summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* clamav: add INSTALL_CLAMAV_CVD flag to do_installzeusCharlie Davies2020-10-091-1/+4
| | | | | | | | | Recipe provides INSTALL_CLAMAV_CVD flag to bypass clamav cvd db creation. During do_install this flag should be used to conditionally skip install of cvd db if needed. Signed-off-by: Charlie Davies <charles.davies@whitetree.xyz> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tpm2-tss-engine: License changedArmin Kuster2020-06-241-2/+2
| | | | | | | | | | | | | | | | Fixes this error: ERROR: tpm2-tss-engine-1.0.1-r0 do_populate_lic: QA Issue: tpm2-tss-engine: The LIC_FILES_CHKSUM does not match for file://LICENSE;md5=3fb0047fd29391478a71e8e6101c76eb tpm2-tss-engine: The new md5 checksum is 7b3ab643b9ce041de515d1ed092a36d4 tpm2-tss-engine: Here is the selected license text: The License changed to BSD-3 14 months ago so I suspect the commit was incorrect. This corrects the License and hash [Yocto #13926] Signed-off-by: Armin Kuster <akuster808@gmail.com>
* buck-security: fix rdebends and minor style cleanupArmin Kuster2020-01-251-34/+16
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksecurity: fix runtime issuesArmin Kuster2020-01-251-1/+1
| | | | | | add some missing perl modules Signed-off-by: Armin Kuster <akuster808@gmail.com>
* Apparmor: fix some runtime dependsArmin Kuster2020-01-231-1/+1
| | | | | | missing xargs and comm Signed-off-by: Armin Kuster <akuster808@gmail.com>
* fail2ban: fix runtime errorArmin Kuster2020-01-221-4/+4
| | | | | | use success/failure calls in initd/function Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata: update to 4.1.6Armin Kuster2020-01-042-4/+3
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libhtp: bugfix only update 0.5.32Armin Kuster2020-01-041-0/+0
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libseccomp: upgrade 2.4.1 -> 2.4.2Yi Zhao2020-01-042-1/+47
| | | | | | | Backport a patch to fix ptest build failure on arm64. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* README: update mailing list to new groups.ioArmin Kuster2020-01-041-4/+4
| | | | | | Also add Zeus keyword Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata: add tmpfiles.d configChristopher Larson2020-01-042-10/+20
| | | | | | | | This is needed to ensure our /var/log directory is created when using systemd. Signed-off-by: Christopher Larson <chris_larson@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: add tmpfiles.d configChristopher Larson2020-01-042-1/+10
| | | | | | | | This is needed to ensure freshclam's /var/log directory and file are created when using systemd. Signed-off-by: Christopher Larson <chris_larson@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksecurity: use more portable find argsChristopher Larson2020-01-042-1/+25
| | | | | Signed-off-by: Christopher Larson <chris_larson@mentor.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_2.3.1.bb: add new udev dir to FILES ↵Norbert Kaminski2020-01-041-1/+3
| | | | | | | | | | | | and append EXTRA_OECONF The tpm2 tool freezes in a XEN distro. It stores the udev rules in /lib/udev directory, thus these changes append the FILES and EXTRA_OECONF to make tpm2 work properly. Signed-off-by: Norbert Kaminski <norbert.kaminski@3mdeb.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* cryptsetup tpm incubator: fix installed vs shippedChristophe PRIOUZEAU2020-01-041-0/+1
| | | | | | | | Fix [installed-vs-shipped] by adding /usr/lib/tmpfiles.d on FILES. Signed-off-by: Christophe Priouzeau <christophe.priouzeau@st.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: ptest fail to build on armArmin Kuster2019-10-171-0/+18
| | | | | | | | | | exclude arm and aarch64 ptest tasks [v2&3] Sent before committing. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix systemd support so it worksArmin Kuster2019-10-161-5/+11
| | | | | | [Yocto # 13568] Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksec: add missing rdepends to readelfArmin Kuster2019-10-142-1/+2
| | | | | | update test to check for depends Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata: fix compile issueArmin Kuster2019-10-141-3/+0
| | | | | | | cp: cannot stat '/...../tmp-glibc/work/core2-32-oe-linux/suricata/4.1.5-r0/rules': No such file or directory | WARNING: exit code 1 from a shell command. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: make bash dependency optionalAlexander Kanavin2019-10-131-2/+6
| | | | | | | | | Bash is only needed by one not particularly important script, so not requiring bash is a useful option for builds that cannot have gpl3 components. Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: add PRIVATE_LIBS for ptest packageAlexander Kanavin2019-10-131-0/+2
| | | | | | | | | Otherwise, the following occurs: ERROR: apparmor-2.13.3-r0 do_package: apparmor: Multiple shlib providers for libapparmor.so.1: apparmor, apparmor-ptest (used by files: /home/alexander/development/poky/build-metaoe/tmp/work/core2-32-poky-linux/apparmor/2.13.3-r0/packages-split/apparmor/usr/lib/perl5/vendor_perl/5.30.0/i686-linux/auto/LibAppArmor/LibAppArmor.so) ERROR: apparmor-2.13.3-r0 do_package: apparmor: Multiple shlib providers for libapparmor.so.1: apparmor, apparmor-ptest (used by files: /home/alexander/development/poky/build-metaoe/tmp/work/core2-32-poky-linux/apparmor/2.13.3-r0/packages-split/apparmor/usr/lib/python3.7/site-packages/LibAppArmor/_LibAppArmor.cpython-37m-i686-linux-gnu.so) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* layer.conf: Update for zeus seriesArmin Kuster2019-10-114-4/+4
| | | | | | Signed-off-by: Armin Kuster <akuster808@gmail.com> Acked-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata-update: add package to pull rulesArmin Kuster2019-10-081-0/+15
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata/libhtp: update to 4.1.5/0.5.31Armin Kuster2019-10-085-13/+8
