| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
When package is installed from commandline, we should always
install that specific instance of package (never favor repository
version if it has difference identity). Otherwise we might not
always end-up installing the .apk given on command line. The
dependency is now against specific checksum identity (marked
with >< dependency comparison). Fixes #492.
|
|
.. instead of the longer flag combo.
|
|
It's no longer needed or used.
|
|
- implement a hash table for commonly shared fields such as
license, version and architecture
- use macroes to print blobs or pkgname-pkgver strings
- fix some old cruft
|
|
Architecture is now:
- parsed from .PKGINFO
- written to index and installed db
- appended to repository URL when fetching files
|
|
should not be needed anymore.
|
|
Otherwise we end up using wrong uid/gid mappings when doing install
to alternate system root. Fixes #434.
|
|
Seems like recent eglibc requires that you include sys/stat.h
|
|
Take the uid/gid from passwd and group.
|
|
|
|
|
|
Instead of having a null pointer, use a dummy array which just
says the array is empty. This helps in multiple places of the code
which would otherwise need explicitly need to check first if the
array exists. This has been cause of multiple seg.faults in the
past as the array check is easily omitted.
This also removes (or fixes) all existing checks accordingly.
|
|
clean up the triggers properly, in proper order.
|
|
Print more information why installation changeset calculation failed.
Fixes #187.
|
|
openssl BIO does not close the fd unless we explicitly tell it to
do so.
|
|
get list of overlay files from stdin, so those do not get overwritten.
|
|
if the dependencies are empty with only trailing new line, the
parsing was incorrect. fix the new line check.
|
|
accept also pkgfile in addition to pkgname. make also the signature
verification stuff work properly again with non-repository files.
|
|
|
|
this makes the database package entry smaller, and we propbably
get more fields to installed_package later too. this cleans up
the way scripts are stored and is a preparation for supporting
triggers. some parsing for trigger meta-data. ref #45.
|
|
|
|
some hooks to package verification code were missing causing the
verification to not be done (causing pre-script to be not run).
fixes #124, #126.
|
|
it will allow to overwrite files owned by some other packages
to get upgrades right (e.g. when splitting or renaming packages)
|
|
this way we never change cwd, and relative filenames are always
parsed consistently. this also helps filename construction in many
places. this patch also changes '--root' to override location of
all configuration to be in the new root. previously it depended
on the file which one was used.
|
|
and force checksumming only when unpacking archive. otherwise
it's extra computation for nothing.
|
|
this dependency is now inserted automatically by abuild.
|
|
when failed to load an existing index.
|
|
fixes verification of non-repository packages while installing
them. this is final thing needed for full signing support
(fixes #46).
|
|
make sure cache is enabled on non-permanent rootfs setups.
some optimizations and fixes too.
|
|
smaller callback and less cases to check. also reintroduce the
oneshot digest flag, hopefully correct this time.
|
|
to not make hard error of untrusted or missing signatures
|
|
|
|
- error codes for verification failure types
- fix some fdb corruption on file migration
- combine some dependency parsing code
- fix versioned dependencies
|
|
- extract everything as .apk-new and overwrite only after data
has been checksummed
- url construction fixes (to work with simple http servers)
- end of gunzip stream fixed
- remove oneshot digesting flag for now as it's usage was broken
|
|
|
|
|
|
|
|
prefer index in the new format as signed .tar.gz.
|
|
|
|
speeds up digest calculation on some cases.
|
|
|
|
|
|
that got broke during verify implementation.
|
|
an utility to check package signature and integrity.
|
|
in future we might add datahashalg to specify the algorithm used.
|
|
change the index generation to do old index, or the new style index
where package identity is sha1 of control block and it's contained
within an .tar.gz to allow signing in future.
|
|
|
|
|
|
|
|
otherwise we don't get chechksum anymore after the changes to
support partial gzip checksumming.
|
