From 2d946b41a052af492fedb0b1faaaf0421e210f1b Mon Sep 17 00:00:00 2001 From: Tom Burgin Date: Wed, 2 Oct 2024 15:08:41 -0400 Subject: [PATCH] change bundle id to com.northpolesec.* --- BUILD | 36 ++++++------- Conf/Package/Distribution.xml | 4 +- Conf/Package/package_and_sign.sh | 20 ++++---- Conf/Package/postinstall | 24 ++++----- Conf/Package/preinstall | 18 +++---- ...om.northpolesec.santa.bundleservice.plist} | 4 +- ...om.northpolesec.santa.metricservice.plist} | 4 +- ... => com.northpolesec.santa.newsyslog.conf} | 0 ...nta.plist => com.northpolesec.santa.plist} | 2 +- ... com.northpolesec.santa.syncservice.plist} | 4 +- ...ad.plist => com.northpolesec.santad.plist} | 6 +-- Conf/install.sh | 50 +++++++++---------- Conf/uninstall.sh | 32 ++++++------ Source/common/SNTCommonEnums.h | 2 +- Source/common/SNTConfigurator.m | 10 ++-- Source/common/SNTFileInfo.m | 8 +-- Source/common/SNTFileInfoTest.m | 14 +++--- Source/common/SNTLogging.m | 4 +- Source/common/SNTXPCBundleServiceInterface.m | 2 +- Source/common/SNTXPCControlInterface.m | 6 +-- Source/common/SNTXPCMetricServiceInterface.m | 2 +- Source/common/SNTXPCSyncServiceInterface.m | 2 +- .../BundleExample.app/Contents/Info.plist | 2 +- .../DirectoryBundle/Contents/Info.plist | 2 +- .../BundleExample.app/Contents/Info.plist | 2 +- Source/gui/BUILD | 4 +- .../gui/SNTFileAccessMessageWindowView.swift | 2 +- Source/gui/SNTNotificationManager.m | 6 +-- Source/gui/SNTNotificationManagerTest.m | 4 +- Source/santabundleservice/BUILD | 2 +- Source/santabundleservice/Info.plist | 2 +- Source/santactl/BUILD | 2 +- Source/santactl/Commands/SNTCommandFileInfo.m | 4 +- Source/santactl/Info.plist | 2 +- Source/santad/BUILD | 6 +-- Source/santad/DataLayer/SNTRuleTable.m | 2 +- Source/santad/DataLayer/WatchItems.mm | 4 +- Source/santad/DataLayer/WatchItemsTest.mm | 12 ++--- .../santad/EventProviders/AuthResultCache.mm | 2 +- Source/santad/EventProviders/RateLimiter.mm | 2 +- .../SNTEndpointSecurityClient.mm | 4 +- .../SNTEndpointSecurityDeviceManager.mm | 2 +- ...SNTEndpointSecurityFileAccessAuthorizer.mm | 2 +- ...ndpointSecurityFileAccessAuthorizerTest.mm | 2 +- .../SNTEndpointSecurityTamperResistance.mm | 6 +-- ...SNTEndpointSecurityTamperResistanceTest.mm | 2 +- Source/santad/Info.plist | 4 +- .../Serializers/ProtobufTest.mm | 4 +- .../Logs/EndpointSecurity/Writers/File.mm | 2 +- .../Logs/EndpointSecurity/Writers/Spool.mm | 2 +- Source/santad/Metrics.mm | 4 +- Source/santad/SNTDaemonControlController.mm | 2 +- Source/santad/SNTExecutionController.mm | 2 +- Source/santad/SNTSyncdQueue.m | 2 +- Source/santad/SantadTest.mm | 6 +-- Source/santad/TTYWriter.mm | 2 +- ...daemon.systemextension-adhoc.entitlements} | 0 Source/santad/main.mm | 10 ++-- Source/santametricservice/BUILD | 2 +- .../Formats/SNTMetricRawJSONFormat.m | 2 +- Source/santametricservice/Info.plist | 2 +- .../Writers/SNTMetricHTTPWriter.m | 2 +- .../Writers/SNTMetricHTTPWriterTest.m | 6 +-- Source/santasyncservice/BUILD | 2 +- Source/santasyncservice/Info.plist | 2 +- .../SNTPushNotificationsTracker.m | 2 +- Source/santasyncservice/SNTSyncBroadcaster.m | 2 +- Source/santasyncservice/SNTSyncManager.m | 2 +- Source/santasyncservice/SNTSyncService.m | 2 +- Source/santasyncservice/SNTSyncStage.mm | 6 +-- Testing/integration/VM/InstallationTool/BUILD | 2 +- Testing/integration/VM/VMCLI/BUILD | 2 +- Testing/integration/VM/VMGUI/BUILD | 2 +- Testing/integration/VM/setup.sh | 2 +- .../integration/configs/default.mobileconfig | 4 +- .../configs/usb-block.mobileconfig | 4 +- docs/binaries/santad.md | 2 +- docs/concepts/mode.md | 2 +- ...m.northpolesec.santa.example.mobileconfig} | 8 +-- docs/deployment/configuration.md | 18 +++---- docs/deployment/getting-started.md | 2 +- ...icationsettings.santa.example.mobileconfig | 6 +-- ...xtension-policy.santa.example.mobileconfig | 6 +-- ...-profile-policy.santa.example.mobileconfig | 16 +++--- docs/development/building.md | 4 +- docs/development/sync-protocol.md | 4 +- helper.bzl | 2 +- 87 files changed, 246 insertions(+), 246 deletions(-) rename Conf/{com.google.santa.bundleservice.plist => com.northpolesec.santa.bundleservice.plist} (84%) rename Conf/{com.google.santa.metricservice.plist => com.northpolesec.santa.metricservice.plist} (81%) rename Conf/{com.google.santa.newsyslog.conf => com.northpolesec.santa.newsyslog.conf} (100%) rename Conf/{com.google.santa.plist => com.northpolesec.santa.plist} (91%) rename Conf/{com.google.santa.syncservice.plist => com.northpolesec.santa.syncservice.plist} (82%) rename Conf/{com.google.santad.plist => com.northpolesec.santad.plist} (73%) rename Source/santad/{com.google.santa.daemon.systemextension-adhoc.entitlements => com.northpolesec.santa.daemon.systemextension-adhoc.entitlements} (100%) rename docs/deployment/{com.google.santa.example.mobileconfig => com.northpolesec.santa.example.mobileconfig} (95%) diff --git a/BUILD b/BUILD index 9e96c9e..9997e12 100644 --- a/BUILD +++ b/BUILD @@ -54,22 +54,22 @@ package_group( run_command( name = "unload", cmd = """ -sudo launchctl unload /Library/LaunchDaemons/com.google.santad.plist 2>/dev/null -sudo launchctl unload /Library/LaunchDaemons/com.google.santa.bundleservice.plist 2>/dev/null -sudo launchctl unload /Library/LaunchDaemons/com.google.santa.metricservice.plist 2>/dev/null -sudo launchctl unload /Library/LaunchDaemons/com.google.santa.syncservice.plist 2>/dev/null -launchctl unload /Library/LaunchAgents/com.google.santa.plist 2>/dev/null +sudo launchctl unload /Library/LaunchDaemons/com.northpolesec.santad.plist 2>/dev/null +sudo launchctl unload /Library/LaunchDaemons/com.northpolesec.santa.bundleservice.plist 2>/dev/null +sudo launchctl unload /Library/LaunchDaemons/com.northpolesec.santa.metricservice.plist 2>/dev/null +sudo launchctl unload /Library/LaunchDaemons/com.northpolesec.santa.syncservice.plist 2>/dev/null +launchctl unload /Library/LaunchAgents/com.northpolesec.santa.plist 2>/dev/null """, ) run_command( name = "load", cmd = """ -sudo launchctl load /Library/LaunchDaemons/com.google.santad.plist -sudo launchctl load /Library/LaunchDaemons/com.google.santa.bundleservice.plist -sudo launchctl load /Library/LaunchDaemons/com.google.santa.metricservice.plist -sudo launchctl load /Library/LaunchDaemons/com.google.santa.syncservice.plist -launchctl load /Library/LaunchAgents/com.google.santa.plist +sudo launchctl load /Library/LaunchDaemons/com.northpolesec.santad.plist +sudo launchctl load /Library/LaunchDaemons/com.northpolesec.santa.bundleservice.plist +sudo launchctl load /Library/LaunchDaemons/com.northpolesec.santa.metricservice.plist +sudo launchctl load /Library/LaunchDaemons/com.northpolesec.santa.syncservice.plist +launchctl load /Library/LaunchAgents/com.northpolesec.santa.plist """, ) @@ -101,12 +101,12 @@ genrule( "//Source/gui:Santa", "Conf/install.sh", "Conf/uninstall.sh", - "Conf/com.google.santa.bundleservice.plist", - "Conf/com.google.santa.metricservice.plist", - "Conf/com.google.santa.syncservice.plist", - "Conf/com.google.santad.plist", - "Conf/com.google.santa.plist", - "Conf/com.google.santa.newsyslog.conf", + "Conf/com.northpolesec.santa.bundleservice.plist", + "Conf/com.northpolesec.santa.metricservice.plist", + "Conf/com.northpolesec.santa.syncservice.plist", + "Conf/com.northpolesec.santad.plist", + "Conf/com.northpolesec.santa.plist", + "Conf/com.northpolesec.santa.newsyslog.conf", "Conf/Package/Distribution.xml", "Conf/Package/notarization_tool.sh", "Conf/Package/package_and_sign.sh", @@ -163,9 +163,9 @@ genrule( mkdir -p $(@D)/dsym cp -LR $$(dirname $$(dirname $${SRC})) $(@D)/dsym/Santa.app.dSYM ;; - *com.google.santa.daemon.systemextension.dSYM*Info.plist) + *com.northpolesec.santa.daemon.systemextension.dSYM*Info.plist) mkdir -p $(@D)/dsym - cp -LR $$(dirname $$(dirname $${SRC})) $(@D)/dsym/com.google.santa.daemon.systemextension.dSYM + cp -LR $$(dirname $$(dirname $${SRC})) $(@D)/dsym/com.northpolesec.santa.daemon.systemextension.dSYM ;; esac done diff --git a/Conf/Package/Distribution.xml b/Conf/Package/Distribution.xml index 835b477..e3f4945 100644 --- a/Conf/Package/Distribution.xml +++ b/Conf/Package/Distribution.xml @@ -8,9 +8,9 @@ - + -app.pkg +app.pkg diff --git a/Conf/Package/package_and_sign.sh b/Conf/Package/package_and_sign.sh index e17dad8..074609d 100755 --- a/Conf/Package/package_and_sign.sh +++ b/Conf/Package/package_and_sign.sh @@ -42,7 +42,7 @@ function die { } readonly INPUT_APP="${RELEASE_ROOT}/binaries/Santa.app" -readonly INPUT_SYSX="${INPUT_APP}/Contents/Library/SystemExtensions/com.google.santa.daemon.systemextension" +readonly INPUT_SYSX="${INPUT_APP}/Contents/Library/SystemExtensions/com.northpolesec.santa.daemon.systemextension" readonly INPUT_SANTACTL="${INPUT_APP}/Contents/MacOS/santactl" readonly INPUT_SANTABS="${INPUT_APP}/Contents/MacOS/santabundleservice" readonly INPUT_SANTAMS="${INPUT_APP}/Contents/MacOS/santametricservice" @@ -94,7 +94,7 @@ done # be verified without using sudo. /usr/bin/find "${RELEASE_ROOT}/binaries" -type f -name CodeResources -exec chmod 0644 {} \; /usr/bin/find "${RELEASE_ROOT}/binaries" -type d -exec chmod 0755 {} \; -/usr/bin/find "${RELEASE_ROOT}/conf" -type f -name "com.google.santa*" -exec chmod 0644 {} \; +/usr/bin/find "${RELEASE_ROOT}/conf" -type f -name "com.northpolesec.santa*" -exec chmod 0644 {} \; echo "verifying signatures" /usr/bin/codesign -vv -R="certificate leaf[subject.OU] = ${SIGNING_TEAMID}" \ @@ -114,13 +114,13 @@ echo "creating app pkg" "${APP_PKG_ROOT}/private/etc/asl" \ "${APP_PKG_ROOT}/private/etc/newsyslog.d" /bin/cp -vXR "${RELEASE_ROOT}/binaries/Santa.app" "${APP_PKG_ROOT}/Applications/" -/bin/cp -vX "${RELEASE_ROOT}/conf/com.google.santad.plist" "${APP_PKG_ROOT}/Library/LaunchDaemons/" -/bin/cp -vX "${RELEASE_ROOT}/conf/com.google.santa.plist" "${APP_PKG_ROOT}/Library/LaunchAgents/" -/bin/cp -vX "${RELEASE_ROOT}/conf/com.google.santa.bundleservice.plist" "${APP_PKG_ROOT}/Library/LaunchDaemons/" -/bin/cp -vX "${RELEASE_ROOT}/conf/com.google.santa.metricservice.plist" "${APP_PKG_ROOT}/Library/LaunchDaemons/" -/bin/cp -vX "${RELEASE_ROOT}/conf/com.google.santa.syncservice.plist" "${APP_PKG_ROOT}/Library/LaunchDaemons/" -/bin/cp -vX "${RELEASE_ROOT}/conf/com.google.santa.asl.conf" "${APP_PKG_ROOT}/private/etc/asl/" -/bin/cp -vX "${RELEASE_ROOT}/conf/com.google.santa.newsyslog.conf" "${APP_PKG_ROOT}/private/etc/newsyslog.d/" +/bin/cp -vX "${RELEASE_ROOT}/conf/com.northpolesec.santad.plist" "${APP_PKG_ROOT}/Library/LaunchDaemons/" +/bin/cp -vX "${RELEASE_ROOT}/conf/com.northpolesec.santa.plist" "${APP_PKG_ROOT}/Library/LaunchAgents/" +/bin/cp -vX "${RELEASE_ROOT}/conf/com.northpolesec.santa.bundleservice.plist" "${APP_PKG_ROOT}/Library/LaunchDaemons/" +/bin/cp -vX "${RELEASE_ROOT}/conf/com.northpolesec.santa.metricservice.plist" "${APP_PKG_ROOT}/Library/LaunchDaemons/" +/bin/cp -vX "${RELEASE_ROOT}/conf/com.northpolesec.santa.syncservice.plist" "${APP_PKG_ROOT}/Library/LaunchDaemons/" +/bin/cp -vX "${RELEASE_ROOT}/conf/com.northpolesec.santa.asl.conf" "${APP_PKG_ROOT}/private/etc/asl/" +/bin/cp -vX "${RELEASE_ROOT}/conf/com.northpolesec.santa.newsyslog.conf" "${APP_PKG_ROOT}/private/etc/newsyslog.d/" /bin/cp -vXL "${SCRIPT_PATH}/preinstall" "${APP_PKG_SCRIPTS}/" /bin/cp -vXL "${SCRIPT_PATH}/postinstall" "${APP_PKG_SCRIPTS}/" /bin/chmod +x "${APP_PKG_SCRIPTS}/"* @@ -133,7 +133,7 @@ echo "creating app pkg" /usr/bin/plutil -replace ChildBundles -json "[]" "${SCRATCH}/component.plist" # Build app package -/usr/bin/pkgbuild --identifier "com.google.santa" \ +/usr/bin/pkgbuild --identifier "com.northpolesec.santa" \ --version "$(echo "${RELEASE_NAME}" | cut -d - -f2)" \ --root "${APP_PKG_ROOT}" \ --component-plist "${SCRATCH}/component.plist" \ diff --git a/Conf/Package/postinstall b/Conf/Package/postinstall index 2844600..6894224 100644 --- a/Conf/Package/postinstall +++ b/Conf/Package/postinstall @@ -1,6 +1,6 @@ #!