1. 21 Oct, 2020 2 commits
    • Karel Koci's avatar
      Version 67.0.3 · eef34f86
      Karel Koci authored
      * pkgupdate's conf.lua now loads scripts with Full security level
        instead of Local
      * libupdater is now versioned with release version (there is no API
        compatibility between versions)
    • Karel Koci's avatar
      pkgupdate: run all conf.d scripts with Full privileges · 5e7ed7ae
      Karel Koci authored
      Original idea was to limit what scripts placed there can do but in the
      end it makes code of those scripts pretty much ugly as it then requires
      duplicate code and prevents usage of libraries.
      We lost nothing with Full security as Local allows running any arbitrary
      shell code.
  2. 22 Sep, 2020 2 commits
    • Karel Koci's avatar
      libupdater: version library · 6230b6ef
      Karel Koci authored
      We use -release because libupdater is technically binary compatible only
      with same version of binary tools. This means every build requires new
      version of library and vice versa.
    • Karel Koci's avatar
      tests/system: add test for configuration stealing · e2b064a9
      Karel Koci authored
      This adds additional test for configuration stealing. It checks that
      stealing between installed packages works. It also renames original test
      to more reflect that it tests only stealing when package is being
  3. 06 Aug, 2020 2 commits
    • Karel Koci's avatar
      Version 67.0.2 · 97bda434
      Karel Koci authored
      * Warning about cycles for packages providing and at the same time
        conflicting with some other package
      * Configure script now checks if uthash is available
    • Karel Koci's avatar
      lib: Fix invalid warning about cycles · 25c4013e
      Karel Koci authored
      The reason is that Conflicts are included as negative dependencies but
      to allows flow that package can Conflict and at the same time Provide
      specific package (to do effectively replacement) it is implemented as
      negative dependency for any version. Version dependencies are satisfied
      only by packages of exact name, not by provided packages (for obvious
      reasons as Provided packages do not have same versioning scheme).
      Fix is that we pass to planning function version limitation of
      dependency and plan package only if that is fulfilled by candidate
      selected for given group.
  4. 04 Aug, 2020 1 commit
  5. 01 Jul, 2020 2 commits
    • Karel Koci's avatar
      Version · 9aa7af2d
      Karel Koci authored
      This is release to only fix build because of missing submodule.
      * Lunit submodule now points to new Github repository
    • Karel Koci's avatar
      Update URL to Lunit submodule · 69e80be6
      Karel Koci authored
      Original repository seems to be no longer accessible. The webside links
      to github repo now so this is replacement to that repo.
  6. 25 Jun, 2020 1 commit
  7. 24 Jun, 2020 1 commit
  8. 23 Jun, 2020 4 commits
    • Karel Koci's avatar
      src/lib/lua/planner: reinstall package if more than version not match · f850887a
      Karel Koci authored
      This extends list of fields checked for reinstall to not only Version
      but also to Architecture, LinkSignature, Depends, Conflicts, Provides.
      There are two reasons why we want to have these:
      First reason applies on Architecture, Depends, Conflicts and Provides.
      Those trigger update to get package information in sync with repository.
      Updater runs planning against repository so this has no effect but in
      the end if someone forgets to bump package but modifies dependencies for
      example then we reinstall package anyway.
      Second reason to reinstall package applies on LinkSignature and that is
      field inserted with hash generated from dynamic linker information
      collected for package. When this hash changes then link dependencies
      changed and even if version is same we have to reinstall such package as
      it most probably won't work with updated dependencies.
      As a tinny bonus logs now contain info about version or any other field
      if the differ and that way info about the reason to reinstall given
    • Karel Koci's avatar
      Version 67.0 · 236e08ce
      Karel Koci authored
    • Karel Koci's avatar
      tests/c: do not for when using valgrind · dc787b37
      Karel Koci authored
      We are grabing scripts output including stderr and because of that we
      can't trace childs. Instead we make it so most of our code runs without
    • Karel Koci's avatar
      Revert "tests: trace children using valgrind" · 58ab9d4b
      Karel Koci authored
      This reverts commit cd44f638.