| | | | | | | | | same sources refresh patch drop rules tar ball Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: suppress appending of installation to perllocal.podNaveen Saini2019-09-292-0/+29
| | | | | | | | | | | | | | | | | | | | | | perl modules when gets installed can produce a perllocal.pod file for documenting a list of locally installed perl modules. This can conflict if multiple packages generate the file. Hits the conflict with apparmor & rrdtool packages. Error: Transaction check error: file /usr/lib/perl5/5.30.0/x86_64-linux/perllocal.pod conflicts between attempted installs of rrdtool-1.7.2-r0.corei7_64 and apparmor-2.13.3-r0.corei7_64 perllocal.pod files are for documentation purpose, so disabling does not harm. Generating perllocal.pod for perl module is disabled by passing NO_PERLLOCAL=1 with ExtUtils::MakeMaker utility. https://perldoc.perl.org/5.30.0/ExtUtils/MakeMaker.html#Using-Attributes-and-Parameters [YOCTO #13491] Signed-off-by: Naveen Saini <naveen.kumar.saini@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* ncrack: update to tipScott Ellis2019-09-291-2/+2
| | | | | | | | | | | | LIC_FILES_CHKSUM changed do to the date bumped to 2018 to 2019. The license is the same as nmap and the nmap recipe in meta-openembedded has that beginline/endline grab stuff. Went for consistency as ncrack is an nmap project. Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tpm2-pkcs11: update to tipArmin Kuster2019-09-121-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tpm2-tcti-uefi: update to tipArmin Kuster2019-09-121-2/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tpm2-totp: update to 0.1.2Armin Kuster2019-09-121-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tpm2-tss-engine: update to 1.0.1Armin Kuster2019-09-121-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tpm2-tss: update to 2.3.0Armin Kuster2019-09-122-87/+2
| | | | | | drop patch already in update Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tpm2-abrmd: update to 2.2.0Armin Kuster2019-09-121-2/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* swtpm: update to 0.2.0Armin Kuster2019-09-121-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libtpm: update to 0.7.0Armin Kuster2019-09-121-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata: update to 4.1.4Armin Kuster2019-09-074-8/+35
| | | | | | Backport patch to fix build against newer kernels. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* oe-scap: Fix QA RDEPENDS errorArmin Kuster2019-09-071-1/+1
| | | | | | ERROR: oe-scap-1.0-r0 do_package_qa: QA Issue: /usr/share/oe-scap/run_tests.sh contained in package oe-scap requires /bin/bash, but no providers found in RDEPENDS_oe-scap? [file-rdeps] Signed-off-by: Armin Kuster <akuster808@gmail.com>
* cryptsetup-tpm-incubator: fix QA error RDEPENDSArmin Kuster2019-09-071-1/+1
| | | | | | ERROR: cryptsetup-tpm-incubator-0.9.9-r0 do_package_qa: QA Issue: /usr/lib/libcryptsetup.so.12.3.0 contained in package cryptsetup-tpm-incubator requires libdevmapper.so.1.02(DM_1_02_97)(64bit), but no providers found in RDEPENDS_cryptsetup-tpm-incubator? [file-rdeps] Signed-off-by: Armin Kuster <akuster808@gmail.com>
* scap-security-guide: add depends on openscap-native do_installArmin Kuster2019-09-071-3/+4
| | | | | | | | | This ensures openscap-native does install the needed patches security guilde needs to build Minor recipe cleanup too Signed-off-by: Armin Kuster <akuster808@gmail.com>
* openscap: Drop nostampArmin Kuster2019-09-071-3/+2
| | | | | | | | | add cleandir depends to do_install task This nostamp is causing issues with the yocto-check-layer when checking hash changes. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: drop lsb RDEPENDSArmin Kuster2019-09-072-2/+1
| | | | | | remove lsb functions from init script Signed-off-by: Armin Kuster <akuster808@gmail.com>
* initramfs-framework-ima: correct IMA_POLICY nameArmin Kuster2019-09-071-1/+1
| | | | | | | | | it had ima_policy_hashed and did not match the recipe ima-policy-hashed found by yocto-check-layer Signed-off-by: Armin Kuster <akuster808@gmail.com>
* busybox: fix sig changes when layer addedArmin Kuster2019-09-072-3/+4
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroup-core-security: update package nameArmin Kuster2019-09-071-3/+1
| | | | | | Also remove tpm packagegroup reference Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroup-core-security-ptest: only included if ptest is enabledArmin Kuster2019-09-071-1/+5
| | | | | | update python package names Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libseccomp: build static library alwaysStefan Agner2019-09-011-0/+2
| | | | | | | | Always build static library. This is required e.g. for runc from meta-virtualization in its default configuration. Signed-off-by: Stefan Agner <stefan.agner@toradex.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* python-scapy: drop py2 packageArmin Kuster2019-09-014-37/+25
| | | | | | fixup run-ptest Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksec: upgrade 1.11.1 -> 2.1.0Yuan Chao2019-08-291-1/+1
| | | | | Signed-off-by: Yuan Chao <yuanc.fnst@cn.fujitsu.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* python-scapy: upgrade 2.4.2 -> 2.4.3Yuan Chao2019-08-293-2/+2
| | | | | | | License file changed from bin/scapy to LICENSE Signed-off-by: Yuan Chao <yuanc.fnst@cn.fujitsu.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libenv-perl: Remove, moved to meta-perlAdrian Bunk2019-08-282-22/+0
| | | | | Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* xmlsec1: Remove, moved to meta-oeAdrian Bunk2019-08-289-315/+0
| | | | | Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Armin Kuster <akuster808@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-07-21 06:40:56 +0000