/bin/bash -# Load com.google.santa.daemon and com.google.santa.bundleservice +# Load com.northpolesec.santa.daemon and com.northpolesec.santa.bundleservice # If a user is logged in, also load the GUI agent. # If the target volume is not /, do nothing @@ -13,24 +13,24 @@ mkdir -p /usr/local/bin /bin/ln -sf /Applications/Santa.app/Contents/MacOS/santactl /usr/local/bin/santactl -# Remove the kext before com.google.santa.daemon loads if the SystemExtension is already present. -/bin/launchctl list EQHXZ8M8AV.com.google.santa.daemon > /dev/null 2>&1 && rm -rf /Library/Extensions/santa-driver.kext +# Remove the kext before com.northpolesec.santa.daemon loads if the SystemExtension is already present. +/bin/launchctl list EQHXZ8M8AV.com.northpolesec.santa.daemon > /dev/null 2>&1 && rm -rf /Library/Extensions/santa-driver.kext -# Load com.google.santa.daemon, its main has logic to handle loading the kext +# Load com.northpolesec.santa.daemon, its main has logic to handle loading the kext # or relaunching itself as a SystemExtension. -/bin/launchctl load -w /Library/LaunchDaemons/com.google.santad.plist +/bin/launchctl load -w /Library/LaunchDaemons/com.northpolesec.santad.plist -# Load com.google.santa.bundleservice -/bin/launchctl load -w /Library/LaunchDaemons/com.google.santa.bundleservice.plist +# Load com.northpolesec.santa.bundleservice +/bin/launchctl load -w /Library/LaunchDaemons/com.northpolesec.santa.bundleservice.plist -# Load com.google.santa.metricservice -/bin/launchctl load -w /Library/LaunchDaemons/com.google.santa.metricservice.plist +# Load com.northpolesec.santa.metricservice +/bin/launchctl load -w /Library/LaunchDaemons/com.northpolesec.santa.metricservice.plist -# Load com.google.santa.syncservice -/bin/launchctl load -w /Library/LaunchDaemons/com.google.santa.syncservice.plist +# Load com.northpolesec.santa.syncservice +/bin/launchctl load -w /Library/LaunchDaemons/com.northpolesec.santa.syncservice.plist GUI_USER=$(/usr/bin/stat -f '%u' /dev/console) [[ -z "${GUI_USER}" ]] && exit 0 -/bin/launchctl asuser "${GUI_USER}" /bin/launchctl load /Library/LaunchAgents/com.google.santa.plist +/bin/launchctl asuser "${GUI_USER}" /bin/launchctl load /Library/LaunchAgents/com.northpolesec.santa.plist exit 0 diff --git a/Conf/Package/preinstall b/Conf/Package/preinstall index d8e6a48..d0befb1 100644 --- a/Conf/Package/preinstall +++ b/Conf/Package/preinstall @@ -6,20 +6,20 @@ [[ $3 != "/" ]] && exit 0 -/bin/launchctl remove com.google.santad || true -/bin/launchctl remove com.google.santa.bundleservice || true -/bin/launchctl remove com.google.santa.metricservice || true -/bin/launchctl remove com.google.santa.syncservice || true +/bin/launchctl remove com.northpolesec.santad || true +/bin/launchctl remove com.northpolesec.santa.bundleservice || true +/bin/launchctl remove com.northpolesec.santa.metricservice || true +/bin/launchctl remove com.northpolesec.santa.syncservice || true /bin/sleep 1 -/sbin/kextunload -b com.google.santa-driver >/dev/null 2>&1 || true +/sbin/kextunload -b com.northpolesec.santa-driver >/dev/null 2>&1 || true # Remove cruft from old Santa versions /bin/rm -f /usr/libexec/santad /bin/rm -f /usr/sbin/santactl -/bin/launchctl remove com.google.santasync -/bin/rm -f /Library/LaunchDaemons/com.google.santasync.plist +/bin/launchctl remove com.northpolesec.santasync +/bin/rm -f /Library/LaunchDaemons/com.northpolesec.santasync.plist /bin/rm -rf /Applications/Santa.app /bin/rm -rf /Library/Extensions/santa-driver.kext @@ -28,6 +28,6 @@ GUI_USER=$(/usr/bin/stat -f '%u' /dev/console) [[ -z "${GUI_USER}" ]] && exit 0 -/bin/launchctl asuser "${GUI_USER}" /bin/launchctl remove com.google.santagui -/bin/launchctl asuser "${GUI_USER}" /bin/launchctl remove com.google.santa +/bin/launchctl asuser "${GUI_USER}" /bin/launchctl remove com.northpolesec.santagui +/bin/launchctl asuser "${GUI_USER}" /bin/launchctl remove com.northpolesec.santa exit 0 diff --git a/Conf/com.google.santa.bundleservice.plist b/Conf/com.northpolesec.santa.bundleservice.plist similarity index 84% rename from Conf/com.google.santa.bundleservice.plist rename to Conf/com.northpolesec.santa.bundleservice.plist index 2fa9079..23da1b9 100644 --- a/Conf/com.google.santa.bundleservice.plist +++ b/Conf/com.northpolesec.santa.bundleservice.plist @@ -3,7 +3,7 @@ Label - com.google.santa.bundleservice + com.northpolesec.santa.bundleservice ProgramArguments /Applications/Santa.app/Contents/MacOS/santabundleservice @@ -11,7 +11,7 @@ MachServices - com.google.santa.bundleservice + com.northpolesec.santa.bundleservice RunAtLoad diff --git a/Conf/com.google.santa.metricservice.plist b/Conf/com.northpolesec.santa.metricservice.plist similarity index 81% rename from Conf/com.google.santa.metricservice.plist rename to Conf/com.northpolesec.santa.metricservice.plist index 575843b..a922946 100644 --- a/Conf/com.google.santa.metricservice.plist +++ b/Conf/com.northpolesec.santa.metricservice.plist @@ -3,7 +3,7 @@ Label - com.google.santa.metricservice + com.northpolesec.santa.metricservice ProgramArguments /Applications/Santa.app/Contents/MacOS/santametricservice @@ -11,7 +11,7 @@ MachServices - com.google.santa.metricservice + com.northpolesec.santa.metricservice RunAtLoad diff --git a/Conf/com.google.santa.newsyslog.conf b/Conf/com.northpolesec.santa.newsyslog.conf similarity index 100% rename from Conf/com.google.santa.newsyslog.conf rename to Conf/com.northpolesec.santa.newsyslog.conf diff --git a/Conf/com.google.santa.plist b/Conf/com.northpolesec.santa.plist similarity index 91% rename from Conf/com.google.santa.plist rename to Conf/com.northpolesec.santa.plist index 4aee935..850ccd5 100644 --- a/Conf/com.google.santa.plist +++ b/Conf/com.northpolesec.santa.plist @@ -3,7 +3,7 @@ Label - com.google.santa + com.northpolesec.santa ProgramArguments /Applications/Santa.app/Contents/MacOS/Santa diff --git a/Conf/com.google.santa.syncservice.plist b/Conf/com.northpolesec.santa.syncservice.plist similarity index 82% rename from Conf/com.google.santa.syncservice.plist rename to Conf/com.northpolesec.santa.syncservice.plist index 5662e15..6cf7745 100644 --- a/Conf/com.google.santa.syncservice.plist +++ b/Conf/com.northpolesec.santa.syncservice.plist @@ -3,7 +3,7 @@ Label - com.google.santa.syncservice + com.northpolesec.santa.syncservice ProgramArguments /Applications/Santa.app/Contents/MacOS/santasyncservice @@ -11,7 +11,7 @@ MachServices - com.google.santa.syncservice + com.northpolesec.santa.syncservice RunAtLoad diff --git a/Conf/com.google.santad.plist b/Conf/com.northpolesec.santad.plist similarity index 73% rename from Conf/com.google.santad.plist rename to Conf/com.northpolesec.santad.plist index 8bf0c9d..c9b101c 100644 --- a/Conf/com.google.santad.plist +++ b/Conf/com.northpolesec.santad.plist @@ -3,15 +3,15 @@ Label - com.google.santad + com.northpolesec.santad ProgramArguments - /Applications/Santa.app/Contents/Library/SystemExtensions/com.google.santa.daemon.systemextension/Contents/MacOS/com.google.santa.daemon + /Applications/Santa.app/Contents/Library/SystemExtensions/com.northpolesec.santa.daemon.systemextension/Contents/MacOS/com.northpolesec.santa.daemon --syslog MachServices - com.google.santa.daemon + com.northpolesec.santa.daemon RunAtLoad diff --git a/Conf/install.sh b/Conf/install.sh index e06f312..45de881 100755 --- a/Conf/install.sh +++ b/Conf/install.sh @@ -19,37 +19,37 @@ if [[ -z "${BINARIES}" || -z "${CONF}" ]]; then fi # Unload santad and scheduled sync job. -/bin/launchctl remove com.google.santad >/dev/null 2>&1 +/bin/launchctl remove com.northpolesec.santad >/dev/null 2>&1 # Unload bundle service -/bin/launchctl remove com.google.santa.bundleservice >/dev/null 2>&1 +/bin/launchctl remove com.northpolesec.santa.bundleservice >/dev/null 2>&1 # Unload metric service -/bin/launchctl remove com.google.santa.metricservice >/dev/null 2>&1 +/bin/launchctl remove com.northpolesec.santa.metricservice >/dev/null 2>&1 # Unload sync service -/bin/launchctl remove com.google.santa.syncservice >/dev/null 2>&1 +/bin/launchctl remove com.northpolesec.santa.syncservice >/dev/null 2>&1 # Unload kext. -/sbin/kextunload -b com.google.santa-driver >/dev/null 2>&1 +/sbin/kextunload -b com.northpolesec.santa-driver >/dev/null 2>&1 # Determine if anyone is logged into the GUI GUI_USER=$(/usr/bin/stat -f '%u' /dev/console) # Unload GUI agent if someone is logged in. [[ -n "${GUI_USER}" ]] && \ - /bin/launchctl asuser "${GUI_USER}" /bin/launchctl remove com.google.santagui + /bin/launchctl asuser "${GUI_USER}" /bin/launchctl remove com.northpolesec.santagui [[ -n "$GUI_USER" ]] && \ - /bin/launchctl asuser "${GUI_USER}" /bin/launchctl remove com.google.santa + /bin/launchctl asuser "${GUI_USER}" /bin/launchctl remove com.northpolesec.santa # Cleanup cruft from old versions -/bin/launchctl remove com.google.santasync >/dev/null 2>&1 -/bin/rm /Library/LaunchDaemons/com.google.santasync.plist >/dev/null 2>&1 +/bin/launchctl remove com.northpolesec.santasync >/dev/null 2>&1 +/bin/rm /Library/LaunchDaemons/com.northpolesec.santasync.plist >/dev/null 2>&1 /bin/rm /usr/libexec/santad >/dev/null 2>&1 /bin/rm /usr/sbin/santactl >/dev/null 2>&1 /bin/rm -rf /Applications/Santa.app 2>&1 /bin/rm -rf /Library/Extensions/santa-driver.kext 2>&1 -/bin/rm /etc/asl/com.google.santa.asl.conf +/bin/rm /etc/asl/com.northpolesec.santa.asl.conf # Copy new files. /bin/mkdir -p /var/db/santa @@ -59,30 +59,30 @@ GUI_USER=$(/usr/bin/stat -f '%u' /dev/console) /bin/mkdir -p /usr/local/bin /bin/ln -s /Applications/Santa.app/Contents/MacOS/santactl /usr/local/bin 2>/dev/null -/bin/cp ${CONF}/com.google.santa.plist /Library/LaunchAgents -/bin/cp ${CONF}/com.google.santa.bundleservice.plist /Library/LaunchDaemons -/bin/cp ${CONF}/com.google.santa.metricservice.plist /Library/LaunchDaemons -/bin/cp ${CONF}/com.google.santa.syncservice.plist /Library/LaunchDaemons -/bin/cp ${CONF}/com.google.santad.plist /Library/LaunchDaemons -/bin/cp ${CONF}/com.google.santa.newsyslog.conf /etc/newsyslog.d/ +/bin/cp ${CONF}/com.northpolesec.santa.plist /Library/LaunchAgents +/bin/cp ${CONF}/com.northpolesec.santa.bundleservice.plist /Library/LaunchDaemons +/bin/cp ${CONF}/com.northpolesec.santa.metricservice.plist /Library/LaunchDaemons +/bin/cp ${CONF}/com.northpolesec.santa.syncservice.plist /Library/LaunchDaemons +/bin/cp ${CONF}/com.northpolesec.santad.plist /Library/LaunchDaemons +/bin/cp ${CONF}/com.northpolesec.santa.newsyslog.conf /etc/newsyslog.d/ # Reload syslogd to pick up ASL configuration change. /usr/bin/killall -HUP syslogd -# Load com.google.santa.daemon -/bin/launchctl load /Library/LaunchDaemons/com.google.santad.plist +# Load com.northpolesec.santa.daemon +/bin/launchctl load /Library/LaunchDaemons/com.northpolesec.santad.plist -# Load com.google.santa.bundleservice -/bin/launchctl load /Library/LaunchDaemons/com.google.santa.bundleservice.plist +# Load com.northpolesec.santa.bundleservice +/bin/launchctl load /Library/LaunchDaemons/com.northpolesec.santa.bundleservice.plist -# Load com.google.santa.metricservice -/bin/launchctl load /Library/LaunchDaemons/com.google.santa.metricservice.plist +# Load com.northpolesec.santa.metricservice +/bin/launchctl load /Library/LaunchDaemons/com.northpolesec.santa.metricservice.plist -# Load com.google.santa.syncservice -/bin/launchctl load /Library/LaunchDaemons/com.google.santa.syncservice.plist +# Load com.northpolesec.santa.syncservice +/bin/launchctl load /Library/LaunchDaemons/com.northpolesec.santa.syncservice.plist # Load GUI agent if someone is logged in. [[ -z "${GUI_USER}" ]] && exit 0 -/bin/launchctl asuser "${GUI_USER}" /bin/launchctl load -w /Library/LaunchAgents/com.google.santa.plist +/bin/launchctl asuser "${GUI_USER}" /bin/launchctl load -w /Library/LaunchAgents/com.northpolesec.santa.plist exit 0 diff --git a/Conf/uninstall.sh b/Conf/uninstall.sh index beb597d..78d0418 100755 --- a/Conf/uninstall.sh +++ b/Conf/uninstall.sh @@ -7,31 +7,31 @@ [ "$EUID" != 0 ] && printf "%s\n" "This requires running as root/sudo." && exit 1 # For macOS 10.15+ this will block up to 60 seconds -/bin/launchctl list EQHXZ8M8AV.com.google.santa.daemon > /dev/null 2>&1 && /Applications/Santa.app/Contents/MacOS/Santa --unload-system-extension +/bin/launchctl list EQHXZ8M8AV.com.northpolesec.santa.daemon > /dev/null 2>&1 && /Applications/Santa.app/Contents/MacOS/Santa --unload-system-extension -/bin/launchctl remove com.google.santad +/bin/launchctl remove com.northpolesec.santad # remove helper XPC services -/bin/launchctl remove com.google.santa.bundleservice -/bin/launchctl remove com.google.santa.metricservice -/bin/launchctl remove com.google.santa.syncservice +/bin/launchctl remove com.northpolesec.santa.bundleservice +/bin/launchctl remove com.northpolesec.santa.metricservice +/bin/launchctl remove com.northpolesec.santa.syncservice sleep 1 -/sbin/kextunload -b com.google.santa-driver >/dev/null 2>&1 +/sbin/kextunload -b com.northpolesec.santa-driver >/dev/null 2>&1 user=$(/usr/bin/stat -f '%u' /dev/console) -[[ -n "$user" ]] && /bin/launchctl asuser ${user} /bin/launchctl remove com.google.santagui -[[ -n "$user" ]] && /bin/launchctl asuser ${user} /bin/launchctl remove com.google.santa +[[ -n "$user" ]] && /bin/launchctl asuser ${user} /bin/launchctl remove com.northpolesec.santagui +[[ -n "$user" ]] && /bin/launchctl asuser ${user} /bin/launchctl remove com.northpolesec.santa # and to clean out the log config, although it won't write after wiping the binary /usr/bin/killall -HUP syslogd # delete artifacts on-disk /bin/rm -rf /Applications/Santa.app /bin/rm -rf /Library/Extensions/santa-driver.kext -/bin/rm -f /Library/LaunchAgents/com.google.santagui.plist -/bin/rm -f /Library/LaunchAgents/com.google.santa.plist -/bin/rm -f /Library/LaunchDaemons/com.google.santad.plist -/bin/rm -f /Library/LaunchDaemons/com.google.santa.bundleservice.plist -/bin/rm -f /Library/LaunchDaemons/com.google.santa.metricservice.plist -/bin/rm -f /Library/LaunchDaemons/com.google.santa.syncservice.plist -/bin/rm -f /private/etc/asl/com.google.santa.asl.conf -/bin/rm -f /private/etc/newsyslog.d/com.google.santa.newsyslog.conf +/bin/rm -f /Library/LaunchAgents/com.northpolesec.santagui.plist +/bin/rm -f /Library/LaunchAgents/com.northpolesec.santa.plist +/bin/rm -f /Library/LaunchDaemons/com.northpolesec.santad.plist +/bin/rm -f /Library/LaunchDaemons/com.northpolesec.santa.bundleservice.plist +/bin/rm -f /Library/LaunchDaemons/com.northpolesec.santa.metricservice.plist +/bin/rm -f /Library/LaunchDaemons/com.northpolesec.santa.syncservice.plist +/bin/rm -f /private/etc/asl/com.northpolesec.santa.asl.conf +/bin/rm -f /private/etc/newsyslog.d/com.northpolesec.santa.newsyslog.conf /bin/rm -f /usr/local/bin/santactl # just a symlink #uncomment to remove the config file and all databases, log files diff --git a/Source/common/SNTCommonEnums.h b/Source/common/SNTCommonEnums.h index 9668334..390de01 100644 --- a/Source/common/SNTCommonEnums.h +++ b/Source/common/SNTCommonEnums.h @@ -208,5 +208,5 @@ enum class StatResult { static const char *kSantaDPath = "/Applications/Santa.app/Contents/Library/SystemExtensions/" - "com.google.santa.daemon.systemextension/Contents/MacOS/com.google.santa.daemon"; + "com.northpolesec.santa.daemon.systemextension/Contents/MacOS/com.northpolesec.santa.daemon"; static const char *kSantaAppPath = "/Applications/Santa.app"; diff --git a/Source/common/SNTConfigurator.m b/Source/common/SNTConfigurator.m index 170ef16..898b03e 100644 --- a/Source/common/SNTConfigurator.m +++ b/Source/common/SNTConfigurator.m @@ -36,7 +36,7 @@ } @interface SNTConfigurator () -/// A NSUserDefaults object set to use the com.google.santa suite. +/// A NSUserDefaults object set to use the com.northpolesec.santa suite. @property(readonly, nonatomic) NSUserDefaults *defaults; /// Keys and expected value types. @@ -68,7 +68,7 @@ @implementation SNTConfigurator #endif /// The domain used by mobileconfig. -static NSString *const kMobileConfigDomain = @"com.google.santa"; +static NSString *const kMobileConfigDomain = @"com.northpolesec.santa"; /// The keys managed by a mobileconfig. static NSString *const kStaticRules = @"StaticRules"; @@ -288,7 +288,7 @@ - (instancetype)initWithSyncStateFile:(NSString *)syncStateFilePath _syncStateAccessAuthorizerBlock = syncStateAccessAuthorizer; _defaults = [NSUserDefaults standardUserDefaults]; - [_defaults addSuiteNamed:@"com.google.santa"]; + [_defaults addSuiteNamed:@"com.northpolesec.santa"]; _configState = [self readForcedConfig]; [self cacheStaticRules]; @@ -1305,9 +1305,9 @@ - (id)forcedConfigValueForKey:(NSString *)key { } - (void)startWatchingDefaults { - // Only com.google.santa.daemon should listen. + // Only com.northpolesec.santa.daemon should listen. NSString *processName = [[NSProcessInfo processInfo] processName]; - if (![processName isEqualToString:@"com.google.santa.daemon"]) return; + if (![processName isEqualToString:@"com.northpolesec.santa.daemon"]) return; [[NSNotificationCenter defaultCenter] addObserver:self selector:@selector(defaultsChanged:) name:NSUserDefaultsDidChangeNotification diff --git a/Source/common/SNTFileInfo.m b/Source/common/SNTFileInfo.m index 3bfac38..8a78bad 100644 --- a/Source/common/SNTFileInfo.m +++ b/Source/common/SNTFileInfo.m @@ -93,7 +93,7 @@ - (instancetype)initWithResolvedPath:(NSString *)path if (!_path.length) { if (error) { NSString *errStr = @"Unable to use empty path"; - *error = [NSError errorWithDomain:@"com.google.santa.fileinfo" + *error = [NSError errorWithDomain:@"com.northpolesec.santa.fileinfo" code:270 userInfo:@{NSLocalizedDescriptionKey : errStr}]; } @@ -103,7 +103,7 @@ - (instancetype)initWithResolvedPath:(NSString *)path if (!((S_IFMT & fileStat->st_mode) == S_IFREG)) { if (error) { NSString *errStr = [NSString stringWithFormat:@"Non regular file: %s", strerror(errno)]; - *error = [NSError errorWithDomain:@"com.google.santa.fileinfo" + *error = [NSError errorWithDomain:@"com.northpolesec.santa.fileinfo" code:290 userInfo:@{NSLocalizedDescriptionKey : errStr}]; } @@ -126,7 +126,7 @@ - (instancetype)initWithResolvedPath:(NSString *)path if (fd < 0) { if (error) { NSString *errStr = [NSString stringWithFormat:@"Unable to open file: %s", strerror(errno)]; - *error = [NSError errorWithDomain:@"com.google.santa.fileinfo" + *error = [NSError errorWithDomain:@"com.northpolesec.santa.fileinfo" code:280 userInfo:@{NSLocalizedDescriptionKey : errStr}]; } @@ -145,7 +145,7 @@ - (instancetype)initWithPath:(NSString *)path error:(NSError **)error { if (error) { NSString *errStr = @"Unable to resolve empty path"; if (path) errStr = [@"Unable to resolve path: " stringByAppendingString:path]; - *error = [NSError errorWithDomain:@"com.google.santa.fileinfo" + *error = [NSError errorWithDomain:@"com.northpolesec.santa.fileinfo" code:260 userInfo:@{NSLocalizedDescriptionKey : errStr}]; } diff --git a/Source/common/SNTFileInfoTest.m b/Source/common/SNTFileInfoTest.m index c8d391b..0f0f39b 100644 --- a/Source/common/SNTFileInfoTest.m +++ b/Source/common/SNTFileInfoTest.m @@ -142,7 +142,7 @@ - (void)testBundle { XCTAssertNotNil([sut bundle]); - XCTAssertEqualObjects([sut bundleIdentifier], @"com.google.santa.BundleExample"); + XCTAssertEqualObjects([sut bundleIdentifier], @"com.northpolesec.santa.BundleExample"); XCTAssertEqualObjects([sut bundleName], @"BundleExample"); XCTAssertEqualObjects([sut bundleVersion], @"1"); XCTAssertEqualObjects([sut bundleShortVersionString], @"1.0"); @@ -156,7 +156,7 @@ - (void)testAncestorBundle { XCTAssertNotNil([sut bundle]); - XCTAssertEqualObjects([sut bundleIdentifier], @"com.google.santa.UnitTest.SNTFileInfoTest"); + XCTAssertEqualObjects([sut bundleIdentifier], @"com.northpolesec.santa.UnitTest.SNTFileInfoTest"); XCTAssertNotNil([sut bundleVersion]); XCTAssertNotNil([sut bundleShortVersionString]); @@ -174,7 +174,7 @@ - (void)testBundleIsAncestor { XCTAssertNotNil([sut bundle]); - XCTAssertEqualObjects([sut bundleIdentifier], @"com.google.santa.UnitTest.SNTFileInfoTest"); + XCTAssertEqualObjects([sut bundleIdentifier], @"com.northpolesec.santa.UnitTest.SNTFileInfoTest"); XCTAssertNotNil([sut bundleVersion]); XCTAssertNotNil([sut bundleShortVersionString]); XCTAssertEqualObjects([sut bundlePath], path); @@ -192,7 +192,7 @@ - (void)testDirectoryBundleIsNotAncestor { XCTAssertNotNil([sut bundle]); - XCTAssertEqualObjects([sut bundleIdentifier], @"com.google.santa.BundleExample"); + XCTAssertEqualObjects([sut bundleIdentifier], @"com.northpolesec.santa.BundleExample"); XCTAssertEqualObjects([sut bundleName], @"BundleExample"); XCTAssertEqualObjects([sut bundleVersion], @"1"); XCTAssertEqualObjects([sut bundleShortVersionString], @"1.0"); @@ -205,7 +205,7 @@ - (void)testBundleCacheReset { XCTAssertNotNil([sut bundle]); - XCTAssertEqualObjects([sut bundleIdentifier], @"com.google.santa.BundleExample"); + XCTAssertEqualObjects([sut bundleIdentifier], @"com.northpolesec.santa.BundleExample"); XCTAssertEqualObjects([sut bundleName], @"BundleExample"); XCTAssertEqualObjects([sut bundleVersion], @"1"); XCTAssertEqualObjects([sut bundleShortVersionString], @"1.0"); @@ -215,7 +215,7 @@ - (void)testBundleCacheReset { XCTAssertNotNil([sut bundle]); - XCTAssertEqualObjects([sut bundleIdentifier], @"com.google.santa.UnitTest.SNTFileInfoTest"); + XCTAssertEqualObjects([sut bundleIdentifier], @"com.northpolesec.santa.UnitTest.SNTFileInfoTest"); XCTAssertNotNil([sut bundleVersion]); XCTAssertNotNil([sut bundleShortVersionString]); @@ -242,7 +242,7 @@ - (void)testEmbeddedInfoPlist { SNTFileInfo *sut = [[SNTFileInfo alloc] initWithPath:path]; XCTAssertNotNil([sut infoPlist]); XCTAssertEqualObjects([sut infoPlist][@"CFBundleShortVersionString"], @"1.0"); - XCTAssertEqualObjects([sut infoPlist][@"CFBundleIdentifier"], @"com.google.i386plist"); + XCTAssertEqualObjects([sut infoPlist][@"CFBundleIdentifier"], @"com.northpolesec.i386plist"); // csreq is installed on all machines with Xcode installed. If you're running these tests, // it should be available.. diff --git a/Source/common/SNTLogging.m