eb02ef549f
aa-unconfied requires the full version of netstat provided by the net-tools package. Without the full version, running aa-unconfined will result in the error: netstat: invalid option -- 'p' Signed-off-by: Adam Duskett <Aduskett@gmail.com> [yann.morin.1998@free.fr: - net-ttols is a runtime depednency - select BB_SHOW_OTHERS - reorder depends ] Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
78 lines
2.4 KiB
Plaintext
78 lines
2.4 KiB
Plaintext
config BR2_PACKAGE_APPARMOR
|
|
bool "apparmor"
|
|
depends on BR2_USE_MMU # fork()
|
|
depends on BR2_INSTALL_LIBSTDCPP
|
|
depends on BR2_TOOLCHAIN_HAS_SYNC_4 # libapparmor
|
|
depends on BR2_TOOLCHAIN_HAS_THREADS # libapparmor
|
|
depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_16 # libapparmor
|
|
select BR2_PACKAGE_LIBAPPARMOR
|
|
help
|
|
AppArmor is an effective and easy-to-use Linux application
|
|
security system. AppArmor proactively protects the operating
|
|
system and applications from external or internal threats,
|
|
even zero-day attacks, by enforcing good behavior and
|
|
preventing even unknown application flaws from being
|
|
exploited.
|
|
|
|
This package builds the parser (which can load profiles).
|
|
|
|
http://wiki.apparmor.net
|
|
|
|
if BR2_PACKAGE_APPARMOR
|
|
|
|
config BR2_PACKAGE_APPARMOR_BINUTILS
|
|
bool "binutils"
|
|
help
|
|
A set of utilities (written in C):
|
|
aa-enabled aa-exec
|
|
|
|
comment "utils need python3"
|
|
depends on !BR2_PACKAGE_PYTHON3
|
|
|
|
config BR2_PACKAGE_APPARMOR_UTILS
|
|
bool "utils"
|
|
depends on BR2_PACKAGE_PYTHON3
|
|
select BR2_PACKAGE_BUSYBOX_SHOW_OTHERS # net-tools
|
|
select BR2_PACKAGE_NET_TOOLS # runtime (aa-unconfined)
|
|
select BR2_PACKAGE_PYTHON3_READLINE
|
|
help
|
|
A set of utilities (written in python):
|
|
aa-audit aa-disable aa-logprof
|
|
aa-autodep aa-easyprof aa-mergeprof
|
|
aa-cleanprof aa-enforce aa-status
|
|
aa-complain aa-genprof aa-unconfined
|
|
|
|
if BR2_PACKAGE_APPARMOR_UTILS
|
|
|
|
comment "utils (extras) need bash and perl, and busybox or gawk"
|
|
depends on !BR2_PACKAGE_BASH || !BR2_PACKAGE_PERL \
|
|
|| !(BR2_PACKAGE_BUSYBOX || BR2_PACKAGE_GAWK)
|
|
|
|
config BR2_PACKAGE_APPARMOR_UTILS_EXTRA
|
|
bool "utils (extras)"
|
|
depends on BR2_PACKAGE_BASH
|
|
depends on BR2_PACKAGE_PERL
|
|
depends on BR2_PACKAGE_BUSYBOX || BR2_PACKAGE_GAWK
|
|
help
|
|
An extra set of utilities (written in a mixture of sh,
|
|
bash, perl, and awk):
|
|
aa-decode (bash + perl)
|
|
aa-notify (perl)
|
|
aa-remove-unknown (sh + awk)
|
|
|
|
endif # BR2_PACKAGE_APPARMOR_UTILS
|
|
|
|
config BR2_PACKAGE_APPARMOR_PROFILES
|
|
bool "profiles"
|
|
help
|
|
Installs server-class profiles for a wide range of
|
|
usual programs and daemons.
|
|
|
|
endif # BR2_PACKAGE_APPARMOR
|
|
|
|
comment "apparmor needs a toolchain w/ headers >= 3.16, threads, C++"
|
|
depends on BR2_USE_MMU
|
|
depends on BR2_TOOLCHAIN_HAS_SYNC_4
|
|
depends on !BR2_INSTALL_LIBSTDCPP || !BR2_TOOLCHAIN_HAS_THREADS \
|
|
|| !BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_16
|