Commit Graph

  • 21bb5627e0 glome: update to tip Luke Granger-Brown 2023-07-25 14:17:54 +00:00
  • a94674c5bc dm-verity-image-initramfs: Allow compressed image types Wurm, Stephan 2023-07-21 08:44:05 +00:00
  • d47553303c meta-integrity: drop ima.cfg in favor of new k-cache Armin Kuster 2023-07-19 20:26:09 -04:00
  • 686c7c0b8a python3-json2html: add new pkg Armin Kuster 2023-07-16 15:03:56 -04:00
  • b713a8e661 python3-json2html: add new pkg Armin Kuster 2023-07-16 15:03:25 -04:00
  • 108ab6d75e python3-yamlpath: Add new pkg Armin Kuster 2023-07-16 15:02:51 -04:00
  • 1ca654ef4f scap-security-guide: enable ptest Armin Kuster 2023-07-07 13:44:28 -04:00
  • ef184ce03a openscap: fix buildpaths issue Kai Kang 2023-06-29 15:25:29 +08:00
  • be8b6b20d6 packagegroup-security-tpm2: add more pkgs Armin Kuster 2023-07-06 16:50:31 -04:00
  • 64b8f9b68e scap-security-guide: refactor patches Armin Kuster 2023-06-23 15:58:40 -04:00
  • 4c787f3258 clamav: update SRC_URI Armin Kuster 2023-07-05 09:17:43 -04:00
  • c3d96a66fe packagegroup: add python3-tpm2-pytss Armin Kuster 2023-07-03 11:10:59 -04:00
  • c56573730f python3-tpm2-pytss: add python tss2 support Armin Kuster 2023-07-03 11:10:25 -04:00
  • 1dd076d3a7 firejail: only allow x86-64 and arm64 to build Armin Kuster 2023-06-30 07:16:18 -04:00
  • e4318a3c5a packagegroup-core-security: only include firejail x86-64 and arch64 Armin Kuster 2023-06-30 07:15:05 -04:00
  • cfe7335568 qemu: move qemu setting to image and out of layer.conf Armin Kuster 2023-06-28 14:13:39 -04:00
  • 4306007fee python3-privacyidea: fixup REDPENDS Armin Kuster 2023-06-26 21:25:06 -04:00
  • 4678955b35 python3-segno: add new package Armin Kuster 2023-06-26 21:25:45 -04:00
  • 0e62092564 python3-flask-script: add package Armin Kuster 2023-06-26 21:29:09 -04:00
  • 3d2533f329 ossec-hids: Fix usermod Armin Kuster 2023-06-26 13:06:17 -04:00
  • 7840dd1b53 bastille: bastille/config should not be world writeable. Armin Kuster 2023-06-26 09:31:15 -04:00
  • 06c240c3c2 tpm2-tss: ignore CVE-2023-22745 Peter Marko 2023-06-30 00:10:20 +02:00
  • 405cca4028 .patch: remove probably unused patches Martin Jansa 2023-06-22 16:52:45 +02:00
  • df8a1eb479 *.patch: fix malformed Upstream-Status and SOB lines Martin Jansa 2023-06-22 16:35:51 +02:00
  • f5bc417f32 dynamic-layers: *.patch: fix malformed and missing Upstream-Status lines Martin Jansa 2023-06-22 16:48:45 +02:00
  • a070c55ac7 meta-tpm: *.patch: fix malformed Upstream-Status lines Martin Jansa 2023-06-22 16:40:55 +02:00
  • 515dd792ba packagegroup-core-security: add os-release Armin Kuster 2023-06-22 12:16:42 -04:00
  • 1fa205aedf openscap: update to 1.3.8 Armin Kuster 2023-06-22 12:13:41 -04:00
  • 6cf7d71885 scap-security-guide: Does not build for musl Armin Kuster 2023-06-22 11:16:38 -04:00
  • 965dee3282 scap-security-guide: add Upstream-Status Armin Kuster 2023-06-22 11:11:52 -04:00
  • d776915199 arpwatch: Fix typo in COMPATIBLE_HOST:libc-musl = "null" Armin Kuster 2023-06-22 11:09:13 -04:00
  • 53c6324c5f scap-security-guide: Add Poky Armin Kuster 2023-06-22 06:51:02 -04:00
  • f1591a1579 dm-verity: add sample systemd separate hash example and doc Paul Gortmaker 2023-06-21 10:13:35 -07:00
  • 521e7b040a dm-verity: hook separate hash into initramfs framework Paul Gortmaker 2023-06-21 10:13:34 -07:00
  • 3b88f75323 dm-verity: add wks.in fragment with dynamic build hash data Paul Gortmaker 2023-06-21 10:13:33 -07:00
