meta-security/classes/check_security.bbclass at fd295b2c28219a0cd53087e7ff96edecd9b23d9d - meta-security - BenGit

mirrors/meta-security

mirror of https://git.yoctoproject.org/meta-security synced 2026-01-12 03:10:13 +00:00

Files

mulhern cff02a044c meta-security: Add a new .bbclass for meta-security layer.

Inheriting the class will cause the check_security function to run on the
ROOTFS image. Currently the check_security function just invokes
buck-security-native on the root filesystem of the image.

2013-10-23 21:57:20 -04:00

8 lines

324 B

Plaintext

Raw Blame History

 check_security () {
     ${STAGING_BINDIR_NATIVE}/buck-security -sysroot ${IMAGE_ROOTFS} -log ${T}/log.do_checksecurity.${PID} -disable-checks "checksum,firewall,packages_problematic,services,sshd,usermask" -no-sudo > /dev/null
 }
 EXTRA_IMAGEDEPENDS += "buck-security-native"
 ROOTFS_POSTPROCESS_COMMAND += "check_security;"