mirrors/meta-security
1
0
Fork 0
mirror of https://git.yoctoproject.org/meta-security synced 2026-05-08 17:19:34 +00:00
Code Issues Projects Releases Wiki Activity

Commit Graph

  • 6cf7d71885 scap-security-guide: Does not build for musl Armin Kuster 2023-06-22 11:16:38 -04:00
  • 965dee3282 scap-security-guide: add Upstream-Status Armin Kuster 2023-06-22 11:11:52 -04:00
  • d776915199 arpwatch: Fix typo in COMPATIBLE_HOST:libc-musl = "null" Armin Kuster 2023-06-22 11:09:13 -04:00
  • 53c6324c5f scap-security-guide: Add Poky Armin Kuster 2023-06-22 06:51:02 -04:00
  • f1591a1579 dm-verity: add sample systemd separate hash example and doc Paul Gortmaker 2023-06-21 10:13:35 -07:00
  • 521e7b040a dm-verity: hook separate hash into initramfs framework Paul Gortmaker 2023-06-21 10:13:34 -07:00
  • 3b88f75323 dm-verity: add wks.in fragment with dynamic build hash data Paul Gortmaker 2023-06-21 10:13:33 -07:00
  • 4922b3053a dm-verity: add support for hash storage on separate partition Paul Gortmaker 2023-06-21 10:13:32 -07:00
  • 39c69c8b5d dm-verity: save veritysetup args beside runtime environment Paul Gortmaker 2023-06-21 10:13:31 -07:00
  • fc12521b08 dm-verity: restructure the veritysetup arg parsing Paul Gortmaker 2023-06-21 10:13:30 -07:00
  • b6ec838e8f dm-verity: add descriptive strings for "wic list images" Paul Gortmaker 2023-06-21 10:13:29 -07:00
  • 2eb05e11c0 isic: fine tune Upstream-Status Armin Kuster 2023-06-21 19:10:16 -04:00
  • 1459cf9cd5 clamav: drop unused patch Armin Kuster 2023-06-21 19:06:49 -04:00
  • ea97a23986 *.patch: add Upstream-Status to all patches Martin Jansa 2023-06-21 12:42:15 +02:00
  • 2b052a6165 scap-security-guide: bump the number of test that pass Armin Kuster 2023-06-21 10:19:14 -04:00
  • 4dc2b52027 openscap: Update to tip to get OE/Poky support Armin Kuster 2023-06-20 18:39:07 -04:00
  • ca8bd5faf8 meta-security-isafw: drop layer isafw project archived Armin Kuster 2023-06-17 15:20:22 -04:00
  • 97ab23ef64 kas: ci changes do to meta-security-compliance being removed Armin Kuster 2023-06-14 09:15:48 -04:00
  • 6ae25c7673 packagegroup-core-security: add compliance pkg group Armin Kuster 2023-06-14 09:07:19 -04:00
  • c4c7592dcb scap-security-guide: add OE support Armin Kuster 2023-06-13 15:10:36 -04:00
  • 49de76c980 openscap: add support for OpenEmbedded nodistro and Poky Armin Kuster 2023-06-05 11:35:06 -04:00
  • 51a0714862 meta-security-compliance: remove layer Armin Kuster 2023-06-13 11:31:32 -04:00
  • 4bfd29a330 openscap: move to main meta-security layer Armin Kuster 2023-06-13 11:15:31 -04:00
  • 666a0c6ccf lynis: move to main meta-security layer Armin Kuster 2023-06-13 11:01:48 -04:00
  • 994665045a openscap: Drop OE specific recipe Armin Kuster 2023-06-12 16:37:00 -04:00
  • bf47ba7c96 openscap: Fix native build missing depends Armin Kuster 2023-06-13 07:28:28 -04:00
  • 89b200a43c oe-scap: Not maintained nor upstreamed Armin Kuster 2023-06-12 16:27:14 -04:00
  • 54a808a4f9 openscap-daemon: This is now obsolete Armin Kuster 2023-06-12 16:26:07 -04:00
  • c00d101bef complicance/isafw: remove oeqa addpylib Chen Qi 2023-06-11 23:19:12 -07:00
  • abf46b1764 scap-security-guide_git: drop oe version Armin Kuster 2023-06-12 06:54:08 -04:00
  • c696be8b6a scap-security-guide: update to tip Armin Kuster 2023-06-12 06:52:16 -04:00
  • f1b0c8f8d4 scap-security-guide: update to 0.1.67 Armin Kuster 2023-06-07 08:23:37 -04:00
  • 33b885c6ee buck-security: fix missing dependencies to perl modules Samantha Jalabert 2023-06-08 10:57:18 +00:00
