summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--dynamic-layers/networking-layer/recipes-security/sssd/sssd_2.9.2.bb2
-rw-r--r--meta-integrity/recipes-core/systemd/systemd_%.bbappend2
-rw-r--r--meta-tpm/recipes-tpm2/tpm2-abrmd/tpm2-abrmd_3.0.0.bb4
-rw-r--r--recipes-core/initrdscripts/initramfs-framework.inc2
-rw-r--r--recipes-ids/samhain/samhain-server.bb4
-rw-r--r--recipes-ids/samhain/samhain.inc14
-rw-r--r--recipes-security/ecryptfs-utils/ecryptfs-utils_111.bb2
-rw-r--r--recipes-security/libmhash/libmhash_0.9.9.9.bb4
-rw-r--r--recipes-security/redhat-security/redhat-security_1.0.bb29
9 files changed, 32 insertions, 31 deletions
diff --git a/dynamic-layers/networking-layer/recipes-security/sssd/sssd_2.9.2.bb b/dynamic-layers/networking-layer/recipes-security/sssd/sssd_2.9.2.bb
index 4c76bd9..0c75d8f 100644
--- a/dynamic-layers/networking-layer/recipes-security/sssd/sssd_2.9.2.bb
+++ b/dynamic-layers/networking-layer/recipes-security/sssd/sssd_2.9.2.bb
@@ -90,7 +90,7 @@ do_install () {
90 install -d ${D}/${PYTHON_SITEPACKAGES_DIR} 90 install -d ${D}/${PYTHON_SITEPACKAGES_DIR}
91 mv ${D}/${BPN} ${D}/${PYTHON_SITEPACKAGES_DIR} 91 mv ${D}/${BPN} ${D}/${PYTHON_SITEPACKAGES_DIR}
92 92
93 install -m 600 ${WORKDIR}/${BPN}.conf ${D}/${sysconfdir}/${BPN} 93 install -m 600 ${UNPACKDIR}/${BPN}.conf ${D}/${sysconfdir}/${BPN}
94 94
95 # /var/log/sssd needs to be created in runtime. Use rmdir to catch if 95 # /var/log/sssd needs to be created in runtime. Use rmdir to catch if
96 # upstream stops creating /var/log/sssd, or adds something else in 96 # upstream stops creating /var/log/sssd, or adds something else in
diff --git a/meta-integrity/recipes-core/systemd/systemd_%.bbappend b/meta-integrity/recipes-core/systemd/systemd_%.bbappend
index 57b3684..f140f02 100644
--- a/meta-integrity/recipes-core/systemd/systemd_%.bbappend
+++ b/meta-integrity/recipes-core/systemd/systemd_%.bbappend
@@ -8,6 +8,6 @@ SRC_URI += " \
8do_install:append () { 8do_install:append () {
9 for i in machine-id-commit random-seed; do 9 for i in machine-id-commit random-seed; do
10 install -d ${D}/${systemd_system_unitdir}/systemd-$i.service.d 10 install -d ${D}/${systemd_system_unitdir}/systemd-$i.service.d
11 install -m 0644 ${WORKDIR}/$i-sync.conf ${D}/${systemd_system_unitdir}/systemd-$i.service.d 11 install -m 0644 ${UNPACKDIR}/$i-sync.conf ${D}/${systemd_system_unitdir}/systemd-$i.service.d
12 done 12 done
13} 13}
diff --git a/meta-tpm/recipes-tpm2/tpm2-abrmd/tpm2-abrmd_3.0.0.bb b/meta-tpm/recipes-tpm2/tpm2-abrmd/tpm2-abrmd_3.0.0.bb
index ea2433c..24fd5b5 100644
--- a/meta-tpm/recipes-tpm2/tpm2-abrmd/tpm2-abrmd_3.0.0.bb
+++ b/meta-tpm/recipes-tpm2/tpm2-abrmd/tpm2-abrmd_3.0.0.bb
@@ -40,10 +40,10 @@ PACKAGECONFIG[systemd] = "--with-systemdsystemunitdir=${systemd_system_unitdir},
40 40
41do_install:append() { 41do_install:append() {
42 install -d "${D}${sysconfdir}/init.d" 42 install -d "${D}${sysconfdir}/init.d"
