aboutsummaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)Author
2019-06-26ima-evm-utils: update to tipArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-26test-image: add a few more packages to imageArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-26test-image: add packagegroup-core-security-ptestArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-26packagegroup-core-security: cleanup and remove ptestArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-26runtime: clamav test cleanupArmin Kuster
mirror test is independant of download Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-26security-test-image: add a testing imageArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-26layers: set warrior onlyArmin Kuster
remove TEST_SUITES from main layer.conf Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-26linux-bbappends: simplifyArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-10python3-scapy: solved the conflict with python-scapyZang Ruochen
-Rename the following file to resolve the conflict with python-scapy: Rename /usr/bin/UTscapy to /usr/bin/UTscapy3 Rename /usr/bin/scapy to /usr/bin/scapy3 Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-10python-scapy: solved the conflict with python3-scapyZang Ruochen
-Rename the following file to resolve the conflict with python3-scapy: Rename /usr/bin/UTscapy to /usr/bin/UTscapy2 Rename /usr/bin/scapy to /usr/bin/scapy2 Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-10python-scapy: Remove redundant sed operationsZang Ruochen
-Remove redundant sed operations. Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-06-10bastille: solved the conflict with perl-module-text-wrap and base-filesZang Ruochen
-Remove the link to perl5 to resolve the conflict with perl-module-text-wrap. -Remove the operation on /var/lock to resolve the conflict with base-files. Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28samhain: add rconflict for client and server modeChangqing Li
Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28image: add image for testingArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28runtime qa: moderize ima testArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28initramfs: clean up to pull in packages.Armin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28data: remove policiesArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28policy: add ima appraise all policyArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28ima_policy_simple: add another sample policyArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28ima-policy-hashed: add new recipeArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28base-files: add appending to automount securityfsArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28linux: update bbappendArmin Kuster
remove untested code Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28ima.cfg: update to 5.0 kernelArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28ima-evm-utils: cleanup and update to tipArmin Kuster
update to tip backported patches to fix build issues. fix native support Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28README: updateArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28layer.conf: add LAYERSERIES_COMPATArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-28meta-integrity: port over from meta-intel-iot-securityArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-21python3-fail2ban: Fix build error of xrange.leimaohui
NameError: name 'xrange' is not defined Signed-off-by: Lei Maohui <leimaohui@cn.fujitsu.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-21checksec: add runtime testArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-21keyutils: fix library install pathArmin Kuster
[v2] fix multilib support Als add native support Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-21checksec: update to 1.11.1Armin Kuster
* checksec.sh: Updated to 1.11.1 * checksec.sh: resolved issues with readelf * checksec.sh: Added docker images for testing * checksec.sh: Added armhf and aarch64 libc locations * checksec.sh: Replace FS_COUNT with fgrep * checksec.sh: Fixed symbols count in csv * checksec.sh: Fixed RW-RPATH and RW-RUNPATH * checksec.sh: Added stack canaries generated by intel compiler * checksec.sh: Mute stat errors for non-existent directories * checksec.sh: Removed invalid json structures and duplicate kernel checks * checksec.sh: fixed spaces in -d option * checksec.sh: Added stack-protector-string check * checksec.sh: Add arm64 specific kernel checks * checksec.sh: Add REFCOUNT_FULL to kernel tests * checksec.sh: Remove OSX support Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-12smack: kernel fragment updateArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-12oe-selftest: add running cve checkerArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-12apparmor: fetch from gitAlexander Kanavin
Tarballs from archive.ubuntu.com can and do disappear (similar to archive.debian.org). Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-09libseccomp: update to 2.4.1Armin Kuster
bug fix release. Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-09libldb: add earlier versionArmin Kuster
This version does not have a dependacy on samba Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-09samhain: add more tests and fix ret checksArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-09smack-test: add smack tests from meta-intel-iot-securityArmin Kuster
ported over smack tests Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-09smack: move patch to smack dirArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-09apparmor: add a few more runtimeArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-09apparmor: fix fragment for 5.0 kernelArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-01meta-tpm/README: updateYi Zhao
Add more description Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-05-01meta-tpm/conf/layer.conf: update layer dependenciesYi Zhao
Add openembedded-layer to layer dependencies. Fix the following build errors: ERROR: Required build target 'tpm2-pkcs11' has no buildable providers. Missing or unbuildable dependency chain was: ['tpm2-pkcs11', 'dstat'] ERROR: Required build target 'cryptsetup-tpm-incubator' has no buildable providers. Missing or unbuildable dependency chain was: ['cryptsetup-tpm-incubator', 'libdevmapper'] ERROR: Required build target 'tpm2-totp' has no buildable providers. Missing or unbuildable dependency chain was: ['tpm2-totp', 'qrencode'] Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-04-14clamav-native: fix new build issueArmin Kuster
re-arch the reciped to build properly. Fixed /var/lib/clamav dir issue Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-04-14clamav: add clamav-cvd package for cvd dbArmin Kuster
Add native package to support creating a mirror of the clamav cvd and supply it in a new package. Provide a INSTALL_CLAMAV_CVD flag to bypass this creation Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-04-13clamav: runtime fix local routingArmin Kuster
This addes the localhost to resolve.conf to fix: ERROR: Can't get information about database.clamav.net: Temporary failure in name resolution ERROR: Can't download main.cvd from database.clamav.net Giving up on database.clamav.net... Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-04-13libldb: add waf-cross-answeresArmin Kuster
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-04-13clamav: fix llvm reference versionArmin Kuster
llvm8.0 does not exist. dropped the version part. Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-04-13clamav runtime: add resolve.conf supportArmin Kuster
and ping test too Signed-off-by: Armin Kuster <akuster808@gmail.com>
2019-04-07libmspack: update to 0.10.1Armin Kuster
For details see: https://github.com/kyz/libmspack/blob/master/libmspack/ChangeLog change compression to match that now being used from source Signed-off-by: Armin Kuster <akuster808@gmail.com>
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-22 11:30:46 +0000