summaryrefslogtreecommitdiffstats
path: root/recipes-security
Commit message (Collapse)AuthorAgeFilesLines
...
* scapy: Fix shebang for python3Scott Ellis2019-02-111-0/+7
| | | | | | | | | Both scapy and UTscapy have python in the shebang line regardless of whether python3-scapy or python-scapy was built. Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* scapy: Add python-cryptography to RDEPENDSScott Ellis2019-02-111-1/+1
| | | | | Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* Upgrade scapy to 2.4.2Scott Ellis2019-02-114-16/+3
| | | | | | | | Upstream MANIFEST.in removed doc and test directories so remove ptest. Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* xmlsec1: upgrade 1.2.26 -> 1.2.27Adrian Bunk2019-02-111-2/+2
| | | | | Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* xmlsec1: Make the crypto libraries a PACKAGECONFIGAdrian Bunk2019-02-111-4/+6
| | | | | | | | | | | Usually one doesn't need variants for all 4 different crypto libraries installed at the same time. Also remove a libgpg-error DEPENDS that is not used directly by xmlsec1. Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* xmlsec1: Include libxmlsec1-*.so in the main packageAdrian Bunk2019-02-111-0/+5
| | | | | | | They can be dynamically loaded with xmlSecCryptoDLLoadLibrary(). Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksec: Remove old scriptScott Ellis2019-02-111-882/+0
| | | | | | | Should have been removed in previous patch. Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: backport a patch to fix tool paths instead of seddingRoss Burton2019-01-172-2/+38
| | | | | | | | Sedding is ugly, and as upstream have already fixed this cherry-pick the patch instead. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: if Perl is disabled remove perl-using scriptsRoss Burton2019-01-171-0/+5
| | | | | | | aa-notify uses the Perl bindings, so isn't usable when perl is disabled. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: systemd.bbclas is useful even when disabledRoss Burton2019-01-171-7/+3
| | | | | | | | The systemd bbclass will remove any systemd files that have been installed if systemd is disabled, so always install the files and always inherit. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: remove pointless ALLOW_EMPTYRoss Burton2019-01-171-2/+0
| | | | | | | ${PN} has content, so there's no need to set ALLOW_EMPTY_${PN}. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: no need to conditionalise PACKAGESRoss Burton2019-01-171-1/+1
| | | | | | | | A package with no content is not generated, so there's no need to conditionalise assignments to PACKAGES. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: use manpages classRoss Burton2019-01-171-3/+3
| | | | | | | | The manpages class handles enabling/disabling the man pages based on the api-documentation DISTRO_FEATURE, and ensures that mandb is called. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: remove redundant SRoss Burton2019-01-171-2/+0
| | | | | | | This is the default value, so remove it. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: enable static libraries neatlyRoss Burton2019-01-171-2/+1
| | | | | | | | No need to fiddle with the configure arguments as we can just neuter disable-static.inc. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: add missing bash dependencyRoss Burton2019-01-171-1/+1
| | | | | | | | testsuite/parser/tst/minimize.sh is a bash script, so until it is reviewed add a bash dependency to apparmor-ptest. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* Add recipe for ncrackScott Ellis2019-01-171-0/+18
| | | | | | | Ncrack is a network authentication cracking tool. Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* nikto: upgrade to 2.1.6 (v2)Scott Ellis2019-01-064-230/+134
| | | | | | | Source now on github. Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* checksec: Upgrade to 1.11.0Scott Ellis2019-01-062-18/+19
| | | | | | | Switch source to a more up to date github repo. Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: Remove tab indentations in python codeRobert Yang2018-12-061-2/+2
| | | | | | | | | | Use 4 spaces to replace a tab. Fixed: apparmor_2.12.bb: python should use 4 spaces indentation, but found tabs in apparmor_2.12.bb, line 49 Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* clamav: update to 0.99.4Armin Kuster2018-10-311-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroup-core-security: add fail2ban ptest to imageArmin Kuster2018-10-311-0/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* fail2ban: add ptestArmin Kuster2018-10-314-1/+15
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroup-core-security: add tripwire ptestArmin Kuster2018-10-311-0/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tripwire: add ptestArmin Kuster2018-10-312-1/+11
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* security-build-image: remove X11Armin Kuster2018-10-311-3/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroup-core-security: add suricata-ptestArmin Kuster2018-10-311-0/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata: add ptestArmin Kuster2018-10-312-1/+8
