On Mon, Apr 26, 2021 at 01:45:30PM +0300, Konstantin Aladyshev wrote:
I'm using the OpenBMC system (https://github.com/openbmc/openbmc) and
I've tried to enable AppArmor functionality from the 'meta-security'
To achieve this I've added these strings to my local.conf file:
DISTRO_FEATURES_append = " apparmor"
IMAGE_INSTALL += "apparmor"
The AppArmor functionality was installed to my image, but
unfortunately I've come to this issue:
kernel: AppArmor: AppArmor initialized
kernel: AppArmor: AppArmor Filesystem Enabled
kernel: AppArmor: AppArmor sha1 policy hashing enabled
systemd: systemd 247.3+ running in system mode. (+PAM -AUDIT
-SELINUX -IMA -APPARMOR -SMACK +SYSVINIT -UTMP -LIBCRYPTSETUP -GCRYPT
-GNUTLS -ACL +XZ -LZ4 -ZSTD -SECCOMP +BLKID -ELFUTILS +KMOD -IDN2 -IDN
systemd: Starting AppArmor initialization...
apparmor: Starting AppArmor profiles
apparmor: xargs: invalid option -- 'd'
Busybox implementation of xargs does not support specifying a delimiter.
I suggest you to install the full-featured xargs which is provided by
the findutils recipe.
You probably need to disable xargs Busybox implementation otherwise
there'll be a conflict (you'll know, Yocto won't create the image).