  • c50757b2f1 dmverity: Suppress the realpath errors Kevin Hao 2023-06-08 17:59:35 +08:00
  • 440e157819 swtpm: fix parser error when using USERADDEXTENSION="useradd-staticids" Ahmed Abdelfattah 2023-06-08 07:36:47 +03:00
  • d398cc6ea6 dm-verity-img.bbclass: add squashfs images Maciej Borzęcki 2023-02-14 09:08:31 +01:00
  • d13f680eb8 Add EROFS support to dm-verity-img class Josh Harley 2023-02-14 09:08:30 +01:00
  • ef7d781f97 apparmor: fix ownership issues Armin Kuster 2022-06-08 16:38:55 -07:00
  • d164d7c06a tpm2-tss: upgrade to 3.2.2 to fix CVE-2023-22745 Peter Marko 2023-05-08 15:23:34 +02:00
  • 180dac9aec ibmswtpm2: update to 164-2020-192.1 Andrew Geissler 2023-05-30 13:58:31 -04:00
  • 27c309a391 parsec-tool: fix build error Mikko Rapeli 2023-05-30 09:54:38 +03:00
  • e98bb1c567 parsec-service: fix build error Mikko Rapeli 2023-05-30 09:54:37 +03:00
  • e3156758b0 linux-yocto: remove tpm_x86.cfg Mikko Rapeli 2023-05-23 15:14:44 +03:00
  • d30d8989a0 linux-yocto: support tpm and tpm2 on all architectures Mikko Rapeli 2023-05-23 15:14:43 +03:00
  • 5c2379f4bc libhoth_git.bb:SRCREV bump 1622e8a04..d769296220d John Edward Broadbent 2023-05-17 10:27:30 -07:00
  • ea5e2ad930 layer.conf: Insert addpylib declaration Armin Kuster 2023-05-17 13:24:54 -04:00
  • 28d49dc056 samhain: Update to 4.4.10 Armin Kuster 2023-05-16 12:50:35 -04:00
  • ddf301c45c dm-verity: add x86-64 systemd based example instructions Paul Gortmaker 2023-05-10 11:04:42 -04:00
  • 2fbeebc18c dm-verity: document the meta-intel dependency in the systemd example Paul Gortmaker 2023-05-10 11:04:41 -04:00
  • 1cb3f6988a dm-verity: don't make read-only-rootfs sound like a requirement Paul Gortmaker 2023-05-10 11:04:40 -04:00
  • 2c8c86f97e dm-verity: ensure people don't ignore the DISTRO_FEATURES warning Paul Gortmaker 2023-05-10 11:04:39 -04:00
  • a0132f72ca integrity: Rename linux-%.bbappend to linux-yocto%.bbappend Stefan Berger 2023-05-10 10:51:25 -04:00
  • 504f402ac5 integrity: Fix the do_configure function Stefan Berger 2023-05-10 10:51:24 -04:00
  • 5dff4e47af ima: Drop kernel config option CONFIG_SQUASHFS_XATTR=y from ima.cfg Stefan Berger 2023-05-10 10:51:23 -04:00
  • 25dc18d696 linux: overlayfs: Drop kernel patch resolving a file change notification issue Stefan Berger 2023-05-10 10:51:22 -04:00
  • d7db0a3bd1 meta-parsec/layer.conf: Insert addpylib declaration mickledore Peter Hoyes 2023-04-27 16:01:40 +01:00
  • a4562b1912 Revert "meta-parsec/layer.conf: Insert addpylib declaration" langdale Armin Kuster 2023-05-09 07:04:00 -04:00
  • 0549f046d3 packagegroup-security-tpm2: restore pkgs removed earlier Armin Kuster 2023-05-04 17:03:23 -04:00
  • ffd9eb59c7 meta-parsec/layer.conf: Insert addpylib declaration Peter Hoyes 2023-04-27 16:01:40 +01:00
  • 8a7112d37b packagegroup-security-tpm2: restore pkgs removed earlier Armin Kuster 2023-05-04 17:03:23 -04:00
  • b2f03c574c meta-parsec/layer.conf: Insert addpylib declaration Peter Hoyes 2023-04-27 16:01:40 +01:00
  • a10bcdcf6e tpm2-tss: drop vendor from PACKAGECONFIG Armin Kuster 2023-05-03 17:13:36 -04:00
  • 2ba18812e9 openembedded-release: drop as os-release does this now Armin Kuster 2023-05-03 16:04:05 -04:00
  • afe212060a os-release.bbappend: drop now CPE_NAME is in core Armin Kuster 2023-05-03 16:01:46 -04:00
  • a1aadafc7f lynis: Add decoding OE and Poky Armin Kuster 2023-05-03 08:05:07 -04:00
  • 10a2c9505c libmhash: fix multilib header conflict - mutils/mhash_config.h Adrian Zaharia 2023-03-15 16:30:05 +02:00