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroup-core-security: add few more ptest packagesArmin Kuster2018-10-311-1/+3
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroup-core-security: add ptest capable packagesArmin Kuster2018-10-311-1/+13
| | | | | | and favor python-scapy Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroups: add more packagesArmin Kuster2018-10-311-1/+5
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata: fix QA errorArmin Kuster2018-10-311-1/+5
| | | | | | | | ollected errors: * check_data_file_clashes: Package suricata wants to install file .../1.0-r0/rootfs/var/run But that file is already provided by package * base-files Signed-off-by: Armin Kuster <akuster808@gmail.com>
* bseccomp: fix do package qa warningChangqing Li2018-09-291-1/+1
| | | | | | | | | | Fix below warning: lib32-libseccomp-2.3.3-r0 do_package: QA Issue: lib32-libseccomp: Files/directories were installed but not shipped in any package: Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* keynote: remove recipeYi Zhao2018-09-294-129/+0
| | | | | | | | | The keynote is unmaintained for a long time. It had been removed from main distributions (Fedora, Suse and Debian). See: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594867 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* samhain: update to 4.3.0Armin Kuster2018-09-234-2/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* aircrack: update to 1.3Armin Kuster2018-09-172-35/+4
| | | | | | | remove unneeded patch. minor cleanups Signed-off-by: Armin Kuster <akuster808@gmail.com>
* packagegroup-core-security: change scapy to python nameArmin Kuster2018-09-171-1/+1
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* bastille: fix QA errorArmin Kuster2018-09-171-1/+1
| | | | | | bastille_3.2.1.bb: cannot map 'allarch' to a linux kernel architecture Signed-off-by: Armin Kuster <akuster808@gmail.com>
* suricata: include a emerging rules snapshotArmin Kuster2018-09-172-3/+3
| | | | | | | it appears to be changing w/o version control so keep a snapshot when reciped was updated. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* apparmor: update to 2.12Armin Kuster2018-09-171-2/+2
| | | | Signed-off-by: Armin Kuster <akuster808@gmail.com>
* fscryptctl: update to tipArmin Kuster2018-09-171-1/+1
| | | | | | fix mkfs.ext4 invocation Signed-off-by: Armin Kuster <akuster808@gmail.com>
* scapy: update to 2.4.0 and covertArmin Kuster2018-09-174-10/+16
| | | | | | convert package to python standard Signed-off-by: Armin Kuster <akuster808@gmail.com>
* fail2ban: update to 10.3.1Armin Kuster2018-09-173-5/+10
| | | | | | covert to python package standard Signed-off-by: Armin Kuster <akuster808@gmail.com>
* sssd: update to 1.16.3Armin Kuster2018-09-171-3/+3
| | | | | | | | | | Includes: CVE-2018-10852 see: https://docs.pagure.org/SSSD.sssd/users/relnotes/notes_1_16_3.html Signed-off-by: Armin Kuster <akuster808@gmail.com>
* keyutils: Fix build with usrmergeAlex Kiernan2018-09-171-0/+2
| | | | | | | | | | | | | | Update BINDIR and SBINDIR so keyutils builds with usrmerge ERROR: keyutils-1.5.10-r0 do_package: QA Issue: keyutils: Files/directories were installed but not shipped in any package: /sbin/key.dns_resolver /sbin/request-key /bin/keyctl Please set FILES such that these items are packaged. Alternatively if they are unneeded, avoid installing them or delete them within do_install. keyutils: 3 installed and not shipped files. [installed-vs-shipped] Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* keynote: depend on openssl10Yi Zhao2018-09-171-1/+1
| | | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* xmlsec1: upgrade 1.2.25 -> 1.2.26Yi Zhao2018-09-013-82/+53
| | | | | | | | | | Drop patch xmlsec1-fix-a-typo-in-examples-verify3.c.patch since the issue had been fixed upstream. Rebase patch change-finding-path-of-nss.patch Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* samhain: upgrade 4.2.2 -> 4.2.4Yi Zhao2018-09-014-2/+5
| | | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* ecryptfs-utils: fix usrmerge install pathMingli Yu2018-09-011-2/+7
| | | | | | | | | | | | | | | | Update rootsbindir from /sbin to ${base_sbindir} to fix below do_install error when usrmerge enabled in DISTRO_FEATURES | chmod: cannot access '/poky-build/tmp-glibc/work/core2-64-wrs-linux/ecryptfs-utils/111-r0/image/usr/sbin/mount.ecryptfs_private': No such file or directory And pass "--with-pamdir=${base_libdir}/security" to configure script to fix below warning when usrmerge enabled in DISTRO_FEATURES | WARNING: ecryptfs-utils-111-r0 do_package: QA Issue: ecryptfs-utils: Files/directories were installed but not shipped in any package: /lib64/security/pam_ecryptfs.so Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* keynote: add dependency on bison-nativeJoe Slater2018-09-011-1/+1
| | | | | | | bison/yacc is no longer automatically supplied. Signed-off-by: Joe Slater <joe.slater@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-07-23 10:29:59 +0000