrowski
Daniel Szot
robertwoj-microsoft
Daniel Szot
Marius Niculescu
Jeremi Piotrowski
kkanas