| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
so user can override trusted keys directory and repositories file.
|
|
it's a warning not an error to have non-existant repository.
bad signature means tampering; but we might want to just ignore
those. this is especially important if we have http repositories
and we are bootstrapping (without network).
|
|
over the ones in config file. also remove the apk_root == NULL
check as this cannot happen anymore. a valid root is always
required.
|
|
it will allow to overwrite files owned by some other packages
to get upgrades right (e.g. when splitting or renaming packages)
|
|
also makes it possibly to upgrade package without adding it to
top-level deps. fixes #69.
|
|
otherwise we can accept unsigned repositories, and install bad
packages.
|
|
should really fix abuild-tar.
|
|
other wise cache_fd points to var/lib/apk and contains the real
installed db causing it to be loaded twice.
|
|
this way we never change cwd, and relative filenames are always
parsed consistently. this also helps filename construction in many
places. this patch also changes '--root' to override location of
all configuration to be in the new root. previously it depended
on the file which one was used.
|
|
|
|
also take precautions in audit code if the db is missing the
checksum.
|
|
and use it for /etc/init.d by default. fixes #99.
|
|
we don't want to do checksumming of existing files unless it's
in a protected directory. also, we keep the original file if it's
*modified*.
|
|
and force checksumming only when unpacking archive. otherwise
it's extra computation for nothing.
|
|
|
|
|
|
use the package 'installed_size' == 0 as a test instead for
dependency only packages.
|
|
this enables virtual packages and files specified from command
line to work on non-harddisk installs.
|
|
can't cancel an index reading or we lose signature checking.
|
|
when failed to load an existing index.
|
|
and do not remove modified configuration files unless --purge is
specified.
|
|
make sure cache is enabled on non-permanent rootfs setups.
some optimizations and fixes too.
|
|
|
|
|
|
- error codes for verification failure types
- fix some fdb corruption on file migration
- combine some dependency parsing code
- fix versioned dependencies
|
|
do not overwrite untracked files.
|
|
- extract everything as .apk-new and overwrite only after data
has been checksummed
- url construction fixes (to work with simple http servers)
- end of gunzip stream fixed
- remove oneshot digesting flag for now as it's usage was broken
|
|
|
|
|
|
|
|
to make sure the scripts have not been altered.
|
|
|
|
|
|
prefer index in the new format as signed .tar.gz.
|
|
speeds up digest calculation on some cases.
|
|
change the index generation to do old index, or the new style index
where package identity is sha1 of control block and it's contained
within an .tar.gz to allow signing in future.
|
|
|
|
|
|
replace the old 'delete' option, with 'index'. the idea is that
one can provide existing index files to take cached meta-data of
the package from (assumes package has not been modified if index is
newer, and package size has not changed).
this way one always gives the list of .apk files to include in
the new index, and the old index is used only as "cache".
|
|
this also convers scripts file to a tar archive.
|
|
was left there unintentionally while debugging stuff.
|
|
snprintf is dog slow. make the blob stuff have some helper functions
so we can use them in code paths that are executed often.
|
|
avoid recalculating hashes, and store the lengths of names, so
we can optimize some operations.
|
|
|
|
some fixes on index reading code too.
|
|
in future we want to checksum on gzip boundary basis, not the
full file.
|
|
We use APK_UPDATE_CACHE apk_flag instead.
|
|
This will update the repository cache upon db_open.
|
|
we need to know if caching is enabled, before the repositories are
added. otherwise the cache is not used properly at db opening time.
|
|
instead of having static md5 implemenation, use the openssl
library for digest functions.
|