  • 4922b3053a dm-verity: add support for hash storage on separate partition Paul Gortmaker 2023-06-21 10:13:32 -07:00
  • 39c69c8b5d dm-verity: save veritysetup args beside runtime environment Paul Gortmaker 2023-06-21 10:13:31 -07:00
  • fc12521b08 dm-verity: restructure the veritysetup arg parsing Paul Gortmaker 2023-06-21 10:13:30 -07:00
  • b6ec838e8f dm-verity: add descriptive strings for "wic list images" Paul Gortmaker 2023-06-21 10:13:29 -07:00
  • 2eb05e11c0 isic: fine tune Upstream-Status Armin Kuster 2023-06-21 19:10:16 -04:00
  • 1459cf9cd5 clamav: drop unused patch Armin Kuster 2023-06-21 19:06:49 -04:00
  • ea97a23986 *.patch: add Upstream-Status to all patches Martin Jansa 2023-06-21 12:42:15 +02:00
  • 2b052a6165 scap-security-guide: bump the number of test that pass Armin Kuster 2023-06-21 10:19:14 -04:00
  • 4dc2b52027 openscap: Update to tip to get OE/Poky support Armin Kuster 2023-06-20 18:39:07 -04:00
  • ca8bd5faf8 meta-security-isafw: drop layer isafw project archived Armin Kuster 2023-06-17 15:20:22 -04:00
  • 97ab23ef64 kas: ci changes do to meta-security-compliance being removed Armin Kuster 2023-06-14 09:15:48 -04:00
  • 6ae25c7673 packagegroup-core-security: add compliance pkg group Armin Kuster 2023-06-14 09:07:19 -04:00
  • c4c7592dcb scap-security-guide: add OE support Armin Kuster 2023-06-13 15:10:36 -04:00
  • 49de76c980 openscap: add support for OpenEmbedded nodistro and Poky Armin Kuster 2023-06-05 11:35:06 -04:00
  • 51a0714862 meta-security-compliance: remove layer Armin Kuster 2023-06-13 11:31:32 -04:00
  • 4bfd29a330 openscap: move to main meta-security layer Armin Kuster 2023-06-13 11:15:31 -04:00
  • 666a0c6ccf lynis: move to main meta-security layer Armin Kuster 2023-06-13 11:01:48 -04:00
  • 994665045a openscap: Drop OE specific recipe Armin Kuster 2023-06-12 16:37:00 -04:00
  • bf47ba7c96 openscap: Fix native build missing depends Armin Kuster 2023-06-13 07:28:28 -04:00
  • 89b200a43c oe-scap: Not maintained nor upstreamed Armin Kuster 2023-06-12 16:27:14 -04:00
  • 54a808a4f9 openscap-daemon: This is now obsolete Armin Kuster 2023-06-12 16:26:07 -04:00
  • c00d101bef complicance/isafw: remove oeqa addpylib Chen Qi 2023-06-11 23:19:12 -07:00
  • abf46b1764 scap-security-guide_git: drop oe version Armin Kuster 2023-06-12 06:54:08 -04:00
  • c696be8b6a scap-security-guide: update to tip Armin Kuster 2023-06-12 06:52:16 -04:00
  • f1b0c8f8d4 scap-security-guide: update to 0.1.67 Armin Kuster 2023-06-07 08:23:37 -04:00
  • 33b885c6ee buck-security: fix missing dependencies to perl modules Samantha Jalabert 2023-06-08 10:57:18 +00:00
  • c50757b2f1 dmverity: Suppress the realpath errors Kevin Hao 2023-06-08 17:59:35 +08:00
  • 440e157819 swtpm: fix parser error when using USERADDEXTENSION="useradd-staticids" Ahmed Abdelfattah 2023-06-08 07:36:47 +03:00
  • d398cc6ea6 dm-verity-img.bbclass: add squashfs images Maciej Borzęcki 2023-02-14 09:08:31 +01:00
  • d13f680eb8 Add EROFS support to dm-verity-img class Josh Harley 2023-02-14 09:08:30 +01:00
  • ef7d781f97 apparmor: fix ownership issues Armin Kuster 2022-06-08 16:38:55 -07:00
  • d164d7c06a tpm2-tss: upgrade to 3.2.2 to fix CVE-2023-22745 Peter Marko 2023-05-08 15:23:34 +02:00
  • 180dac9aec ibmswtpm2: update to 164-2020-192.1 Andrew Geissler 2023-05-30 13:58:31 -04:00
  • 27c309a391 parsec-tool: fix build error Mikko Rapeli 2023-05-30 09:54:38 +03:00