b/Source/common/SNTLogging.m index 234064c..c923e36 100644 --- a/Source/common/SNTLogging.m +++ b/Source/common/SNTLogging.m @@ -52,7 +52,7 @@ void logMessage(LogLevel level, FILE *destination, NSString *format, ...) { // If requested, redirect output to syslog. if ([[[NSProcessInfo processInfo] arguments] containsObject:@"--syslog"] || - [binaryName isEqualToString:@"com.google.santa.daemon"]) { + [binaryName isEqualToString:@"com.northpolesec.santa.daemon"]) { useSyslog = YES; pthread_key_create(&syslogKey, syslogClientDestructor); } @@ -70,7 +70,7 @@ void logMessage(LogLevel level, FILE *destination, NSString *format, ...) { if (client == NULL) { #pragma clang diagnostic push #pragma clang diagnostic ignored "-Wdeprecated-declarations" - client = asl_open(NULL, "com.google.santa", 0); + client = asl_open(NULL, "com.northpolesec.santa", 0); asl_set_filter(client, ASL_FILTER_MASK_UPTO(ASL_LEVEL_DEBUG)); #pragma clang diagnostic pop pthread_setspecific(syslogKey, client); diff --git a/Source/common/SNTXPCBundleServiceInterface.m b/Source/common/SNTXPCBundleServiceInterface.m index 676ea19..941df3f 100644 --- a/Source/common/SNTXPCBundleServiceInterface.m +++ b/Source/common/SNTXPCBundleServiceInterface.m @@ -30,7 +30,7 @@ + (NSXPCInterface *)bundleServiceInterface { } + (NSString *)serviceID { - return @"com.google.santa.bundleservice"; + return @"com.northpolesec.santa.bundleservice"; } + (MOLXPCConnection *)configuredConnection { diff --git a/Source/common/SNTXPCControlInterface.m b/Source/common/SNTXPCControlInterface.m index c2a3881..64ebcce 100644 --- a/Source/common/SNTXPCControlInterface.m +++ b/Source/common/SNTXPCControlInterface.m @@ -22,18 +22,18 @@ #import "Source/common/SNTRule.h" #import "Source/common/SNTStoredEvent.h" -NSString *const kBundleID = @"com.google.santa.daemon"; +NSString *const kBundleID = @"com.northpolesec.santa.daemon"; @implementation SNTXPCControlInterface + (NSString *)serviceID { #ifdef SANTAADHOC // The mach service for an adhoc signed ES sysx uses the "endpoint-security" prefix instead of - // the teamid. In Santa's case it will be endpoint-security.com.google.santa.daemon.xpc. + // the teamid. In Santa's case it will be endpoint-security.com.northpolesec.santa.daemon.xpc. return [NSString stringWithFormat:@"endpoint-security.%@.xpc", kBundleID]; #else MOLCodesignChecker *cs = [[MOLCodesignChecker alloc] initWithSelf]; - // "teamid.com.google.santa.daemon.xpc" + // "teamid.com.northpolesec.santa.daemon.xpc" return [NSString stringWithFormat:@"%@.%@.xpc", cs.teamID, kBundleID]; #endif } diff --git a/Source/common/SNTXPCMetricServiceInterface.m b/Source/common/SNTXPCMetricServiceInterface.m index 3f5142b..249c920 100644 --- a/Source/common/SNTXPCMetricServiceInterface.m +++ b/Source/common/SNTXPCMetricServiceInterface.m @@ -29,7 +29,7 @@ + (NSXPCInterface *)metricServiceInterface { } + (NSString *)serviceID { - return @"com.google.santa.metricservice"; + return @"com.northpolesec.santa.metricservice"; } + (MOLXPCConnection *)configuredConnection { diff --git a/Source/common/SNTXPCSyncServiceInterface.m b/Source/common/SNTXPCSyncServiceInterface.m index da7714f..5aa7b62 100644 --- a/Source/common/SNTXPCSyncServiceInterface.m +++ b/Source/common/SNTXPCSyncServiceInterface.m @@ -30,7 +30,7 @@ + (NSXPCInterface *)syncServiceInterface { } + (NSString *)serviceID { - return @"com.google.santa.syncservice"; + return @"com.northpolesec.santa.syncservice"; } + (MOLXPCConnection *)configuredConnection { diff --git a/Source/common/testdata/BundleExample.app/Contents/Info.plist b/Source/common/testdata/BundleExample.app/Contents/Info.plist index d9c402f..bbe3284 100644 --- a/Source/common/testdata/BundleExample.app/Contents/Info.plist +++ b/Source/common/testdata/BundleExample.app/Contents/Info.plist @@ -9,7 +9,7 @@ CFBundleExecutable BundleExample CFBundleIdentifier - com.google.santa.BundleExample + com.northpolesec.santa.BundleExample CFBundleInfoDictionaryVersion 6.0 CFBundleName diff --git a/Source/common/testdata/DirectoryBundle/Contents/Info.plist b/Source/common/testdata/DirectoryBundle/Contents/Info.plist index e938a94..abdf211 100644 --- a/Source/common/testdata/DirectoryBundle/Contents/Info.plist +++ b/Source/common/testdata/DirectoryBundle/Contents/Info.plist @@ -9,7 +9,7 @@ CFBundleExecutable DirectoryBundle CFBundleIdentifier - com.google.santa.DirectoryBundle + com.northpolesec.santa.DirectoryBundle CFBundleInfoDictionaryVersion 6.0 CFBundleName diff --git a/Source/common/testdata/DirectoryBundle/Contents/Resources/BundleExample.app/Contents/Info.plist b/Source/common/testdata/DirectoryBundle/Contents/Resources/BundleExample.app/Contents/Info.plist index d9c402f..bbe3284 100644 --- a/Source/common/testdata/DirectoryBundle/Contents/Resources/BundleExample.app/Contents/Info.plist +++ b/Source/common/testdata/DirectoryBundle/Contents/Resources/BundleExample.app/Contents/Info.plist @@ -9,7 +9,7 @@ CFBundleExecutable BundleExample CFBundleIdentifier - com.google.santa.BundleExample + com.northpolesec.santa.BundleExample CFBundleInfoDictionaryVersion 6.0 CFBundleName diff --git a/Source/gui/BUILD b/Source/gui/BUILD index 3e6eac7..b6b9af0 100644 --- a/Source/gui/BUILD +++ b/Source/gui/BUILD @@ -103,10 +103,10 @@ macos_application( "//Source/santabundleservice": "MacOS", "//Source/santametricservice": "MacOS", "//Source/santasyncservice": "MacOS", - "//Source/santad:com.google.santa.daemon": "Library/SystemExtensions", + "//Source/santad:com.northpolesec.santa.daemon": "Library/SystemExtensions", }, app_icons = glob(["Resources/Images.xcassets/**"]), - bundle_id = "com.google.santa", + bundle_id = "com.northpolesec.santa", bundle_name = "Santa", codesignopts = [ "--timestamp", diff --git a/Source/gui/SNTFileAccessMessageWindowView.swift b/Source/gui/SNTFileAccessMessageWindowView.swift index 2c6fd99..3419833 100644 --- a/Source/gui/SNTFileAccessMessageWindowView.swift +++ b/Source/gui/SNTFileAccessMessageWindowView.swift @@ -189,7 +189,7 @@ func testFileAccessEvent() -> SNTFileAccessEvent { faaEvent.filePath = "/Applications/gShoe.app/Contents/MacOS/gShoe" faaEvent.application = "gShoe" faaEvent.teamID = "EQHXZ8M8AV" - faaEvent.signingID = "com.google.gShoe" + faaEvent.signingID = "com.northpolesec.gShoe" faaEvent.executingUser = "nobody" faaEvent.pid = 456 faaEvent.ppid = 123 diff --git a/Source/gui/SNTNotificationManager.m b/Source/gui/SNTNotificationManager.m index 017f9ae..347ba38 100644 --- a/Source/gui/SNTNotificationManager.m +++ b/Source/gui/SNTNotificationManager.m @@ -53,7 +53,7 @@ - (instancetype)init { if (self) { _pendingNotifications = [[NSMutableArray alloc] init]; _hashBundleBinariesQueue = - dispatch_queue_create("com.google.santagui.hashbundlebinaries", DISPATCH_QUEUE_SERIAL); + dispatch_queue_create("com.northpolesec.santagui.hashbundlebinaries", DISPATCH_QUEUE_SERIAL); } return self; } @@ -177,8 +177,8 @@ - (void)postDistributedNotification:(SNTMessageWindowController *)pendingMsg { kSigningChain : signingChain, }; - [dc postNotificationName:@"com.google.santa.notification.blockedeexecution" - object:@"com.google.santa" + [dc postNotificationName:@"com.northpolesec.santa.notification.blockedeexecution" + object:@"com.northpolesec.santa" userInfo:userInfo deliverImmediately:YES]; } diff --git a/Source/gui/SNTNotificationManagerTest.m b/Source/gui/SNTNotificationManagerTest.m index e2626a5..7b12893 100644 --- a/Source/gui/SNTNotificationManagerTest.m +++ b/Source/gui/SNTNotificationManagerTest.m @@ -60,8 +60,8 @@ - (void)testPostBlockNotificationSendsDistributedNotification { [sut postBlockNotification:ev withCustomMessage:@"" andCustomURL:@""]; - OCMVerify([dncMock postNotificationName:@"com.google.santa.notification.blockedeexecution" - object:@"com.google.santa" + OCMVerify([dncMock postNotificationName:@"com.northpolesec.santa.notification.blockedeexecution" + object:@"com.northpolesec.santa" userInfo:[OCMArg checkWithBlock:^BOOL(NSDictionary *userInfo) { XCTAssertEqualObjects(userInfo[@"file_sha256"], @"the-sha256"); XCTAssertEqualObjects(userInfo[@"pid"], @84156); diff --git a/Source/santabundleservice/BUILD b/Source/santabundleservice/BUILD index 0346f45..38cc4a5 100644 --- a/Source/santabundleservice/BUILD +++ b/Source/santabundleservice/BUILD @@ -28,7 +28,7 @@ objc_library( macos_command_line_application( name = "santabundleservice", - bundle_id = "com.google.santa.bundleservice", + bundle_id = "com.northpolesec.santa.bundleservice", codesignopts = [ "--timestamp", "--force", diff --git a/Source/santabundleservice/Info.plist b/Source/santabundleservice/Info.plist index bf677a1..b4a23ad 100644 --- a/Source/santabundleservice/Info.plist +++ b/Source/santabundleservice/Info.plist @@ -9,7 +9,7 @@ CFBundleExecutable santabundleservice CFBundleIdentifier - com.google.santa.bundleservice + com.northpolesec.santa.bundleservice CFBundleInfoDictionaryVersion 6.0 CFBundleName diff --git a/Source/santactl/BUILD b/Source/santactl/BUILD index b47bb54..33a9fbf 100644 --- a/Source/santactl/BUILD +++ b/Source/santactl/BUILD @@ -87,7 +87,7 @@ objc_library( macos_command_line_application( name = "santactl", - bundle_id = "com.google.santa.ctl", + bundle_id = "com.northpolesec.santa.ctl", codesignopts = [ "--timestamp", "--force", diff --git a/Source/santactl/Commands/SNTCommandFileInfo.m b/Source/santactl/Commands/SNTCommandFileInfo.m index fae8b06..829a453 100644 --- a/Source/santactl/Commands/SNTCommandFileInfo.m +++ b/Source/santactl/Commands/SNTCommandFileInfo.m @@ -248,7 +248,7 @@ - (instancetype)initWithDaemonConnection:(MOLXPCConnection *)daemonConn { kCDHash : self.cdhash, }; - _printQueue = dispatch_queue_create("com.google.santactl.print_queue", DISPATCH_QUEUE_SERIAL); + _printQueue = dispatch_queue_create("com.northpolesec.santactl.print_queue", DISPATCH_QUEUE_SERIAL); } return self; } @@ -357,7 +357,7 @@ - (SNTAttributeBlock)codeSigned { case errSecCSReqUnsupported: return @"Yes, but failed requirement validation"; case errSecCSInfoPlistFailed: return @"Yes, but can't validate as Info.plist is missing"; case errSecCSSignatureInvalid: - if ([error.domain isEqualToString:@"com.google.molcodesignchecker"]) { + if ([error.domain isEqualToString:@"com.northpolesec.molcodesignchecker"]) { return @"Yes, but signing is not consistent for all architectures"; } case CSSMERR_TP_CERT_REVOKED: return @"Yes, but the signing certificate was revoked"; diff --git a/Source/santactl/Info.plist b/Source/santactl/Info.plist index 9eefe5f..b67c598 100644 --- a/Source/santactl/Info.plist +++ b/Source/santactl/Info.plist @@ -3,7 +3,7 @@ CFBundleIdentifier - com.google.santa.ctl + com.northpolesec.santa.ctl CFBundleInfoDictionaryVersion 6.0 CFBundleName diff --git a/Source/santad/BUILD b/Source/santad/BUILD index 7d44e1f..cf8b9dd 100644 --- a/Source/santad/BUILD +++ b/Source/santad/BUILD @@ -830,16 +830,16 @@ objc_library( ) macos_bundle( - name = "com.google.santa.daemon", + name = "com.northpolesec.santa.daemon", bundle_extension = "systemextension", - bundle_id = "com.google.santa.daemon", + bundle_id = "com.northpolesec.santa.daemon", codesignopts = [ "--timestamp", "--force", "--options library,kill,runtime", ], entitlements = select({ - "//:adhoc_build": "com.google.santa.daemon.systemextension-adhoc.entitlements", + "//:adhoc_build": "com.northpolesec.santa.daemon.systemextension-adhoc.entitlements", # Non-adhoc