summaryrefslogtreecommitdiffstats
path: root/recipes-mac/AppArmor
Commit message (Collapse)AuthorAgeFilesLines
* Adapt to S/UNPACKDIR changesScott Murray2025-07-041-1/+0
| | | | | | | Remove or update S definitions as required to work with oe-core S/UNPACKDIR changes. Signed-off-by: Scott Murray <scott.murray@konsulko.com>
* apparmor: update from 3.1.3 to 4.0.3Mikko Rapeli2024-12-272-4/+78
| | | | | | | | | | | | | | Fixes python 3.13 support though needed one more patch which is also submitted upstream. oeqa runtime test passes on qemuarm and qemuarm64. Did not fix ptest compilation. Changes: https://apparmor.net/news/release-4.0.2/ https://gitlab.com/apparmor/apparmor/-/releases/v4.0.3 Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix QA WarningsArmin Kuster2024-07-291-0/+5
| | | | | | | | | RROR: apparmor-3.1.3-r0 do_package_qa: QA Issue: File /usr/src/debug/apparmor/3.1.3/libraries/libapparmor/swig/perl/libapparmor_wrap.c in package apparmor-src contains reference to TMPDIR [buildpaths] ERROR: apparmor-3.1.3-r0 do_package_qa: QA Issue: File /usr/lib/python3.12/site-packages/LibAppArmor/.debug/_LibAppArmor.cpython-312-aarch64-linux-gnu.so in package apparmor-dbg contains reference to TMPDIR [buildpaths] ERROR: apparmor-3.1.3-r0 do_package_qa: QA Issue: File /usr/lib/perl5/vendor_perl/5.38.2/aarch64-linux/auto/LibAppArmor/.packlist in package apparmor contains reference to TMPDIR [buildpaths] ERROR: apparmor-3.1.3-r0 do_package_qa: Fatal QA errors were found, failing task. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* recipes-*: convert WORKDIR->UNPACKDIRArmin Kuster2024-07-291-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* .patch: remove probably unused patchesMartin Jansa2023-06-251-19/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | There could be some false possitives (the script is far from perfect), so please test it on your QA, I've only double checked with "git grep" (the script looks only in parent directory). @ ~/layers/meta-security $ /OE/extra-layers/meta-ros/scripts/check-patch-files.sh . ./recipes-ids/tripwire/files/add_armeb_arch.patch: not used in any recipe ./dynamic-layers/meta-python/recipes-security/fail2ban/files/0001-To-fix-build-error-of-xrang.patch: not used in any recipe ./recipes-scanners/clamav/files/fix2_libcurl_check.patch: not used in any recipe ./recipes-scanners/arpwatch/files/postfix_workaround.patch: not used in any recipe ./meta-tpm/recipes-tpm/libtpm/files/Use-format-s-for-call-to-dprintf.patch: not used in any recipe ./meta-tpm/recipes-tpm/libtpm/files/fix_signed_issue.patch: not used in any recipe ./meta-tpm/recipes-tpm/libtpm/files/Convert-another-vdprintf-to-dprintf.patch: not used in any recipe ./meta-tpm/recipes-tpm/swtpm/files/fix_lib_search_path.patch: not used in any recipe ./meta-tpm/recipes-tpm/swtpm/files/fix_fcntl_h.patch: not used in any recipe ./recipes-mac/AppArmor/files/disable_perl_h_check.patch: not used in any recipe @ ~/layers/meta-security $ git grep add_armeb_arch.patch @ ~/layers/meta-security $ git grep 0001-To-fix-build-error-of-xrang.patch @ ~/layers/meta-security $ git grep fix2_libcurl_check.patch @ ~/layers/meta-security $ git grep postfix_workaround.patch @ ~/layers/meta-security $ git grep Use-format-s-for-call-to-dprintf.patch @ ~/layers/meta-security $ git grep fix_signed_issue.patch @ ~/layers/meta-security $ git grep Convert-another-vdprintf-to-dprintf.patch @ ~/layers/meta-security $ git grep fix_lib_search_path.patch @ ~/layers/meta-security $ git grep fix_fcntl_h.patch @ ~/layers/meta-security $ git grep disable_perl_h_check.patch Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* *.patch: fix malformed Upstream-Status and SOB linesMartin Jansa2023-06-252-2/+2
