mirrors/meta-security
1
0
Fork 0
mirror of https://git.yoctoproject.org/meta-security synced 2026-01-11 15:00:34 +00:00
Code Issues Projects Releases Wiki Activity

meta-security: Add a new .bbclass for meta-security layer.

Browse Source 
Inheriting the class will cause the check_security function to run on the
ROOTFS image. Currently the check_security function just invokes
buck-security-native on the root filesystem of the image.
This commit is contained in:
mulhern
2013-09-11 09:07:30 -04:00
parent 594e95f052
commit cff02a044c
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
classes/check_security.bbclass Normal file
View File

@@ -0,0 +1,7 @@
check_security () {
${STAGING_BINDIR_NATIVE}/buck-security -sysroot ${IMAGE_ROOTFS} -log ${T}/log.do_checksecurity.${PID} -disable-checks "checksum,firewall,packages_problematic,services,sshd,usermask" -no-sudo > /dev/null
}
EXTRA_IMAGEDEPENDS += "buck-security-native"
ROOTFS_POSTPROCESS_COMMAND += "check_security;"