builds get their entitlements from the provisioning profile. "//conditions:default": None, }), diff --git a/Source/santad/DataLayer/SNTRuleTable.m b/Source/santad/DataLayer/SNTRuleTable.m index fd172bf..53cfea7 100644 --- a/Source/santad/DataLayer/SNTRuleTable.m +++ b/Source/santad/DataLayer/SNTRuleTable.m @@ -571,7 +571,7 @@ - (BOOL)fillError:(NSError **)error code:(SNTRuleTableError)code message:(NSStri if (message) d[NSLocalizedFailureReasonErrorKey] = message; - *error = [NSError errorWithDomain:@"com.google.santad.ruletable" code:code userInfo:d]; + *error = [NSError errorWithDomain:@"com.northpolesec.santad.ruletable" code:code userInfo:d]; return YES; } #pragma mark Querying diff --git a/Source/santad/DataLayer/WatchItems.mm b/Source/santad/DataLayer/WatchItems.mm index 61f3b42..29e1734 100644 --- a/Source/santad/DataLayer/WatchItems.mm +++ b/Source/santad/DataLayer/WatchItems.mm @@ -108,7 +108,7 @@ static void PopulateError(NSError **err, NSString *msg) { if (err) { - *err = [NSError errorWithDomain:@"com.google.santa.watchitems" + *err = [NSError errorWithDomain:@"com.northpolesec.santa.watchitems" code:0 userInfo:@{NSLocalizedDescriptionKey : msg}]; } @@ -626,7 +626,7 @@ bool ParseConfig(NSDictionary *config, std::vector(proc_list)); XCTAssertEqual(std::get(proc_list).size(), 1); XCTAssertEqual(std::get(proc_list)[0], - WatchItemPolicy::Process("", "com.google.test", "", {}, "", std::nullopt)); + WatchItemPolicy::Process("", "com.northpolesec.test", "", {}, "", std::nullopt)); // Test TeamID length limits proc_list = VerifyConfigWatchItemProcesses(@{ @@ -634,7 +634,7 @@ - (void)testVerifyConfigWatchItemProcesses { kWatchItemConfigKeyProcesses : @[ @{ kWatchItemConfigKeyProcessesBinaryPath : @"mypath1", - kWatchItemConfigKeyProcessesSigningID : @"com.google.test1", + kWatchItemConfigKeyProcessesSigningID : @"com.northpolesec.test1", kWatchItemConfigKeyProcessesTeamID : @"validtid_1", kWatchItemConfigKeyProcessesCDHash : cdhash, kWatchItemConfigKeyProcessesCertificateSha256 : certHash, @@ -642,7 +642,7 @@ - (void)testVerifyConfigWatchItemProcesses { }, @{ kWatchItemConfigKeyProcessesBinaryPath : @"mypath2", - kWatchItemConfigKeyProcessesSigningID : @"com.google.test2", + kWatchItemConfigKeyProcessesSigningID : @"com.northpolesec.test2", kWatchItemConfigKeyProcessesTeamID : @"validtid_2", kWatchItemConfigKeyProcessesCDHash : cdhash, kWatchItemConfigKeyProcessesCertificateSha256 : certHash, @@ -654,10 +654,10 @@ - (void)testVerifyConfigWatchItemProcesses { XCTAssertTrue(std::holds_alternative(proc_list)); XCTAssertEqual(std::get(proc_list).size(), 2); XCTAssertEqual(std::get(proc_list)[0], - WatchItemPolicy::Process("mypath1", "com.google.test1", "validtid_1", cdhashBytes, + WatchItemPolicy::Process("mypath1", "com.northpolesec.test1", "validtid_1", cdhashBytes, [certHash UTF8String], std::make_optional(true))); XCTAssertEqual(std::get(proc_list)[1], - WatchItemPolicy::Process("mypath2", "com.google.test2", "validtid_2", cdhashBytes, + WatchItemPolicy::Process("mypath2", "com.northpolesec.test2", "validtid_2", cdhashBytes, [certHash UTF8String], std::make_optional(false))); } diff --git a/Source/santad/EventProviders/AuthResultCache.mm b/Source/santad/EventProviders/AuthResultCache.mm index f87aef6..c79d47a 100644 --- a/Source/santad/EventProviders/AuthResultCache.mm +++ b/Source/santad/EventProviders/AuthResultCache.mm @@ -99,7 +99,7 @@ static inline uint64_t TimestampFromCachedValue(uint64_t cachedValue) { } q_ = dispatch_queue_create( - "com.google.santa.daemon.auth_result_cache.q", + "com.northpolesec.santa.daemon.auth_result_cache.q", dispatch_queue_attr_make_with_qos_class(DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL, QOS_CLASS_USER_INTERACTIVE, 0)); } diff --git a/Source/santad/EventProviders/RateLimiter.mm b/Source/santad/EventProviders/RateLimiter.mm index e567a40..9888435 100644 --- a/Source/santad/EventProviders/RateLimiter.mm +++ b/Source/santad/EventProviders/RateLimiter.mm @@ -36,7 +36,7 @@ reset_mach_time_(0), reset_duration_ns_(reset_duration * NSEC_PER_SEC) { q_ = dispatch_queue_create( - "com.google.santa.daemon.rate_limiter", + "com.northpolesec.santa.daemon.rate_limiter", dispatch_queue_attr_make_with_qos_class(DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL, QOS_CLASS_USER_INTERACTIVE, 0)); } diff --git a/Source/santad/EventProviders/SNTEndpointSecurityClient.mm b/Source/santad/EventProviders/SNTEndpointSecurityClient.mm index f21bf04..4a2c267 100644 --- a/Source/santad/EventProviders/SNTEndpointSecurityClient.mm +++ b/Source/santad/EventProviders/SNTEndpointSecurityClient.mm @@ -85,12 +85,12 @@ - (instancetype)initWithESAPI:(std::shared_ptr)esApi _maxAllowedHeadroom = 5 * NSEC_PER_SEC; _authQueue = dispatch_queue_create( - "com.google.santa.daemon.auth_queue", + "com.northpolesec.santa.daemon.auth_queue", dispatch_queue_attr_make_with_qos_class(DISPATCH_QUEUE_CONCURRENT_WITH_AUTORELEASE_POOL, QOS_CLASS_USER_INTERACTIVE, 0)); _notifyQueue = dispatch_queue_create( - "com.google.santa.daemon.notify_queue", + "com.northpolesec.santa.daemon.notify_queue", dispatch_queue_attr_make_with_qos_class(DISPATCH_QUEUE_CONCURRENT_WITH_AUTORELEASE_POOL, QOS_CLASS_UTILITY, 0)); } diff --git a/Source/santad/EventProviders/SNTEndpointSecurityDeviceManager.mm b/Source/santad/EventProviders/SNTEndpointSecurityDeviceManager.mm index bd37cf3..dc107a6 100644 --- a/Source/santad/EventProviders/SNTEndpointSecurityDeviceManager.mm +++ b/Source/santad/EventProviders/SNTEndpointSecurityDeviceManager.mm @@ -193,7 +193,7 @@ - (instancetype)initWithESAPI:(std::shared_ptr)esApi _blockUSBMount = blockUSBMount; _remountArgs = remountUSBMode; - _diskQueue = dispatch_queue_create("com.google.santa.daemon.disk_queue", DISPATCH_QUEUE_SERIAL); + _diskQueue = dispatch_queue_create("com.northpolesec.santa.daemon.disk_queue", DISPATCH_QUEUE_SERIAL); _diskArbSession = DASessionCreate(NULL); DASessionSetDispatchQueue(_diskArbSession, _diskQueue); diff --git a/Source/santad/EventProviders/SNTEndpointSecurityFileAccessAuthorizer.mm b/Source/santad/EventProviders/SNTEndpointSecurityFileAccessAuthorizer.mm index 2c85713..ca6a377 100644 --- a/Source/santad/EventProviders/SNTEndpointSecurityFileAccessAuthorizer.mm +++ b/Source/santad/EventProviders/SNTEndpointSecurityFileAccessAuthorizer.mm @@ -99,7 +99,7 @@ public: ProcessSet() { q_ = dispatch_queue_create( - "com.google.santa.daemon.faa", + "com.northpolesec.santa.daemon.faa", dispatch_queue_attr_make_with_qos_class(DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL, QOS_CLASS_USER_INTERACTIVE, 0)); }; diff --git a/Source/santad/EventProviders/SNTEndpointSecurityFileAccessAuthorizerTest.mm b/Source/santad/EventProviders/SNTEndpointSecurityFileAccessAuthorizerTest.mm index bd63a3b..98a3981 100644 --- a/Source/santad/EventProviders/SNTEndpointSecurityFileAccessAuthorizerTest.mm +++ b/Source/santad/EventProviders/SNTEndpointSecurityFileAccessAuthorizerTest.mm @@ -462,7 +462,7 @@ - (void)testSpecialCaseForPolicyMessage { - (void)testPolicyProcessMatchesESProcess { const char *instigatingCertHash = "abc123"; const char *teamId = "myvalidtid"; - const char *signingId = "com.google.test"; + const char *signingId = "com.northpolesec.test"; std::vector cdhashBytes(CS_CDHASH_LEN); std::fill(cdhashBytes.begin(), cdhashBytes.end(), 0xAA); es_file_t esFile = MakeESFile("foo"); diff --git a/Source/santad/EventProviders/SNTEndpointSecurityTamperResistance.mm b/Source/santad/EventProviders/SNTEndpointSecurityTamperResistance.mm index 07396d6..5c08668 100644 --- a/Source/santad/EventProviders/SNTEndpointSecurityTamperResistance.mm +++ b/Source/santad/EventProviders/SNTEndpointSecurityTamperResistance.mm @@ -30,7 +30,7 @@ using santa::Message; using santa::WatchItemPathType; -static constexpr std::string_view kSantaKextIdentifier = "com.google.santa-driver"; +static constexpr std::string_view kSantaKextIdentifier = "com.northpolesec.santa-driver"; @implementation SNTEndpointSecurityTamperResistance { std::shared_ptr _logger; @@ -179,11 +179,11 @@ es_auth_result_t ValidateLaunchctlExec(const Message &esMsg) { return ES_AUTH_RESULT_ALLOW; } - // Check whether com.google.santa.daemon is in the argument list. + // Check whether com.northpolesec.santa.daemon is in the argument list. // launchctl no longer accepts PIDs to operate on. for (int i = 2; i < argCount; i++) { es_string_token_t arg = esApi->ExecArg(&esMsg->event.exec, i); - if (strnstr(arg.data, "com.google.santa.daemon", arg.length) != NULL) { + if (strnstr(arg.data, "com.northpolesec.santa.daemon", arg.length) != NULL) { return ES_AUTH_RESULT_DENY; } } diff --git a/Source/santad/EventProviders/SNTEndpointSecurityTamperResistanceTest.mm b/Source/santad/EventProviders/SNTEndpointSecurityTamperResistanceTest.mm index 76149ec..ddbdc84 100644 --- a/Source/santad/EventProviders/SNTEndpointSecurityTamperResistanceTest.mm +++ b/Source/santad/EventProviders/SNTEndpointSecurityTamperResistanceTest.mm @@ -39,7 +39,7 @@ static constexpr std::string_view kEventsDBPath = "/private/var/db/santa/events.db"; static constexpr std::string_view kRulesDBPath = "/private/var/db/santa/rules.db"; static constexpr std::string_view kBenignPath = "/some/other/path"; -static constexpr std::string_view kSantaKextIdentifier = "com.google.santa-driver"; +static constexpr std::string_view kSantaKextIdentifier = "com.northpolesec.santa-driver"; @interface SNTEndpointSecurityTamperResistanceTest : XCTestCase @end diff --git a/Source/santad/Info.plist b/Source/santad/Info.plist index 2aeea37..10fe3ad 100644 --- a/Source/santad/Info.plist +++ b/Source/santad/Info.plist @@ -3,7 +3,7 @@ CFBundleIdentifier - com.google.santa.daemon + com.northpolesec.santa.daemon CFBundleInfoDictionaryVersion 6.0 CFBundleName @@ -21,6 +21,6 @@ NSEndpointSecurityEarlyBoot CFBundleExecutable - com.google.santa.daemon + com.northpolesec.santa.daemon diff --git a/Source/santad/Logs/EndpointSecurity/Serializers/ProtobufTest.mm b/Source/santad/Logs/EndpointSecurity/Serializers/ProtobufTest.mm index 09e0ce2..d029dd5 100644 --- a/Source/santad/Logs/EndpointSecurity/Serializers/ProtobufTest.mm +++ b/Source/santad/Logs/EndpointSecurity/Serializers/ProtobufTest.mm @@ -639,7 +639,7 @@ - (void)testEncodeEntitlements { ::pbv1::Execution pbExec; SNTCachedDecision *cd = [[SNTCachedDecision alloc] init]; - cd.entitlements = @{@"com.google.test" : @(YES)}; + cd.entitlements = @{@"com.northpolesec.test" : @(YES)}; XCTAssertEqual(0, pbExec.entitlement_info().entitlements_size()); XCTAssertFalse(cd.entitlementsFiltered); @@ -657,7 +657,7 @@ - (void)testEncodeEntitlements { ::pbv1::Execution pbExec; SNTCachedDecision *cd = [[SNTCachedDecision alloc] init]; - cd.entitlements = @{@"com.google.test" : @(YES), @"com.google.test2" : @(NO)}; + cd.entitlements = @{@"com.northpolesec.test" : @(YES), @"com.northpolesec.test2" : @(NO)}; cd.entitlementsFiltered = YES; XCTAssertEqual(0, pbExec.entitlement_info().entitlements_size()); diff --git a/Source/santad/Logs/EndpointSecurity/Writers/File.mm b/Source/santad/Logs/EndpointSecurity/Writers/File.mm index 0189606..67d246b 100644 --- a/Source/santad/Logs/EndpointSecurity/Writers/File.mm +++ b/Source/santad/Logs/EndpointSecurity/Writers/File.mm @@ -22,7 +22,7 @@ std::shared_ptr