43 install -m 0755 "${WORKDIR}/tpm2-abrmd-init.sh" "${D}${sysconfdir}/init.d/tpm2-abrmd" 43 install -m 0755 "${UNPACKDIR}/tpm2-abrmd-init.sh" "${D}${sysconfdir}/init.d/tpm2-abrmd"
44 44
45 install -d "${D}${sysconfdir}/default" 45 install -d "${D}${sysconfdir}/default"
46 install -m 0644 "${WORKDIR}/tpm2-abrmd.default" "${D}${sysconfdir}/default/tpm2-abrmd" 46 install -m 0644 "${UNPACKDIR}/tpm2-abrmd.default" "${D}${sysconfdir}/default/tpm2-abrmd"
47} 47}
48 48
49FILES:${PN} += "${libdir}/systemd/system-preset \ 49FILES:${PN} += "${libdir}/systemd/system-preset \
diff --git a/recipes-core/initrdscripts/initramfs-framework.inc b/recipes-core/initrdscripts/initramfs-framework.inc
index 1a724d6..aa04348 100644
--- a/recipes-core/initrdscripts/initramfs-framework.inc
+++ b/recipes-core/initrdscripts/initramfs-framework.inc
@@ -6,7 +6,7 @@ SRC_URI:append = "\
6 6
7do_install:append() { 7do_install:append() {
8 # dm-verity 8 # dm-verity
9 install ${WORKDIR}/dmverity ${D}/init.d/80-dmverity 9 install ${S}/dmverity ${D}/init.d/80-dmverity
10} 10}
11 11
12PACKAGES:append = " initramfs-module-dmverity" 12PACKAGES:append = " initramfs-module-dmverity"
diff --git a/recipes-ids/samhain/samhain-server.bb b/recipes-ids/samhain/samhain-server.bb
index 8bae2d2..030ec2b 100644
--- a/recipes-ids/samhain/samhain-server.bb
+++ b/recipes-ids/samhain/samhain-server.bb
@@ -16,11 +16,11 @@ TARGET_CC_ARCH += "${LDFLAGS}"
16do_install:append() { 16do_install:append() {
17 if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then 17 if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then
18 install -d ${D}${sysconfdir}/tmpfiles.d 18 install -d ${D}${sysconfdir}/tmpfiles.d
19 install -m 0644 ${WORKDIR}/samhain-server-volatiles.conf \ 19 install -m 0644 ${UNPACKDIR}/samhain-server-volatiles.conf \
20 ${D}${sysconfdir}/tmpfiles.d/samhain-server.conf 20 ${D}${sysconfdir}/tmpfiles.d/samhain-server.conf
21 else 21 else
22 install -d ${D}${sysconfdir}/default/volatiles 22 install -d ${D}${sysconfdir}/default/volatiles
23 install -m 0644 ${WORKDIR}/samhain-server-volatiles \ 23 install -m 0644 ${UNPACKDIR}/samhain-server-volatiles \
24 ${D}${sysconfdir}/default/volatiles/samhain-server 24 ${D}${sysconfdir}/default/volatiles/samhain-server
25 fi 25 fi
26 26
diff --git a/recipes-ids/samhain/samhain.inc b/recipes-ids/samhain/samhain.inc
index f5bea1d..61ec0da 100644
--- a/recipes-ids/samhain/samhain.inc
+++ b/recipes-ids/samhain/samhain.inc
@@ -64,8 +64,8 @@ EXTRA_OEMAKE:append:aarch64 = " CPPFLAGS+=-DCONFIG_ARCH_AARCH64=1"
64EXTRA_OEMAKE:append:mips64 = " CPPFLAGS+=-DCONFIG_ARCH_MIPS64=1" 64EXTRA_OEMAKE:append:mips64 = " CPPFLAGS+=-DCONFIG_ARCH_MIPS64=1"
65 65
66do_unpack_samhain() { 66do_unpack_samhain() {
67 cd ${WORKDIR} 67 cd ${UNPACKDIR}
68 tar -xzvf samhain-${PV}.tar.gz 68 tar -xzvf samhain-${PV}.tar.gz -C ${WORKDIR}
69} 69}
70 70
71python do_unpack:append() { 71python do_unpack:append() {
@@ -129,19 +129,19 @@ do_compile:prepend:libc-musl () {