| | | | | | | | | | | | | | | | | | | | | | * as reported by openembedded-core/scripts/contrib/patchreview.py -v . Malformed Signed-off-by 'Signed-Off-By:' (./recipes-mac/AppArmor/files/crosscompile_perl_bindings.patch) Malformed Signed-off-by 'Signed-Off-By:' (./recipes-mac/AppArmor/files/disable_perl_h_check.patch) Missing Upstream-Status tag (./recipes-compliance/scap-security-guide/files/0001-standard.profile-expand-checks.patch) Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-ids/samhain/files/samhain-not-run-ptest-on-host.patch Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-ids/samhain/files/samhain-pid-path.patch Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-ids/suricata/files/fixup.patch Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-scanners/clamav/files/fix2_libcurl_check.patch Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-security/ecryptfs-utils/files/ecryptfs-utils-CVE-2016-6224.patch Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-security/isic/files/configure_fix.patch Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-security/krill/files/panic_workaround.patch Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-security/opendnssec/files/libdns_conf_fix.patch Malformed Upstream-Status 'Malformed Upstream-Status in patch ./recipes-security/opendnssec/files/libxml2_conf.patch Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 3.1.3Armin Kuster2023-03-202-61/+3
| | | | | | drop debian patch as the file was dropped upstream. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 3.0.7Armin Kuster2022-09-251-2/+2
| | | | | | Fix typo in HOMEPAGE Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 3.0.6Armin Kuster2022-08-061-0/+0
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 3.0.5Armin Kuster2022-08-021-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix ownership issuesArmin Kuster2022-06-181-0/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* LICENSE: update to SPDX standard namesJoe Slater2022-04-131-1/+1
| | | | | | | Use convert-spdx-licenses.py to update LICENSE in recipes. Signed-off-by: Joe Slater <joe.slater@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 3.0.4Armin Kuster2022-03-113-130/+2
| | | | | | | drop to patches no longer needed use setuptools Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix warning of remove operator combined with +=Kai Kang2021-11-281-1/+1
| | | | | | | | | | | Fix warning for apparmor: | WARNING: /path/to/meta-security/recipes-mac/AppArmor/apparmor_3.0.1.bb: | RDEPENDS:${PN}:remove += is not a recommended operator combination, | please replace it. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: Add a python 3.10 compatability patchArmin Kuster2021-10-262-2/+37
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* meta-security: Convert to new override syntaxArmin Kuster2021-08-011-17/+17
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: use its own initscript and service filesYi Zhao2021-07-107-640/+118
| | | | | | Use initscript and service files provided by apparmor. Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* apparmor: upgrade 3.0 -> 3.0.1Yi Zhao2021-07-109-259/+2
| | | | | | | | | | | | Drop backport patches: 0001-apparmor-fix-manpage-order.patch 0001-libapparmor-add-missing-include-for-socklen_t.patch 0002-libapparmor-add-aa_features_new_from_file-to-public-.patch 0003-libapparmor-add-_aa_asprintf-to-private-symbols.patch 0001-aa_status-Fix-build-issue-with-musl.patch 0001-parser-Makefile-dont-force-host-cpp-to-detect-reallo.patch Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* Apparmor: fix multi config build issue.Armin Kuster2021-05-161-1/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: Inherit python3targetconfigArmin Kuster2021-02-231-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix build for on muslArmin Kuster2020-10-106-1/+185
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 3.0Armin Kuster2020-10-095-136/+158
| | | | | | | | | skip ptest for now, on todo list for fix. Runtime test pass remove patch now included in update: 0001-regression-tests-Don-t-build-syscall_sysctl-if-missi.patch Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix build issue with ptest enabled.Armin Kuster2020-10-092-91/+186
| | | | | | minor spacing cleanup Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: exclude mips64, not supportedArmin Kuster2020-09-181-0/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: pull in coreutils/findutils only when not using systemd as init ↵Alexander Kanavin2020-06-191-1/+2
| | | | | | | | | | | | manager The utilities from those packages (xargs, comm) are only used in sysvinit scripts, and so there is no need to pull them in when systemd is in use. Both are gpl3 licensed, so this is beneficial for builds where gpl3 is not allowed. Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 2.13.4Jan Luebbe2020-04-071-1/+1