File::Create(NSString *path, uint64_t flush_timeout_ms, size_t batch_size_bytes, size_t max_expected_write_size_bytes) { - dispatch_queue_t q = dispatch_queue_create("com.google.santa.daemon.file_event_log", + dispatch_queue_t q = dispatch_queue_create("com.northpolesec.santa.daemon.file_event_log", DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL); dispatch_source_t timer_source = dispatch_source_create(DISPATCH_SOURCE_TYPE_TIMER, 0, 0, q); diff --git a/Source/santad/Logs/EndpointSecurity/Writers/Spool.mm b/Source/santad/Logs/EndpointSecurity/Writers/Spool.mm index 7a4eac9..b7db577 100644 --- a/Source/santad/Logs/EndpointSecurity/Writers/Spool.mm +++ b/Source/santad/Logs/EndpointSecurity/Writers/Spool.mm @@ -24,7 +24,7 @@ std::shared_ptr Spool::Create(std::string_view base_dir, size_t max_spool_disk_size, size_t max_spool_batch_size, uint64_t flush_timeout_ms) { - dispatch_queue_t q = dispatch_queue_create("com.google.santa.daemon.file_base_q", + dispatch_queue_t q = dispatch_queue_create("com.northpolesec.santa.daemon.file_base_q", DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL); dispatch_source_t timer_source = dispatch_source_create(DISPATCH_SOURCE_TYPE_TIMER, 0, 0, q); dispatch_source_set_timer(timer_source, dispatch_time(DISPATCH_TIME_NOW, 0), diff --git a/Source/santad/Metrics.mm b/Source/santad/Metrics.mm index 4e6b899..419eb20 100644 --- a/Source/santad/Metrics.mm +++ b/Source/santad/Metrics.mm @@ -209,7 +209,7 @@ } std::shared_ptr Metrics::Create(SNTMetricSet *metric_set, uint64_t interval) { - dispatch_queue_t q = dispatch_queue_create("com.google.santa.santametricsservice.q", + dispatch_queue_t q = dispatch_queue_create("com.northpolesec.santa.santametricsservice.q", DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL); dispatch_source_t timer_source = dispatch_source_create(DISPATCH_SOURCE_TYPE_TIMER, 0, 0, q); @@ -284,7 +284,7 @@ run_on_first_start_(run_on_first_start) { SetInterval(interval_); - events_q_ = dispatch_queue_create("com.google.santa.santametricsservice.events_q", + events_q_ = dispatch_queue_create("com.northpolesec.santa.santametricsservice.events_q", DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL); } diff --git a/Source/santad/SNTDaemonControlController.mm b/Source/santad/SNTDaemonControlController.mm index c64809b..dedd30e 100644 --- a/Source/santad/SNTDaemonControlController.mm +++ b/Source/santad/SNTDaemonControlController.mm @@ -165,7 +165,7 @@ - (void)retrieveAllRules:(void (^)(NSArray *, NSError *))reply { // Do not return any rules if syncBaseURL is set and return an error. if (config.syncBaseURL) { - reply(@[], [NSError errorWithDomain:@"com.google.santad" + reply(@[], [NSError errorWithDomain:@"com.northpolesec.santad" code:403 // (TODO) define error code userInfo:@{NSLocalizedDescriptionKey : @"SyncBaseURL is set"}]); return; diff --git a/Source/santad/SNTExecutionController.mm b/Source/santad/SNTExecutionController.mm index 2697ffa..5fb23b8 100644 --- a/Source/santad/SNTExecutionController.mm +++ b/Source/santad/SNTExecutionController.mm @@ -121,7 +121,7 @@ - (instancetype)initWithRuleTable:(SNTRuleTable *)ruleTable _policyProcessor = [[SNTPolicyProcessor alloc] initWithRuleTable:_ruleTable]; _eventQueue = - dispatch_queue_create("com.google.santa.daemon.event_upload", DISPATCH_QUEUE_SERIAL); + dispatch_queue_create("com.northpolesec.santa.daemon.event_upload", DISPATCH_QUEUE_SERIAL); // This establishes the XPC connection between libsecurity and syspolicyd. // Not doing this causes a deadlock as establishing this link goes through xpcproxy. diff --git a/Source/santad/SNTSyncdQueue.m b/Source/santad/SNTSyncdQueue.m index 9ade7f8..d9498ab 100644 --- a/Source/santad/SNTSyncdQueue.m +++ b/Source/santad/SNTSyncdQueue.m @@ -32,7 +32,7 @@ - (instancetype)init { if (self) { _uploadBackoff = [[NSCache alloc] init]; _uploadBackoff.countLimit = 128; - _syncdQueue = dispatch_queue_create("com.google.syncd_queue", DISPATCH_QUEUE_SERIAL); + _syncdQueue = dispatch_queue_create("com.northpolesec.syncd_queue", DISPATCH_QUEUE_SERIAL); } return self; } diff --git a/Source/santad/SantadTest.mm b/Source/santad/SantadTest.mm index 81a76d4..4b0a476 100644 --- a/Source/santad/SantadTest.mm +++ b/Source/santad/SantadTest.mm @@ -71,9 +71,9 @@ static void SetBinaryDataFromHexString(const char *hexStr, uint8_t *buf, size_t } } -static const char *kAllowedSigningID = "com.google.allowed_signing_id"; -static const char *kBlockedSigningID = "com.google.blocked_signing_id"; -static const char *kNoRuleMatchSigningID = "com.google.no_rule_match_signing_id"; +static const char *kAllowedSigningID = "com.northpolesec.allowed_signing_id"; +static const char *kBlockedSigningID = "com.northpolesec.blocked_signing_id"; +static const char *kNoRuleMatchSigningID = "com.northpolesec.no_rule_match_signing_id"; static const char *kBlockedTeamID = "EQHXZ8M8AV"; static const char *kAllowedTeamID = "TJNVEKW352"; static const char *kAllowedCDHash = "dedebf2eac732d873008b17b3e44a56599dd614b"; diff --git a/Source/santad/TTYWriter.mm b/Source/santad/TTYWriter.mm index da3269d..a504e0d 100644 --- a/Source/santad/TTYWriter.mm +++ b/Source/santad/TTYWriter.mm @@ -25,7 +25,7 @@ std::unique_ptr TTYWriter::Create() { dispatch_queue_t q = dispatch_queue_create_with_target( - "com.google.santa.ttywriter", DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL, + "com.northpolesec.santa.ttywriter", DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL, dispatch_get_global_queue(DISPATCH_QUEUE_PRIORITY_BACKGROUND, 0)); if (!q) { diff --git a/Source/santad/com.google.santa.daemon.systemextension-adhoc.entitlements b/Source/santad/com.northpolesec.santa.daemon.systemextension-adhoc.entitlements similarity index 100% rename from Source/santad/com.google.santa.daemon.systemextension-adhoc.entitlements rename to Source/santad/com.northpolesec.santa.daemon.systemextension-adhoc.entitlements diff --git a/Source/santad/main.mm b/Source/santad/main.mm index 655981d..f328f54 100644 --- a/Source/santad/main.mm +++ b/Source/santad/main.mm @@ -86,11 +86,11 @@ static void SantaWatchdog(void *context) { } void CleanupAndReExec() { - LOGI(@"com.google.santa.daemon is running from an unexpected path: cleaning up"); + LOGI(@"com.northpolesec.santa.daemon is running from an unexpected path: cleaning up"); NSFileManager *fm = [NSFileManager defaultManager]; - [fm removeItemAtPath:@"/Library/LaunchDaemons/com.google.santad.plist" error:NULL]; + [fm removeItemAtPath:@"/Library/LaunchDaemons/com.northpolesec.santad.plist" error:NULL]; - LOGI(@"loading com.google.santa.daemon as a SystemExtension"); + LOGI(@"loading com.northpolesec.santa.daemon as a SystemExtension"); NSTask *t = [[NSTask alloc] init]; t.launchPath = [@(kSantaAppPath) stringByAppendingString:@"/Contents/MacOS/Santa"]; t.arguments = @[ @"--load-system-extension" ]; @@ -99,7 +99,7 @@ void CleanupAndReExec() { t = [[NSTask alloc] init]; t.launchPath = @"/bin/launchctl"; - t.arguments = @[ @"remove", @"com.google.santad" ]; + t.arguments = @[ @"remove", @"com.northpolesec.santad" ]; [t launch]; [t waitUntilExit]; @@ -128,7 +128,7 @@ int main(int argc, char *argv[]) { } dispatch_queue_t watchdog_queue = dispatch_queue_create( - "com.google.santa.daemon.watchdog", DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL); + "com.northpolesec.santa.daemon.watchdog", DISPATCH_QUEUE_SERIAL_WITH_AUTORELEASE_POOL); dispatch_source_t watchdog_timer = dispatch_source_create(DISPATCH_SOURCE_TYPE_TIMER, 0, 0, watchdog_queue); diff --git a/Source/santametricservice/BUILD b/Source/santametricservice/BUILD index 6209db8..2918a7a 100644 --- a/Source/santametricservice/BUILD +++ b/Source/santametricservice/BUILD @@ -58,7 +58,7 @@ test_suite( macos_command_line_application( name = "santametricservice", - bundle_id = "com.google.santa.metricservice", + bundle_id = "com.northpolesec.santa.metricservice", codesignopts = [ "--timestamp", "--force", diff --git a/Source/santametricservice/Formats/SNTMetricRawJSONFormat.m b/Source/santametricservice/Formats/SNTMetricRawJSONFormat.m index ac99e57..359342b 100644 --- a/Source/santametricservice/Formats/SNTMetricRawJSONFormat.m +++ b/Source/santametricservice/Formats/SNTMetricRawJSONFormat.m @@ -83,7 +83,7 @@ - (NSDictionary *)normalize:(NSDictionary *)metrics { if (![NSJSONSerialization isValidJSONObject:normalizedMetrics]) { if (err != nil) { *err = [[NSError alloc] - initWithDomain:@"com.google.santa.metricservice.formats.rawjson" + initWithDomain:@"com.northpolesec.santa.metricservice.formats.rawjson" code:EINVAL userInfo:@{ NSLocalizedDescriptionKey : @"unable to convert metrics to JSON: invalid metrics" diff --git a/Source/santametricservice/Info.plist b/Source/santametricservice/Info.plist index 52f9026..1b57e31 100644 --- a/Source/santametricservice/Info.plist +++ b/Source/santametricservice/Info.plist @@ -9,7 +9,7 @@ CFBundleExecutable santametricservice CFBundleIdentifier - com.google.santa.metricservice + com.northpolesec.santa.metricservice CFBundleInfoDictionaryVersion 6.0 CFBundleName diff --git a/Source/santametricservice/Writers/SNTMetricHTTPWriter.m b/Source/santametricservice/Writers/SNTMetricHTTPWriter.m index 5a80a28..97bbfea 100644 --- a/Source/santametricservice/Writers/SNTMetricHTTPWriter.m +++ b/Source/santametricservice/Writers/SNTMetricHTTPWriter.m @@ -94,7 +94,7 @@ - (BOOL)write:(NSArray *)metrics toURL:(NSURL *)url error:(NSError **) NSInteger statusCode = ((NSHTTPURLResponse *)taskResponse).statusCode; if (statusCode != 200) { localError = [[NSError alloc] - initWithDomain:@"com.google.santa.metricservice.writers.http" + initWithDomain:@"com.northpolesec.santa.metricservice.writers.http" code:statusCode userInfo:@{ NSLocalizedDescriptionKey : [NSString diff --git a/Source/santametricservice/Writers/SNTMetricHTTPWriterTest.m b/Source/santametricservice/Writers/SNTMetricHTTPWriterTest.m index 51b5f93..21f0873 100644 --- a/Source/santametricservice/Writers/SNTMetricHTTPWriterTest.m +++ b/Source/santametricservice/Writers/SNTMetricHTTPWriterTest.m @@ -122,7 +122,7 @@ - (void)testEnsureHTTPErrorCodesResultInErrors { XCTAssertEqual(NO, result, @"result of call to write did not fail as expected"); XCTAssertNotNil(err); XCTAssertEqual(code, err.code); - XCTAssertEqualObjects(@"com.google.santa.metricservice.writers.http", err.domain); + XCTAssertEqualObjects(@"com.northpolesec.santa.metricservice.writers.http", err.domain); NSString *expectedErrMsg = [NSString stringWithFormat:@"received http status code %ld from %@", code, url.absoluteString]; @@ -133,7 +133,7 @@ - (void)testEnsureHTTPErrorCodesResultInErrors { - (void)testEnsureErrorsFromTransportAreHandled { NSURL *url = [NSURL URLWithString:@"http://localhost:9444"]; - NSError *mockErr = [[NSError alloc] initWithDomain:@"com.google.santa.metricservice.writers.http" + NSError *mockErr = [[NSError alloc] initWithDomain:@"com.northpolesec.santa.metricservice.writers.http" code:505 userInfo:@{NSLocalizedDescriptionKey : @"test error"}]; NSError *err; @@ -182,7 +182,7 @@ - (void)testEnsurePassingNilOrNullErrorDoesNotCrash { XCTAssertEqual(NO, result); NSError *mockErr = - [[NSError alloc] initWithDomain:@"com.google.santa.metricservice.writers.http.test" + [[NSError alloc] initWithDomain:@"com.northpolesec.santa.metricservice.writers.http.test" code:505 