129do_install:append () { 129do_install:append () {
130 oe_runmake install DESTDIR='${D}' INSTALL=install-boot 130 oe_runmake install DESTDIR='${D}' INSTALL=install-boot
131 131
132 install -D -m 755 ${WORKDIR}/${INITSCRIPT_NAME}.init \ 132 install -D -m 755 ${UNPACKDIR}/${INITSCRIPT_NAME}.init \
133 ${D}${sysconfdir}/init.d/${INITSCRIPT_NAME} 133 ${D}${sysconfdir}/init.d/${INITSCRIPT_NAME}
134 134
135 install -D -m 755 ${WORKDIR}/${INITSCRIPT_NAME}.default \ 135 install -D -m 755 ${UNPACKDIR}/${INITSCRIPT_NAME}.default \
136 ${D}${sysconfdir}/default/${INITSCRIPT_NAME} 136 ${D}${sysconfdir}/default/${INITSCRIPT_NAME}
137 137
138 if ${@bb.utils.contains('DISTRO_FEATURES','systemd','true','false',d)}; then 138 if ${@bb.utils.contains('DISTRO_FEATURES','systemd','true','false',d)}; then
139 if [ "${SAMHAIN_MODE}" = "no" ]; then 139 if [ "${SAMHAIN_MODE}" = "no" ]; then
140 install -D -m 0644 ${WORKDIR}/samhain.service ${D}/${systemd_system_unitdir}/samhain.service 140 install -D -m 0644 ${UNPACKDIR}/samhain.service ${D}/${systemd_system_unitdir}/samhain.service
141 else 141 else
142 install -D -m 0644 ${WORKDIR}/samhain.service ${D}/${systemd_system_unitdir}/${BPN}.service 142 install -D -m 0644 ${UNPACKDIR}/samhain.service ${D}/${systemd_system_unitdir}/${BPN}.service
143 fi 143 fi
144 install -D -m 0755 ${WORKDIR}/${BPN}.init ${D}/${libexecdir}/${BPN} 144 install -D -m 0755 ${UNPACKDIR}/${BPN}.init ${D}/${libexecdir}/${BPN}
145 sed -i -e 's,@LIBDIR@,${libexecdir},' \ 145 sed -i -e 's,@LIBDIR@,${libexecdir},' \
146 -e 's,@SAMHAIN_HELPER@,${BPN},' \ 146 -e 's,@SAMHAIN_HELPER@,${BPN},' \
147 -e 's,@MODE_NAME@,${MODE_NAME},' \ 147 -e 's,@MODE_NAME@,${MODE_NAME},' \
diff --git a/recipes-security/ecryptfs-utils/ecryptfs-utils_111.bb b/recipes-security/ecryptfs-utils/ecryptfs-utils_111.bb
index 00e8997..83d37d6 100644
--- a/recipes-security/ecryptfs-utils/ecryptfs-utils_111.bb
+++ b/recipes-security/ecryptfs-utils/ecryptfs-utils_111.bb
@@ -62,7 +62,7 @@ do_install:append() {
62 -e 's:-L${STAGING_LIBDIR}::' ${D}/${libdir}/pkgconfig/libecryptfs.pc 62 -e 's:-L${STAGING_LIBDIR}::' ${D}/${libdir}/pkgconfig/libecryptfs.pc
63 sed -i -e "s: ${base_sbindir}/cryptsetup: ${sbindir}/cryptsetup:" ${D}${bindir}/ecryptfs-setup-swap 63 sed -i -e "s: ${base_sbindir}/cryptsetup: ${sbindir}/cryptsetup:" ${D}${bindir}/ecryptfs-setup-swap
64 if ${@bb.utils.contains('DISTRO_FEATURES','systemd','true','false',d)}; then 64 if ${@bb.utils.contains('DISTRO_FEATURES','systemd','true','false',d)}; then
65 install -D -m 0644 ${WORKDIR}/ecryptfs.service ${D}${systemd_system_unitdir}/ecryptfs.service 65 install -D -m 0644 ${UNPACKDIR}/ecryptfs.service ${D}${systemd_system_unitdir}/ecryptfs.service
66 fi 66 fi
67} 67}
68 68
diff --git a/recipes-security/libmhash/libmhash_0.9.9.9.bb b/recipes-security/libmhash/libmhash_0.9.9.9.bb
index 49139d2..f725a26 100644
--- a/recipes-security/libmhash/libmhash_0.9.9.9.bb
+++ b/recipes-security/libmhash/libmhash_0.9.9.9.bb