| | | | | Signed-off-by: Jan Luebbe <jlu@pengutronix.de> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix wrong executable permission on service fileJan Luebbe2020-04-071-1/+1
| | | | | | | | | This avoids "systemd[1]: Configuration file /lib/systemd/system/apparmor.service is marked executable. Please remove executable permission bits. Proceeding anyway." on boot. Signed-off-by: Jan Luebbe <jlu@pengutronix.de> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to tipArmin Kuster2020-02-171-1/+1
| | | | | | fixes Python3.8 configure issues Signed-off-by: Armin Kuster <akuster808@gmail.com>
* Apparmor: fix some runtime dependsArmin Kuster2020-01-231-1/+1
| | | | | | missing xargs and comm Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: add distro checkArmin Kuster2019-12-251-1/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: ptest fail to build on armArmin Kuster2019-10-171-0/+18
| | | | | | | | | | exclude arm and aarch64 ptest tasks [v2&3] Sent before committing. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix systemd support so it worksArmin Kuster2019-10-161-5/+11
| | | | | | [Yocto # 13568] Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: make bash dependency optionalAlexander Kanavin2019-10-131-2/+6
| | | | | | | | | Bash is only needed by one not particularly important script, so not requiring bash is a useful option for builds that cannot have gpl3 components. Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: add PRIVATE_LIBS for ptest packageAlexander Kanavin2019-10-131-0/+2
| | | | | | | | | Otherwise, the following occurs: ERROR: apparmor-2.13.3-r0 do_package: apparmor: Multiple shlib providers for libapparmor.so.1: apparmor, apparmor-ptest (used by files: /home/alexander/development/poky/build-metaoe/tmp/work/core2-32-poky-linux/apparmor/2.13.3-r0/packages-split/apparmor/usr/lib/perl5/vendor_perl/5.30.0/i686-linux/auto/LibAppArmor/LibAppArmor.so) ERROR: apparmor-2.13.3-r0 do_package: apparmor: Multiple shlib providers for libapparmor.so.1: apparmor, apparmor-ptest (used by files: /home/alexander/development/poky/build-metaoe/tmp/work/core2-32-poky-linux/apparmor/2.13.3-r0/packages-split/apparmor/usr/lib/python3.7/site-packages/LibAppArmor/_LibAppArmor.cpython-37m-i686-linux-gnu.so) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: suppress appending of installation to perllocal.podNaveen Saini2019-09-292-0/+29
| | | | | | | | | | | | | | | | | | | | | | perl modules when gets installed can produce a perllocal.pod file for documenting a list of locally installed perl modules. This can conflict if multiple packages generate the file. Hits the conflict with apparmor & rrdtool packages. Error: Transaction check error: file /usr/lib/perl5/5.30.0/x86_64-linux/perllocal.pod conflicts between attempted installs of rrdtool-1.7.2-r0.corei7_64 and apparmor-2.13.3-r0.corei7_64 perllocal.pod files are for documentation purpose, so disabling does not harm. Generating perllocal.pod for perl module is disabled by passing NO_PERLLOCAL=1 with ExtUtils::MakeMaker utility. https://perldoc.perl.org/5.30.0/ExtUtils/MakeMaker.html#Using-Attributes-and-Parameters [YOCTO #13491] Signed-off-by: Naveen Saini <naveen.kumar.saini@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: drop lsb RDEPENDSArmin Kuster2019-09-072-2/+1
| | | | | | remove lsb functions from init script Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 2.13.3Armin Kuster2019-08-241-1/+7
| | | | | | create the cache dir at install time Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fix RDPENDSArmin Kuster2019-08-241-1/+1
| | | | | | apparmor-2.13.2-r0 do_package_qa: QA Issue: /usr/bin/aa-easyprof contained in package apparmor requires /usr/bin/python3, but no providers found in RDEPENDS_apparmor? [file-rdeps] Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: fetch from gitAlexander Kanavin2019-05-121-3/+3
| | | | | | | Tarballs from archive.ubuntu.com can and do disappear (similar to archive.debian.org). Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 2.13.2Armin Kuster2019-03-312-40/+9
| | | | | | | Drop patch included in update: tool-paths.patch Signed-off-by: Armin Kuster <akuster808@gmail.com>
* reorg: move mac recipes to recipes-macArmin Kuster2019-03-3110-0/+890
Signed-off-by: Armin Kuster <akuster808@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-07 02:07:40 +0000