userInfo:@{NSLocalizedDescriptionKey : @"test error"}]; diff --git a/Source/santasyncservice/BUILD b/Source/santasyncservice/BUILD index aff76ec..3356019 100644 --- a/Source/santasyncservice/BUILD +++ b/Source/santasyncservice/BUILD @@ -178,7 +178,7 @@ objc_library( macos_command_line_application( name = "santasyncservice", - bundle_id = "com.google.santa.syncservice", + bundle_id = "com.northpolesec.santa.syncservice", codesignopts = [ "--timestamp", "--force", diff --git a/Source/santasyncservice/Info.plist b/Source/santasyncservice/Info.plist index 9a0119e..e75f3a3 100644 --- a/Source/santasyncservice/Info.plist +++ b/Source/santasyncservice/Info.plist @@ -9,7 +9,7 @@ CFBundleExecutable santasyncservice CFBundleIdentifier - com.google.santa.syncservice + com.northpolesec.santa.syncservice CFBundleInfoDictionaryVersion 6.0 CFBundleName diff --git a/Source/santasyncservice/SNTPushNotificationsTracker.m b/Source/santasyncservice/SNTPushNotificationsTracker.m index 57fe665..60c2355 100644 --- a/Source/santasyncservice/SNTPushNotificationsTracker.m +++ b/Source/santasyncservice/SNTPushNotificationsTracker.m @@ -30,7 +30,7 @@ - (instancetype)init { if (self) { _notifications = [NSMutableDictionary dictionary]; _notificationsQueue = - dispatch_queue_create("com.google.santa.syncservice.notifications", DISPATCH_QUEUE_SERIAL); + dispatch_queue_create("com.northpolesec.santa.syncservice.notifications", DISPATCH_QUEUE_SERIAL); } return self; } diff --git a/Source/santasyncservice/SNTSyncBroadcaster.m b/Source/santasyncservice/SNTSyncBroadcaster.m index 3c980f6..bbc2e3c 100644 --- a/Source/santasyncservice/SNTSyncBroadcaster.m +++ b/Source/santasyncservice/SNTSyncBroadcaster.m @@ -30,7 +30,7 @@ - (instancetype)init { if (self) { _logListeners = [NSMutableArray array]; _broadcastQueue = - dispatch_queue_create("com.google.santa.syncservice.broadcast", DISPATCH_QUEUE_SERIAL); + dispatch_queue_create("com.northpolesec.santa.syncservice.broadcast", DISPATCH_QUEUE_SERIAL); } return self; } diff --git a/Source/santasyncservice/SNTSyncManager.m b/Source/santasyncservice/SNTSyncManager.m index 193e1c7..aebc277 100644 --- a/Source/santasyncservice/SNTSyncManager.m +++ b/Source/santasyncservice/SNTSyncManager.m @@ -77,7 +77,7 @@ - (instancetype)initWithDaemonConnection:(MOLXPCConnection *)daemonConn { 0); [self ruleSyncImpl]; }]; - _syncQueue = dispatch_queue_create("com.google.santa.syncservice", DISPATCH_QUEUE_SERIAL); + _syncQueue = dispatch_queue_create("com.northpolesec.santa.syncservice", DISPATCH_QUEUE_SERIAL); _syncLimiter = dispatch_semaphore_create(kMaxEnqueuedSyncs); _eventBatchSize = kDefaultEventBatchSize; diff --git a/Source/santasyncservice/SNTSyncService.m b/Source/santasyncservice/SNTSyncService.m index 4f5f197..e2208ad 100644 --- a/Source/santasyncservice/SNTSyncService.m +++ b/Source/santasyncservice/SNTSyncService.m @@ -58,7 +58,7 @@ - (instancetype)init { _daemonConn = daemonConn; _syncManager = [[SNTSyncManager alloc] initWithDaemonConnection:daemonConn]; - // This service should only start up if com.google.santa.daemon + // This service should only start up if com.northpolesec.santa.daemon // noticed there is sync server configured and established a connection // with us. Go ahead and start syncing! [_syncManager syncSecondsFromNow:15]; diff --git a/Source/santasyncservice/SNTSyncStage.mm b/Source/santasyncservice/SNTSyncStage.mm index 1e6d9fa..2bd88f1 100644 --- a/Source/santasyncservice/SNTSyncStage.mm +++ b/Source/santasyncservice/SNTSyncStage.mm @@ -205,7 +205,7 @@ - (NSData *)dataFromRequest:(NSURLRequest *)request } LOGE(@"HTTP Response: %ld %@", code, errStr); if (error != NULL) { - *error = [NSError errorWithDomain:@"com.google.santa.syncservice" + *error = [NSError errorWithDomain:@"com.northpolesec.santa.syncservice" code:code userInfo:@{NSLocalizedDescriptionKey : errStr ?: @""}]; } @@ -231,7 +231,7 @@ - (NSError *)performRequest:(NSURLRequest *)request if (!message->ParseFromString(std::string((const char *)data.bytes, data.length))) { NSString *errStr = @"Failed to parse response proto into message"; SLOGE(@"%@", errStr); - return [NSError errorWithDomain:@"com.google.santa.syncservice" + return [NSError errorWithDomain:@"com.northpolesec.santa.syncservice" code:4 userInfo:@{NSLocalizedDescriptionKey : errStr}]; } @@ -249,7 +249,7 @@ - (NSError *)performRequest:(NSURLRequest *)request NSString *errStr = [NSString stringWithFormat:@"Failed to parse response JSON into message: %s", status.ToString().c_str()]; SLOGE(@"%@", errStr); - return [NSError errorWithDomain:@"com.google.santa.syncservice" + return [NSError errorWithDomain:@"com.northpolesec.santa.syncservice" code:3 userInfo:@{NSLocalizedDescriptionKey : errStr}]; } diff --git a/Testing/integration/VM/InstallationTool/BUILD b/Testing/integration/VM/InstallationTool/BUILD index 9c5747b..c4631f2 100644 --- a/Testing/integration/VM/InstallationTool/BUILD +++ b/Testing/integration/VM/InstallationTool/BUILD @@ -26,7 +26,7 @@ objc_library( macos_application( name = "InstallationTool", - bundle_id = "com.google.santa.e2e.installation-tool", + bundle_id = "com.northpolesec.santa.e2e.installation-tool", entitlements = "//Testing/integration/VM/Common:entitlements", infoplists = ["//Testing/integration/VM/Common:plist"], minimum_os_version = "12.0", diff --git a/Testing/integration/VM/VMCLI/BUILD b/Testing/integration/VM/VMCLI/BUILD index cd14eff..d5c9e27 100644 --- a/Testing/integration/VM/VMCLI/BUILD +++ b/Testing/integration/VM/VMCLI/BUILD @@ -19,7 +19,7 @@ objc_library( macos_application( name = "VMCLI", - bundle_id = "com.google.santa.e2e.vmcli", + bundle_id = "com.northpolesec.santa.e2e.vmcli", entitlements = "//Testing/integration/VM/Common:entitlements", infoplists = ["//Testing/integration/VM/Common:plist"], minimum_os_version = "13.0", diff --git a/Testing/integration/VM/VMGUI/BUILD b/Testing/integration/VM/VMGUI/BUILD index aa1f9a9..ed44d8f 100644 --- a/Testing/integration/VM/VMGUI/BUILD +++ b/Testing/integration/VM/VMGUI/BUILD @@ -27,7 +27,7 @@ objc_library( macos_application( name = "VMGUI", - bundle_id = "com.google.santa.e2e.vmgui", + bundle_id = "com.northpolesec.santa.e2e.vmgui", entitlements = "//Testing/integration/VM/Common:entitlements", infoplists = ["//Testing/integration/VM/Common:plist"], minimum_os_version = "13.0", diff --git a/Testing/integration/VM/setup.sh b/Testing/integration/VM/setup.sh index b0c471c..d29f950 100755 --- a/Testing/integration/VM/setup.sh +++ b/Testing/integration/VM/setup.sh @@ -40,7 +40,7 @@ tee ${HOME}/Library/LaunchAgents/runner.plist << EOF Label - com.google.santa.e2erunner + com.northpolesec.santa.e2erunner ProgramArguments /Volumes/init/run.sh diff --git a/Testing/integration/configs/default.mobileconfig b/Testing/integration/configs/default.mobileconfig index f80535d..0563c2c 100644 --- a/Testing/integration/configs/default.mobileconfig +++ b/Testing/integration/configs/default.mobileconfig @@ -7,7 +7,7 @@ PayloadContent - com.google.santa + com.northpolesec.santa Forced @@ -63,7 +63,7 @@ PayloadDisplayName Santa Configuration 2 PayloadIdentifier - com.google.santa + com.northpolesec.santa PayloadOrganization Google LLC PayloadScope diff --git a/Testing/integration/configs/usb-block.mobileconfig b/Testing/integration/configs/usb-block.mobileconfig index a823f5c..5bec064 100644 --- a/Testing/integration/configs/usb-block.mobileconfig +++ b/Testing/integration/configs/usb-block.mobileconfig @@ -7,7 +7,7 @@ PayloadContent - com.google.santa + com.northpolesec.santa Forced @@ -63,7 +63,7 @@ PayloadDisplayName Santa Configuration 2 PayloadIdentifier - com.google.santa + com.northpolesec.santa PayloadOrganization Google LLC PayloadScope diff --git a/docs/binaries/santad.md b/docs/binaries/santad.md index 6ed60d6..26b8d3c 100644 --- a/docs/binaries/santad.md +++ b/docs/binaries/santad.md @@ -6,7 +6,7 @@ parent: Binaries **Note:** This documentation refers to the main Santa daemon as `santad`, but this process will typically be seen on the system by its full name: -`com.google.santa.daemon`. +`com.northpolesec.santa.daemon`. The `santad` process makes decisions about binary executions, file access, and mounting USB mass storage devices. It diff --git a/docs/concepts/mode.md b/docs/concepts/mode.md index 9aa746d..59fab4c 100644 --- a/docs/concepts/mode.md +++ b/docs/concepts/mode.md @@ -43,7 +43,7 @@ MONITOR or `2` for LOCKDOWN. ``` Install your new configuration profile, it will overwrite any old -`com.google.santa` profiles you may have already install. See the +`com.northpolesec.santa` profiles you may have already install. See the [configuration](../deployment/configuration.md) document for more details. ###### Change modes with a sync server diff --git a/docs/deployment/com.google.santa.example.mobileconfig b/docs/deployment/com.northpolesec.santa.example.mobileconfig similarity index 95% rename from docs/deployment/com.google.santa.example.mobileconfig rename to docs/deployment/com.northpolesec.santa.example.mobileconfig index a9af628..1fa0521 100644 --- a/docs/deployment/com.google.santa.example.mobileconfig +++ b/docs/deployment/com.northpolesec.santa.example.mobileconfig @@ -7,7 +7,7 @@ PayloadContent - com.google.santa + com.northpolesec.santa Forced @@ -94,11 +94,11 @@ PayloadDescription - com.google.santa + com.northpolesec.santa PayloadDisplayName - com.google.santa + com.northpolesec.santa PayloadIdentifier - com.google.santa + com.northpolesec.santa PayloadOrganization PayloadRemovalDisallowed diff --git a/docs/deployment/configuration.md b/docs/deployment/configuration.md index 27e91d7..dad40e0 100644 --- a/docs/deployment/configuration.md +++ b/docs/deployment/configuration.md @@ -61,7 +61,7 @@ also known as mobileconfig files, which are in an Apple-specific XML format. | MachineIDPlist | String | The path to a plist that contains the MachineOwnerKey / value pair. | | MachineIDKey | String | The key to use on MachineIDPlist. | | EventLogType | String | Defines how event logs are stored. Options are 1) syslog: Sent to ULS. 2) filelog: Sent to a file on disk. Use EventLogPath to specify a path. 3) protobuf (BETA): Sent to file on disk using a maildir-like format. 