meta-security

mirror of https://git.yoctoproject.org/meta-security synced 2026-01-12 03:10:13 +00:00

Author	SHA1	Message	Date
Armin Kuster	8a4ed4034f	update sssd to 2.7.4 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-09-12 11:11:50 -04:00
Armin Kuster	ee8a51c582	cryptmount: fix systemd service install Default is to install the service in /usr/lib Signed-off-by: Armin Kuster <akuster808@gmail.com> -- [V2] Fix typo in subject	2022-09-12 11:11:50 -04:00
Armin Kuster	b59691b3d9	suricata: fix compile issue make[2]: *** No rule to make target '../rust/target/arm-poky-linux-gnueabi/release/libsuricata.a', needed by 'suricata' Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-09-12 11:11:50 -04:00
Armin Kuster	10fdc2b13a	kas: update testimage inherit Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-25 08:24:12 -04:00
Anton Antonov	2753e73086	parsec-service: Update oeqa tests Signed-off-by: Anton Antonov <Anton.Antonov@arm.com>	2022-08-25 08:17:39 -04:00
Anton Antonov	64b64696a9	Use CARGO_TARGET_SUBDIR in do_install Signed-off-by: Anton Antonov <Anton.Antonov@arm.com>	2022-08-25 08:17:39 -04:00
Armin Kuster	aa57a13788	cyptmount: Fix mount.h conflicts seen with glibc 2.36+ Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-25 08:15:58 -04:00
Mingli Yu	ea5bb2f2e7	samhain-standalone: fix buildpaths issue Fixes: WARNING: samhain-standalone-4.4.9-r0 do_package_qa: QA Issue: File /usr/share/doc/samhain-standalone/scripts/samhain.ebuild-light in package samhain-standalone-doc contains reference to TMPDIR File /usr/share/doc/samhain-standalone/scripts/samhain.ebuild in package samhain-standalone-doc contains reference to TMPDIR [buildpaths] Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-25 08:14:21 -04:00
John Edward Broadbent	571af37e9c	meta-security: Add recipe for Glome Generic Low Overhead Message Exchange (GLOME) is a protocol providing secure authentication and authorization for low dependency environments. Signed-off-by: John Edward Broadbent <jebr@google.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-12 08:32:51 -07:00
Armin Kuster	5f530ba5ab	packagegroup-core-security: add pkg to grp Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-12 08:32:51 -07:00
Armin Kuster	8e26e9dc7a	cryptmount: Add new pkg Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-12 08:32:51 -07:00
Armin Kuster	c352530c13	packagegroup-core-security: add space for appends Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-06 08:55:49 -07:00
Armin Kuster	a891026392	apparmor: update to 3.0.6 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-06 08:55:41 -07:00
Armin Kuster	13120455a5	lkrg-module: update to 0.9.5 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-06 08:55:34 -07:00
Armin Kuster	8173cc90c8	python3-privacyidea: update to 3.7.3 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-06 08:55:26 -07:00
Armin Kuster	2a2d650ee0	packagegroup-core-security: remove krill for some archs Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	70859e8608	krill: only builds on x86/x86-64 and arm64 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	4e0ba84530	lkrg: update to 0.9.4 drop Makefile fixup patch. Use sed instead LIC_FILES_CHKSUM update do to yr update Signed-off-by: Armin Kuster <akuster808@gmail.com> --- V2] Add LIC_FILES_CHKSUM change reason	2022-08-02 13:45:26 -07:00
Armin Kuster	8a90b05e72	swtpm: update to 0.7.3 drop musl patch.Fix another way Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	e73c62adf7	ibmswtpm2: update to 1682 fixes openssl 3.0 support Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	67c42369b3	ibmswtpm2: fix UPSTREAM_CHECK Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	55b5906ddd	ibmtpm2tss: update version format Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	65d88fced2	clamav: update to 0.104.4 drop accepted patch fix_systemd_socket.patch allow clamav-libclamav to have a symlink Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	a3500e01e2	apparmor: update to 3.0.5 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	d8d3824d2d	packagegroup-core-security: add chipsec pkg to grp Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	c48c6e5881	packagegroup-core-security: add krill to pkg grps Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	3ccc0bf68a	krill: update to 0.9.6 add UPGRADE_CHECK vars Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	522c08e98d	ecryptfs-utils: add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armin Kuster	0202c4ad1b	aide: add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-08-02 13:45:26 -07:00
Armpit's Upgrade Helper	18a113ce82	libtpm: upgrade 0.9.3 -> 0.9.5	2022-07-30 14:11:27 -07:00
Armin Kuster	c5c29696fe	tpm2-tcti-uefi: Add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	82379e0700	tpm2-abrmd: add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	3584967332	tpm2-pkcs11: Add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	c997039c17	tpm2-openssl: Add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	dc0d72e51a	tpm2-tools: Add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	293d3ba9ad	tpm2-tss: add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	edcb1537de	tpm2-tss-engine: add UPSTREAM_CHECK_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	770c7f3c05	ibmtpm2tss: fix SRC_URI Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	5a30024396	fail2ban: add UPSTREAM_CHECK vars Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Upgrade Helper	2ca0809282	sssd: upgrade 2.7.1 -> 2.7.3 add UPSTREAM_CHECK_URI	2022-07-30 14:11:27 -07:00
Armin Kuster	8cf673deaa	chipsec: update to 1.8.7 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	01d58e266d	suricata: update to 6.0.5 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	affbb0d267	python3-privacyidea: update to 3.7.2 Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	77910422fa	packagegroup-security-tpm: add libhoth to pkg grp Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
John Edward Broadbent	71199365ff	meta-security: Add recipe for libhoth Libhoth is usb protocol implementation which is required for hoth class devices Signed-off-by: John Edward Broadbent <jebr@google.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Armin Kuster	ac0a4ea0f8	packagegroup-core-security.bb: add bubblewrap to pkg grp Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-30 14:11:27 -07:00
Alex Kiernan	f4a4c902ed	bubblewrap: Add recipe Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com>	2022-07-30 14:11:27 -07:00
Jeremy A. Puhlman	7ad5f6a9da	python3-privacyidea: add correct path to lib/privacyidea Nothing in getting installed in ${datadir}/lib, it is all going to ${prefix}/lib. setuptools pulls in ${libdir}/* so for the base lib case of ${prefix}/lib the build works. If libdir is something else lib64 for example, its still ending up in ${prefix}/lib and it fails to build. Set value to correct path as it is being installed. Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-05 19:26:50 -04:00
Jeremy A. Puhlman	a0d7194b21	clamav: make install owner match the added user name USERADD_PARAM:${PN}-freshclam = "--system -g ${CLAMAV_GID} --home-dir \ ${localstatedir}/lib/${BPN} \ --no-create-home --shell /sbin/nologin ${PN}" The username added to the passwd file is ${PN}. When ${PN} is multilibized, it no longer matches CLAMAV_UID. Make the two match. Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-05 19:26:50 -04:00
Jose Quaresma	c1c80cf0c0	meta-integrity: kernel-modsign: prevents splitting out debug symbols Starting with [1] kernel modules symbols is being slipped in OE-core and this breaks the kernel modules sign, so disable it. [1] https://git.openembedded.org/openembedded-core/commit/?id=e09a8fa931fe617afc05bd5e00dca5dd3fe386e8 Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>	2022-07-05 19:26:50 -04:00

1 2 3 4 5 ...

1257 Commits