      We can't do this as we are checking output of childs in subprocess and
      valgrind taints stderr output with its output.
  9. 22 Jun, 2020 3 commits
    • Karel Koci's avatar
      tests: trace children using valgrind · cd44f638
      Karel Koci authored
    • Karel Koci's avatar
      lib: replace libb64 with openssl · 7381cbdc
      Karel Koci authored
      We have problem with libb64 on ARM (it effectively does not work).
      Updater is already linked against OpenSSL so why not use it for that as
      well. The API for it is not exactly clean so it is wrapped in its own
      file but otherwise it is clean solution as it removes dependency and
      reuses existing one.
    • Karel Koci's avatar
      src/lib/signature: improve signature file read · f0917aec
      Karel Koci authored and Karel Koci's avatar Karel Koci committed
      There can be sunsequent lines although it is not part of standard.
      Accepting those and ignoring them fixes possible problem with invalid
      signature read as size might not match.
  10. 15 Jun, 2020 1 commit
  11. 14 Jun, 2020 2 commits
  12. 12 Jun, 2020 1 commit
  13. 08 Jun, 2020 5 commits
  14. 01 Jun, 2020 1 commit
  15. 31 May, 2020 1 commit
  16. 21 May, 2020 1 commit
    • Karel Koci's avatar
      configure.ac: fix check for busybox when cross compiling · 1048eccd
      Karel Koci authored
      AC_CHECK_FILE works only if cross compilation is not performed. The
      reason is that it tries to check for existence of file on native system.
      We want check if argument is file so implement check doing exactly that
      with plain test.
  17. 30 Apr, 2020 1 commit
    • Karel Koci's avatar
      Remove usign from codebase · cb46c19f
      Karel Koci authored
      This removes all mentions and usage from codebase.
      Usign usage was replaced with openssl in updater now so we no longer
      need usign itself as well as we no longer need to build it or have it in
  18. 26 Apr, 2020 2 commits
  19. 20 Apr, 2020 6 commits
    • Karel Koci's avatar
      gitignore: ignore binaries only in top level · 159375ff
      Karel Koci authored
      This rules was ignoring also src/* directories.
    • Karel Koci's avatar
      tests/lua/updater: Test package verification · fef5a7e6
      Karel Koci authored
    • Karel Koci's avatar
      lib/lua/updater: Split verification to separate function · 2e4362d7
      Karel Koci authored
      This is so we can better test it.
      This also reverts old behavior of checking for SHA256Sum on top of new
    • Karel Koci's avatar
      lib/updater: print warning for packages that were not verified · 89a1bad1
      Karel Koci authored
      This servers two purposes. It warns repository creators that their
      repository is not potentially correctly setup and it also warns
      updater's developers about faults in verification. It is not required
      that all packages should be essentially verified but it is best advised
      to be.
    • Karel Koci's avatar
      lib/updater: fix invalid hash check for SHA256 · cf860b7b
      Karel Koci authored
      This is major problem as packages were not verified thanks to this
    • Karel Koci's avatar
      lib/download: remove download retries · c863f6fd
      Karel Koci authored
      Download retries are flawed because if some data is downloaded and later
      download is started again the new data is appended to old data. This
      means that result is invalid even if new download was successful.
      One option would be to truncate output for retry but output can be not
      only file but effectively any buffer. I am not aware of easy way to
      truncate FILE. We can truncate real file but it seems that there is no
      way to truncate memory objects such as created using fopencookie.
      It is also questionable if retries were even usable for anything. Curl
      on its own tries to reestablish connection and letting it on Curl is in
      general even cleaner than doing some hacks.
  20. 17 Apr, 2020 1 commit
    • Karel Koci's avatar
      lib: fix invalid error for uri_content · 63154566
      Karel Koci authored
      It is not possible to universally call :path() on URIs as not all of
      them are of file scheme. Instead :uri() should have been called here to
      get URI representation.
      This also not essentially downloading URI. It just receives it no matter
      what kind of URI it is so message about download is miss leading
      (although in most cases valid).