4) json (BETA): Same as file but output is one JSON object per line 5) null: Don't output any event logs. Defaults to filelog. | -| EventLogPath | String | If EventLogType is set to filelog or json, EventLogPath will provide the path to save logs. Defaults to /var/db/santa/santa.log. If you change this value ensure you also update com.google.santa.newsyslog.conf with the new path. | +| EventLogPath | String | If EventLogType is set to filelog or json, EventLogPath will provide the path to save logs. Defaults to /var/db/santa/santa.log. If you change this value ensure you also update com.northpolesec.santa.newsyslog.conf with the new path. | | SpoolDirectory | String | If EventLogType is set to protobuf, SpoolDirectory will provide the base directory used to save files according to a maildir-like format. Defaults to /var/db/santa/spool. | | SpoolDirectoryFileSizeThresholdKB | Integer | If EventLogType is set to protobuf, SpoolDirectoryFileSizeThresholdKB defines the per-file size limit for files stored in the spool directory. Events are buffered in memory until this threshold would be exceeded (or SpoolDirectoryEventMaxFlushTimeSec is exceeded). Defaults to 100. | | SpoolDirectorySizeThresholdMB | Integer | If EventLogType is set to protobuf, SpoolDirectorySizeThresholdMB defines the total combined size limit of all files in the spool directory. Once the threshold is met, no more events will be saved. Defaults to 100. | @@ -86,7 +86,7 @@ also known as mobileconfig files, which are in an Apple-specific XML format. | OverrideFileAccessAction | String | Defines a global override policy that applies to the enforcement of all `FileAccessPolicy` rules. Allowed values are: `AUDIT_ONLY` (no access will be blocked, only logged), `DISABLE` (no access will be blocked or logged), `none` (enforce policy as defined in each rule). Defaults to `NONE`. Note: `AUDITONLY` without an underscore is deprecated. | | SyncClientContentEncoding | String | Sets the Content-Encoding header for requests sent to the sync service. Acceptable values are "deflate", "gzip", "none". Defaults to deflate. | | SyncExtraHeaders | Dictionary | Dictionary of additional headers to include in all requests made to the sync server. System managed headers such as Content-Length, Host, WWW-Authenticate etc will be ignored. | -| EnableDebugLogging | Bool | If true, the client will log additional debug messages to the Apple Unified Log. For example, transitive rule creation logs can be viewed with `log stream --predicate 'sender=="com.google.santa.daemon"'`. Defaults to false. | +| EnableDebugLogging | Bool | If true, the client will log additional debug messages to the Apple Unified Log. For example, transitive rule creation logs can be viewed with `log stream --predicate 'sender=="com.northpolesec.santa.daemon"'`. Defaults to false. | | EntitlementsPrefixFilter | Array | Array of strings of entitlement prefixes that should not be logged (for example: `com.apple.private`). No default. | | EntitlementsTeamIDFilter | Array | Array of TeamID strings. Entitlements from processes with a matching TeamID in the code signature will not be logged. Use the value `platform` to filter entitlements from platform binaries. No default. | | [StaticRules](#static-rules) | Array | Array of rule dictionaries. The rules defined in this key take precedence over any rules in the rules database. | @@ -144,7 +144,7 @@ are sent via the sync server. Details on this structure are defined in the documentation. Additionally, the -[example configuration](https://github.com/google/santa/blob/d5195b55d2784776fa078096f59137d22da55b06/docs/deployment/com.google.santa.example.mobileconfig#L45) +[example configuration](https://github.com/google/santa/blob/d5195b55d2784776fa078096f59137d22da55b06/docs/deployment/com.northpolesec.santa.example.mobileconfig#L45) has a demonstration on how to define static rules. ### Example Configuration Profile @@ -152,11 +152,11 @@ has a demonstration on how to define static rules. Here is an example of a configuration profile that could be set. It was generated with Tim Sutton's great [mcxToProfile](https://github.com/timsutton/mcxToProfile) tool. A copy is also -available [here](com.google.santa.example.mobileconfig). +available [here](com.northpolesec.santa.example.mobileconfig). A few key points to when creating your configuration profile: -* `com.google.santa` needs to be the key inside `PayloadContent` +* `com.northpolesec.santa` needs to be the key inside `PayloadContent` * The `PayloadScope` needs to be `System` ```xml @@ -169,7 +169,7 @@ A few key points to when creating your configuration profile: PayloadContent - com.google.santa + com.northpolesec.santa Forced @@ -229,11 +229,11 @@ A few key points to when creating your configuration profile: PayloadDescription - com.google.santa + com.northpolesec.santa PayloadDisplayName - com.google.santa + com.northpolesec.santa PayloadIdentifier - com.google.santa + com.northpolesec.santa PayloadOrganization PayloadRemovalDisallowed diff --git a/docs/deployment/getting-started.md b/docs/deployment/getting-started.md index 8b1d9c6..107a1d6 100644 --- a/docs/deployment/getting-started.md +++ b/docs/deployment/getting-started.md @@ -12,7 +12,7 @@ This page shows you the process to get started with your deployment of Santa. 1. (Optional) Set up a [sync server](../introduction/syncing-overview.md). For a list of open-source sync servers, see [Sync Servers](sync-servers.md). Without a sync server, [`santactl`](../binaries/santactl.md) can configure rules locally. -1. Create and install your Santa configuration profile to customize your deployment of Santa. See [Configuration](configuration.md) for a reference list of the available options and an [example profile](https://github.com/google/santa/blob/main/docs/deployment/com.google.santa.example.mobileconfig). +1. Create and install your Santa configuration profile to customize your deployment of Santa. See [Configuration](configuration.md) for a reference list of the available options and an [example profile](https://github.com/google/santa/blob/main/docs/deployment/com.northpolesec.santa.example.mobileconfig). 1. Install the TCC and system extension configuration profiles: diff --git a/docs/deployment/notificationsettings.santa.example.mobileconfig b/docs/deployment/notificationsettings.santa.example.mobileconfig index 01fcca3..643c170 100644 --- a/docs/deployment/notificationsettings.santa.example.mobileconfig +++ b/docs/deployment/notificationsettings.santa.example.mobileconfig @@ -13,7 +13,7 @@ BadgesEnabled BundleIdentifier - com.google.santa + com.northpolesec.santa CriticalAlertEnabled NotificationsEnabled @@ -29,7 +29,7 @@ PayloadDisplayName Notifications Payload PayloadIdentifier - com.google.santa.notificationsettings.F1817DA0-0044-43DD-9540-36EBC60FDA8F + com.northpolesec.santa.notificationsettings.F1817DA0-0044-43DD-9540-36EBC60FDA8F PayloadOrganization PayloadType @@ -47,7 +47,7 @@ PayloadEnabled PayloadIdentifier - com.google.santa.notificationsettings.069CA123-6129-46A5-8FD1-49322E5A5755 + com.northpolesec.santa.notificationsettings.069CA123-6129-46A5-8FD1-49322E5A5755 PayloadOrganization PayloadRemovalDisallowed diff --git a/docs/deployment/system-extension-policy.santa.example.mobileconfig b/docs/deployment/system-extension-policy.santa.example.mobileconfig index 0229d1c..a576586 100644 --- a/docs/deployment/system-extension-policy.santa.example.mobileconfig +++ b/docs/deployment/system-extension-policy.santa.example.mobileconfig @@ -11,7 +11,7 @@ PayloadOrganization PayloadIdentifier - com.google.santa.system-extension-policy.40C19D5B-76D7-4C1C-BC9D-2F7EB29CFF4D + com.northpolesec.santa.system-extension-policy.40C19D5B-76D7-4C1C-BC9D-2F7EB29CFF4D PayloadDisplayName System Extensions PayloadDescription @@ -34,7 +34,7 @@ PayloadOrganization PayloadIdentifier - com.google.santa.system-extension-policy.98D01A7B-ADC1-43C8-AB8E-8BDC25FCA3C9 + com.northpolesec.santa.system-extension-policy.98D01A7B-ADC1-43C8-AB8E-8BDC25FCA3C9 PayloadDisplayName System Extensions PayloadDescription @@ -49,7 +49,7 @@ EQHXZ8M8AV - com.google.santa.daemon + com.northpolesec.santa.daemon AllowedSystemExtensionTypes diff --git a/docs/deployment/tcc.configuration-profile-policy.santa.example.mobileconfig b/docs/deployment/tcc.configuration-profile-policy.santa.example.mobileconfig index 013eca9..874a7ba 100644 --- a/docs/deployment/tcc.configuration-profile-policy.santa.example.mobileconfig +++ b/docs/deployment/tcc.configuration-profile-policy.santa.example.mobileconfig @@ -11,7 +11,7 @@ PayloadDisplayName Privacy Preferences Policy Control PayloadIdentifier - com.google.santa.TCC.configuration-profile-policy.2416BA4B-CBFC-4719-B02F-20251B881D6F + com.northpolesec.santa.TCC.configuration-profile-policy.2416BA4B-CBFC-4719-B02F-20251B881D6F PayloadOrganization PayloadType @@ -28,11 +28,11 @@ Allowed CodeRequirement - identifier "com.google.santa.daemon" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = EQHXZ8M8AV + identifier "com.northpolesec.santa.daemon" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = EQHXZ8M8AV Comment Identifier - com.google.santa.daemon + com.northpolesec.santa.daemon IdentifierType bundleID StaticCode @@ -42,11 +42,11 @@ Allowed CodeRequirement - identifier "com.google.santa.bundleservice" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = EQHXZ8M8AV + identifier "com.northpolesec.santa.bundleservice" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = EQHXZ8M8AV Comment Identifier - com.google.santa.bundleservice + com.northpolesec.santa.bundleservice IdentifierType bundleID StaticCode @@ -56,11 +56,11 @@ Allowed CodeRequirement - identifier "com.google.santa" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = EQHXZ8M8AV + identifier "com.northpolesec.santa" and anchor apple generic and certificate 1[field.1.2.840.113635.100.6.2.6] /* exists */ and certificate leaf[field.1.2.840.113635.100.6.1.13] /* exists */ and certificate leaf[subject.OU] = EQHXZ8M8AV Comment Identifier - com.google.santa + com.northpolesec.santa IdentifierType bundleID StaticCode @@ -75,7 +75,7 @@ PayloadDisplayName tcc.configuration-profile-policy.santa.example PayloadIdentifier - com.google.santa.TCC.configuration-profile-policy.089CBCFB-F2AA-407C-9F2A-A12967FE20BC + com.northpolesec.santa.TCC.configuration-profile-policy.089CBCFB-F2AA-407C-9F2A-A12967FE20BC PayloadOrganization PayloadScope diff --git a/docs/development/building.md b/docs/development/building.md index d8ec9ef..8e1fe78 100644 --- a/docs/development/building.md +++ b/docs/development/building.md @@ -98,7 +98,7 @@ this new adhoc build will show up as a second instance of Santa. Remove the non-adhoc instance like so: ```sh -systemextensionsctl uninstall EQHXZ8M8AV com.google.santa.daemon +systemextensionsctl uninstall EQHXZ8M8AV com.northpolesec.santa.daemon ``` #### IDE Setup @@ -117,7 +117,7 @@ Bazel build rules. To use this: #### Debugging lldb can be used to debug Santa, similarly to any other project, with some -exceptions. lldb can attach to com.google.santa.daemon, however any breakpoints +exceptions. lldb can attach to com.northpolesec.santa.daemon, however any breakpoints in the decision making codepath can deadlock the machine. #### Tests diff --git a/docs/development/sync-protocol.md b/docs/development/sync-protocol.md index d7c600f..c9edad8 100644 --- a/docs/development/sync-protocol.md +++ b/docs/development/sync-protocol.md @@ -294,7 +294,7 @@ sequenceDiagram "execution_time": 1657764366.475035, "file_sha256": "8621d92262aef379d3cfe9e099f287be5b996a281995b5cc64932f7d62f3dc85", "decision": "ALLOW_BINARY", - "file_bundle_id": "com.google.santa.syncservice", + "file_bundle_id": "com.northpolesec.santa.syncservice", "file_bundle_version_string": "9999.1.1", "pid": 2595, "current_sessions": [ @@ -304,7 +304,7 @@ sequenceDiagram "markowsky@ttys003" ], "team_id": "EQHXZ8M8AV", - "signing_id": "EQHXZ8M8AV:com.google.santa", + "signing_id": "EQHXZ8M8AV:com.northpolesec.santa", "cdhash": "dbe8c39801f93e05fc7bc53a02af5b4d3cfc670a" }] } diff --git a/helper.bzl b/helper.bzl index 4ea74e5..eb72108 100644 --- a/helper.bzl +++ b/helper.bzl @@ -46,7 +46,7 @@ def santa_unit_test( macos_unit_test( name = "%s" % name, - bundle_id = "com.google.santa.UnitTest.%s" % name, + bundle_id = "com.northpolesec.santa.UnitTest.%s" % name, minimum_os_version = minimum_os_version, deps = [":%s_lib" % name], size = size,