@@ -31,8 +31,8 @@ do_install:append() {
31 31
32do_compile_ptest() { 32do_compile_ptest() {
33 if [ ! -d ${S}/demo ]; then mkdir ${S}/demo; fi 33 if [ ! -d ${S}/demo ]; then mkdir ${S}/demo; fi
34 cp ${WORKDIR}/Makefile.test ${S}/demo/Makefile 34 cp ${UNPACKDIR}/Makefile.test ${S}/demo/Makefile
35 cp ${WORKDIR}/mhash.c ${S}/demo/ 35 cp ${UNPACKDIR}/mhash.c ${S}/demo/
36 make -C ${S}/demo CFLAGS="${CFLAGS} -I${S}/include/" LDFLAGS="${LDFLAGS} -L${S}/lib/.libs" 36 make -C ${S}/demo CFLAGS="${CFLAGS} -I${S}/include/" LDFLAGS="${LDFLAGS} -L${S}/lib/.libs"
37} 37}
38 38
diff --git a/recipes-security/redhat-security/redhat-security_1.0.bb b/recipes-security/redhat-security/redhat-security_1.0.bb
index c47688f..1f0ba6c 100644
--- a/recipes-security/redhat-security/redhat-security_1.0.bb
+++ b/recipes-security/redhat-security/redhat-security_1.0.bb
@@ -18,23 +18,24 @@ SRC_URI = "file://find-chroot-py.sh \
18 file://selinux-check-devices.sh \ 18 file://selinux-check-devices.sh \
19 file://selinux-ls-unconfined.sh" 19 file://selinux-ls-unconfined.sh"
20 20
21S = "${WORKDIR}" 21S = "${WORKDIR}/sources"
22UNPACKDIR = "${S}"
22 23
23do_install() { 24do_install() {
24 install -d ${D}${bindir} 25 install -d ${D}${bindir}
25 install -m 0755 ${WORKDIR}/find-chroot-py.sh ${D}${bindir} 26 install -m 0755 ${S}/find-chroot-py.sh ${D}${bindir}
26 install -m 0755 ${WORKDIR}/find-chroot.sh ${D}${bindir} 27 install -m 0755 ${S}/find-chroot.sh ${D}${bindir}
27 install -m 0755 ${WORKDIR}/find-elf4tmp.sh ${D}${bindir} 28 install -m 0755 ${S}/find-elf4tmp.sh ${D}${bindir}
28 install -m 0755 ${WORKDIR}/find-execstack.sh ${D}${bindir} 29 install -m 0755 ${S}/find-execstack.sh ${D}${bindir}
29 install -m 0755 ${WORKDIR}/find-hidden-exec.sh ${D}${bindir} 30 install -m 0755 ${S}/find-hidden-exec.sh ${D}${bindir}
30 install -m 0755 ${WORKDIR}/find-nodrop-groups.sh ${D}${bindir} 31 install -m 0755 ${S}/find-nodrop-groups.sh ${D}${bindir}
31 install -m 0755 ${WORKDIR}/find-sh4errors.sh ${D}${bindir} 32 install -m 0755 ${S}/find-sh4errors.sh ${D}${bindir}
32 install -m 0755 ${WORKDIR}/find-sh4tmp.sh ${D}${bindir} 33 install -m 0755 ${S}/find-sh4tmp.sh ${D}${bindir}
33 install -m 0755 ${WORKDIR}/lib-bin-check.sh ${D}${bindir} 34 install -m 0755 ${S}/lib-bin-check.sh ${D}${bindir}
34 install -m 0755 ${WORKDIR}/rpm-chksec.sh ${D}${bindir} 35 install -m 0755 ${S}/rpm-chksec.sh ${D}${bindir}
35 install -m 0755 ${WORKDIR}/rpm-drop-groups.sh ${D}${bindir} 36 install -m 0755 ${S}/rpm-drop-groups.sh ${D}${bindir}
36 install -m 0755 ${WORKDIR}/selinux-check-devices.sh ${D}${bindir} 37 install -m 0755 ${S}/selinux-check-devices.sh ${D}${bindir}
37 install -m 0755 ${WORKDIR}/selinux-ls-unconfined.sh ${D}${bindir} 38 install -m 0755 ${S}/selinux-ls-unconfined.sh ${D}${bindir}
38} 39}
39 40
40RDEPENDS:${PN} = "file libcap-ng procps findutils" 41RDEPENDS:${PN} = "file libcap-ng procps findutils"
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-05-31 09:52:16 +0000