1*4882a593Smuzhiyunconfig BR2_PACKAGE_APPARMOR 2*4882a593Smuzhiyun bool "apparmor" 3*4882a593Smuzhiyun depends on BR2_USE_MMU # fork() 4*4882a593Smuzhiyun depends on BR2_INSTALL_LIBSTDCPP 5*4882a593Smuzhiyun depends on BR2_TOOLCHAIN_HAS_SYNC_4 # libapparmor 6*4882a593Smuzhiyun depends on BR2_TOOLCHAIN_HAS_THREADS # libapparmor 7*4882a593Smuzhiyun depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_16 # libapparmor 8*4882a593Smuzhiyun select BR2_PACKAGE_LIBAPPARMOR 9*4882a593Smuzhiyun help 10*4882a593Smuzhiyun AppArmor is an effective and easy-to-use Linux application 11*4882a593Smuzhiyun security system. AppArmor proactively protects the operating 12*4882a593Smuzhiyun system and applications from external or internal threats, 13*4882a593Smuzhiyun even zero-day attacks, by enforcing good behavior and 14*4882a593Smuzhiyun preventing even unknown application flaws from being 15*4882a593Smuzhiyun exploited. 16*4882a593Smuzhiyun 17*4882a593Smuzhiyun This package builds the parser (which can load profiles). 18*4882a593Smuzhiyun 19*4882a593Smuzhiyun http://wiki.apparmor.net 20*4882a593Smuzhiyun 21*4882a593Smuzhiyunif BR2_PACKAGE_APPARMOR 22*4882a593Smuzhiyun 23*4882a593Smuzhiyunconfig BR2_PACKAGE_APPARMOR_BINUTILS 24*4882a593Smuzhiyun bool "binutils" 25*4882a593Smuzhiyun help 26*4882a593Smuzhiyun A set of utilities (written in C): 27*4882a593Smuzhiyun aa-enabled aa-exec 28*4882a593Smuzhiyun 29*4882a593Smuzhiyuncomment "utils need python3" 30*4882a593Smuzhiyun depends on !BR2_PACKAGE_PYTHON3 31*4882a593Smuzhiyun 32*4882a593Smuzhiyunconfig BR2_PACKAGE_APPARMOR_UTILS 33*4882a593Smuzhiyun bool "utils" 34*4882a593Smuzhiyun depends on BR2_PACKAGE_PYTHON3 35*4882a593Smuzhiyun select BR2_PACKAGE_BUSYBOX_SHOW_OTHERS # net-tools 36*4882a593Smuzhiyun select BR2_PACKAGE_NET_TOOLS # runtime (aa-unconfined) 37*4882a593Smuzhiyun select BR2_PACKAGE_PYTHON3_READLINE 38*4882a593Smuzhiyun help 39*4882a593Smuzhiyun A set of utilities (written in python): 40*4882a593Smuzhiyun aa-audit aa-disable aa-logprof 41*4882a593Smuzhiyun aa-autodep aa-easyprof aa-mergeprof 42*4882a593Smuzhiyun aa-cleanprof aa-enforce aa-status 43*4882a593Smuzhiyun aa-complain aa-genprof aa-unconfined 44*4882a593Smuzhiyun 45*4882a593Smuzhiyunif BR2_PACKAGE_APPARMOR_UTILS 46*4882a593Smuzhiyun 47*4882a593Smuzhiyuncomment "utils (extras) need bash and perl, and busybox or gawk" 48*4882a593Smuzhiyun depends on !BR2_PACKAGE_BASH || !BR2_PACKAGE_PERL \ 49*4882a593Smuzhiyun || !(BR2_PACKAGE_BUSYBOX || BR2_PACKAGE_GAWK) 50*4882a593Smuzhiyun 51*4882a593Smuzhiyunconfig BR2_PACKAGE_APPARMOR_UTILS_EXTRA 52*4882a593Smuzhiyun bool "utils (extras)" 53*4882a593Smuzhiyun depends on BR2_PACKAGE_BASH 54*4882a593Smuzhiyun depends on BR2_PACKAGE_PERL 55*4882a593Smuzhiyun depends on BR2_PACKAGE_BUSYBOX || BR2_PACKAGE_GAWK 56*4882a593Smuzhiyun help 57*4882a593Smuzhiyun An extra set of utilities (written in a mixture of sh, 58*4882a593Smuzhiyun bash, perl, and awk): 59*4882a593Smuzhiyun aa-decode (bash + perl) 60*4882a593Smuzhiyun aa-notify (perl) 61*4882a593Smuzhiyun aa-remove-unknown (sh + awk) 62*4882a593Smuzhiyun 63*4882a593Smuzhiyunendif # BR2_PACKAGE_APPARMOR_UTILS 64*4882a593Smuzhiyun 65*4882a593Smuzhiyunconfig BR2_PACKAGE_APPARMOR_PROFILES 66*4882a593Smuzhiyun bool "profiles" 67*4882a593Smuzhiyun help 68*4882a593Smuzhiyun Installs server-class profiles for a wide range of 69*4882a593Smuzhiyun usual programs and daemons. 70*4882a593Smuzhiyun 71*4882a593Smuzhiyunendif # BR2_PACKAGE_APPARMOR 72*4882a593Smuzhiyun 73*4882a593Smuzhiyuncomment "apparmor needs a toolchain w/ headers >= 3.16, threads, C++" 74*4882a593Smuzhiyun depends on BR2_USE_MMU 75*4882a593Smuzhiyun depends on BR2_TOOLCHAIN_HAS_SYNC_4 76*4882a593Smuzhiyun depends on !BR2_INSTALL_LIBSTDCPP || !BR2_TOOLCHAIN_HAS_THREADS \ 77*4882a593Smuzhiyun || !BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_16 78