NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ac53042bf2
kumquat-buildroot/package/firejail/Config.in

20 lines
759 B
Plaintext
Raw Normal View History

firejail: new package Firejail Security Sandbox https://firejail.wordpress.com/ Lightweight application sandboxing system using seccomp and kernel namespaces. Signed-off-by: Chris Frederick <cdf123@cdf123.net> [Thomas: - Fix DEVELOPERS entry: use <> around the e-mail address instead of () - firejail builds fine with musl, so only exclude uclibc, which fails to build with EM_ARM undeclared - Update to upstream version 0.9.44.8. - Remove FIREJAIL_MAKE_OPTS, as suggested by Romain Naour. - Pass --enable-busybox-workaround only if Busybox is enabled, as suggested by Romain Naour.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-10-26 19:22:32 +02:00
config BR2_PACKAGE_FIREJAIL
bool "firejail"
depends on BR2_USE_MMU # fork()
depends on BR2_TOOLCHAIN_HAS_THREADS
# uClibc: error: EM_ARM undeclared
depends on !BR2_TOOLCHAIN_USES_UCLIBC
help
Firejail is a SUID program that reduces the risk of security
breaches by restricting the running environment of untrusted
applications using Linux namespaces and seccomp-bpf. It
allows a process and all its descendants to have their own
private view of the globally shared kernel resources, such
as the network stack, process table, mount table.
https://firejail.wordpress.com/
comment "firejail needs a glibc or musl toolchain w/ threads"
depends on BR2_USE_MMU
depends on !BR2_TOOLCHAIN_USES_UCLIBC || !BR2_TOOLCHAIN_HAS_THREADS
Reference in New Issue Copy Permalink