  • e98bb1c567 parsec-service: fix build error Mikko Rapeli 2023-05-30 09:54:37 +03:00
  • e3156758b0 linux-yocto: remove tpm_x86.cfg Mikko Rapeli 2023-05-23 15:14:44 +03:00
  • d30d8989a0 linux-yocto: support tpm and tpm2 on all architectures Mikko Rapeli 2023-05-23 15:14:43 +03:00
  • 5c2379f4bc libhoth_git.bb:SRCREV bump 1622e8a04..d769296220d John Edward Broadbent 2023-05-17 10:27:30 -07:00
  • ea5e2ad930 layer.conf: Insert addpylib declaration Armin Kuster 2023-05-17 13:24:54 -04:00
  • 28d49dc056 samhain: Update to 4.4.10 Armin Kuster 2023-05-16 12:50:35 -04:00
  • ddf301c45c dm-verity: add x86-64 systemd based example instructions Paul Gortmaker 2023-05-10 11:04:42 -04:00
  • 2fbeebc18c dm-verity: document the meta-intel dependency in the systemd example Paul Gortmaker 2023-05-10 11:04:41 -04:00
  • 1cb3f6988a dm-verity: don't make read-only-rootfs sound like a requirement Paul Gortmaker 2023-05-10 11:04:40 -04:00
  • 2c8c86f97e dm-verity: ensure people don't ignore the DISTRO_FEATURES warning Paul Gortmaker 2023-05-10 11:04:39 -04:00
  • a0132f72ca integrity: Rename linux-%.bbappend to linux-yocto%.bbappend Stefan Berger 2023-05-10 10:51:25 -04:00
  • 504f402ac5 integrity: Fix the do_configure function Stefan Berger 2023-05-10 10:51:24 -04:00
  • 5dff4e47af ima: Drop kernel config option CONFIG_SQUASHFS_XATTR=y from ima.cfg Stefan Berger 2023-05-10 10:51:23 -04:00
  • 25dc18d696 linux: overlayfs: Drop kernel patch resolving a file change notification issue Stefan Berger 2023-05-10 10:51:22 -04:00
  • d7db0a3bd1 meta-parsec/layer.conf: Insert addpylib declaration mickledore Peter Hoyes 2023-04-27 16:01:40 +01:00
  • a4562b1912 Revert "meta-parsec/layer.conf: Insert addpylib declaration" langdale Armin Kuster 2023-05-09 07:04:00 -04:00
  • 0549f046d3 packagegroup-security-tpm2: restore pkgs removed earlier Armin Kuster 2023-05-04 17:03:23 -04:00
  • ffd9eb59c7 meta-parsec/layer.conf: Insert addpylib declaration Peter Hoyes 2023-04-27 16:01:40 +01:00
  • 8a7112d37b packagegroup-security-tpm2: restore pkgs removed earlier Armin Kuster 2023-05-04 17:03:23 -04:00
  • b2f03c574c meta-parsec/layer.conf: Insert addpylib declaration Peter Hoyes 2023-04-27 16:01:40 +01:00
  • a10bcdcf6e tpm2-tss: drop vendor from PACKAGECONFIG Armin Kuster 2023-05-03 17:13:36 -04:00
  • 2ba18812e9 openembedded-release: drop as os-release does this now Armin Kuster 2023-05-03 16:04:05 -04:00
  • afe212060a os-release.bbappend: drop now CPE_NAME is in core Armin Kuster 2023-05-03 16:01:46 -04:00
  • a1aadafc7f lynis: Add decoding OE and Poky Armin Kuster 2023-05-03 08:05:07 -04:00
  • 10a2c9505c libmhash: fix multilib header conflict - mutils/mhash_config.h Adrian Zaharia 2023-03-15 16:30:05 +02:00
  • 5173c71cb4 integrity-image-minimal: adapt QEMU cmdline to new changes Armin Kuster 2023-05-01 11:55:34 -04:00
  • b3c7a20e1b oeqa: fix hash test to match new changes Armin Kuster 2023-05-01 11:21:15 -04:00
  • 9de807705b ima-evm-utils: Update ima-evm-utils to v1.5 and add a patch Stefan Berger 2023-04-28 08:23:16 -04:00
  • 319522e00d linux: overlayfs: Add kernel patch resolving a file change notification issue Stefan Berger 2023-04-28 08:23:15 -04:00
  • b9abf0e09b integrity: Update the README for IMA support Stefan Berger 2023-04-28 08:23:14 -04:00
  • 76f1f539a6 ima: Sign all executables and the ima-policy in the root filesystem Stefan Berger 2023-04-28 08:23:13 -04:00