  • 5173c71cb4 integrity-image-minimal: adapt QEMU cmdline to new changes Armin Kuster 2023-05-01 11:55:34 -04:00
  • b3c7a20e1b oeqa: fix hash test to match new changes Armin Kuster 2023-05-01 11:21:15 -04:00
  • 9de807705b ima-evm-utils: Update ima-evm-utils to v1.5 and add a patch Stefan Berger 2023-04-28 08:23:16 -04:00
  • 319522e00d linux: overlayfs: Add kernel patch resolving a file change notification issue Stefan Berger 2023-04-28 08:23:15 -04:00
  • b9abf0e09b integrity: Update the README for IMA support Stefan Berger 2023-04-28 08:23:14 -04:00
  • 76f1f539a6 ima: Sign all executables and the ima-policy in the root filesystem Stefan Berger 2023-04-28 08:23:13 -04:00
  • 292b49342c ima: Rename IMA_EVM_POLICY_SYSTEMD to IMA_EVM_POLICY Stefan Berger 2023-04-28 08:23:12 -04:00
  • f4f7624d2e ima: Fix the IMA kernel feature Stefan Berger 2023-04-28 08:23:11 -04:00
  • cb8f26d82a ima: Fix the ima_policy_appraise_all to appraise executables & libraries Stefan Berger 2023-04-28 08:23:10 -04:00
  • 0652c9fd74 ima: Document and replace keys and adapt scripts for EC keys Stefan Berger 2023-04-28 08:23:09 -04:00
  • 3b5fa74e77 maintainers.inc: rename to avoid clashes with oe-core Alexander Kanavin 2023-04-28 13:53:59 +02:00
  • ae23806825 fscryptctl: update to 1.0.1 Armin Kuster 2023-04-26 12:12:10 -04:00
  • e92e4dadde suricata: update to 6.0.11 Armin Kuster 2023-04-26 11:23:01 -04:00
  • a6997dc78f libhtp: update to 0.5.43 Armin Kuster 2023-04-26 10:57:22 -04:00
  • 68c03e6f8e ossec-hids: update to tip of 3.7.0 Armin Kuster 2023-04-26 10:43:38 -04:00
  • 1a37cd7231 libtpm: update to 0.9.6 Armin Kuster 2023-04-26 10:09:01 -04:00
  • bd02283430 swtpm: update to 0.8.0 Armin Kuster 2023-04-26 10:05:44 -04:00
  • 617f0af2dc recipes-tpm: use this for common tpm recipes Armin Kuster 2023-04-26 09:56:38 -04:00
  • 250b67fc6f meta-tpm: rename recipes-tpm to recipes-tpm1 Armin Kuster 2023-04-26 09:55:05 -04:00
  • 04e4cc1121 tpm2-tools: Remove unnecessary and optional dependencies Peter Kjellerstedt 2023-04-24 18:01:11 +02:00
  • d10f6f9ae3 Fix PACKAGECONFIG check in Parsec OEQA tests Anton Antonov 2023-04-12 16:05:52 +01:00
  • ac1b3ecabc Flush caches after OEQA tests Anton Antonov 2023-04-13 11:06:35 +01:00
  • 53c5cc794f Flush caches after OEQA tests Anton Antonov 2023-04-13 11:06:35 +01:00
  • 3b0659d50f Fix PACKAGECONFIG check in Parsec OEQA tests Anton Antonov 2023-04-10 19:33:55 +01:00
  • 9d21e48053 parsec-service: fix SRC_URI hash Armin Kuster 2023-04-09 11:53:50 -04:00
  • 3d6ff465ce parsec-tool: update SRC_URI hash Armin Kuster 2023-04-09 11:26:29 -04:00
  • f0d1f808b7 parsec-service: Update parsec recipes to 1.2.0 and parsec-tool to 0.6.0 Gowtham Suresh Kumar 2023-04-06 18:39:03 +01:00
  • cdd4295689 meta-parsec: Disable RSA-OAEP OEQA tests for Parsec PKCS11 backend Gowtham Suresh Kumar 2023-04-06 18:39:02 +01:00
  • 9d819c1242 libwhisker2-perl: adjust perl-version variable Patrick Williams 2023-04-05 06:37:26 -05:00
  • a149c85ce9 suricata: Missed on crate depends Armin Kuster 2023-04-05 16:41:46 -04:00
  • ffe3d73fad suricata: Fixup to work within the recent crate changes. Armin Kuster 2023-04-05 11:37:20 -04:00
  • 415424a706 krill: forced to inclued fetch hashes. Armin Kuster 2023-04-03 08:44:00 -04:00
  • ab80ee71de checksecurity: update to 2.0.16 Armin Kuster 2023-04-02 15:56:47 -04:00
  • a397a38ed9 tpm2-tss: correct CVE product Peter Marko 2023-03-22 08:18:04 +01:00