Commit Graph

2255 Commits

Author SHA1 Message Date
Joanna Rutkowska
e6585a85a6 version 1.6.32-dom0 2011-09-26 17:54:50 +02:00
Joanna Rutkowska
59f71f634a dom0: Fix xenstore permissions qubes_netvm_external_ip
We should ensure that the first expression in the permisions list
is nX, where X is the owning domain, and not rX or wX, as otherwise
we would be granting all other VMs read access to the key.

This is explained in more detail here:

http://wiki.xensource.com/xenwiki/XenBus

In practice the perms problem applied only to the qubes_netvm_external_ip key
that is exposed by each NetVM to corresponding Proxy VMs. Before this fix,
the key was readable by any VM in the system, which might not be desired in some
more advanced networking setups, such as with Tor Proxy VM.
2011-09-26 17:24:11 +02:00
Marek Marczykowski
72bc213980 vm/spec: do not use chown in %install - it will not work as unprivileged user 2011-09-25 15:18:48 +02:00
Marek Marczykowski
cf38083126 vm: fc15 yum repo config 2011-09-22 01:16:54 +02:00
Marek Marczykowski
27ca0f878c rpm spec: do not mark files with %dir 2011-09-22 01:16:32 +02:00
Joanna Rutkowska
bbccdd30a0 version 1.6.31-dom0 2011-09-16 17:24:34 +02:00
Rafal Wojtczuk
2950ee7170 Make qubes-receive-updates more defensive (#356) 2011-09-16 17:05:41 +02:00
Joanna Rutkowska
12bef352d0 version 1.6.30-vm 2011-09-16 11:55:01 +02:00
Marek Marczykowski
5885316e17 Merge branch 'master' of ssh://git.qubes-os.org/var/lib/qubes/git/joanna/core 2011-09-16 00:08:09 +02:00
Marek Marczykowski
341a5d76ca vm: route through specific host, not directly interface (#355)
This it to not fill ARP cache with any host that VM connects to.
2011-09-16 00:06:14 +02:00
Joanna Rutkowska
d952fa8187 version 1.6.30-dom0 2011-09-15 14:58:25 +02:00
Joanna Rutkowska
3e0ba5a77b Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core 2011-09-15 14:57:55 +02:00
Marek Marczykowski
5f702e9a8a dom0/clock-sync: fix test type (socket vs file) 2011-09-15 14:54:35 +02:00
Joanna Rutkowska
822fb54d25 version 1.6.29 2011-09-15 14:49:20 +02:00
Marek Marczykowski
9f14be6eed dom0: sync dom0 clock more frequent; start it from init.d script 2011-09-15 14:43:02 +02:00
Marek Marczykowski
633b21bb26 dom0: do not sync rpmdb with UpdateVM after each pkg installation
This doesn't make sense sice at every qvm-dom0-update we begin with sync rpmdb.
Also this allow embedding sync_rpmdb_updatevm.sh into qvm-dom0-update.
2011-09-15 13:37:34 +02:00
Marek Marczykowski
395cf4bc79 vm/qvm-dom0-update: don't check for template updates here
Also use exit code 100 to notify updates existence (the same way as yum
check-update does).
2011-09-15 13:34:14 +02:00
Marek Marczykowski
e4e661ac51 dom0: reduce watching tool to dom0 clock sync only
Do not watch for updates for now, it will be implemented later.
2011-09-15 13:32:06 +02:00
Marek Marczykowski
f95b9578d2 Merge branch 'master' of ssh://git.qubes-os.org/var/lib/qubes/git/joanna/core 2011-09-15 12:40:59 +02:00
Marek Marczykowski
59ab2a0e91 dom0/watch-updates: get rid for pkgcount from dom0 update notify
This is useless information...
2011-09-15 01:09:11 +02:00
Marek Marczykowski
c6b3a13b49 dom0/watch-updates: typo fix (dom0 notify condition) 2011-09-15 01:08:02 +02:00
Joanna Rutkowska
dc5fb45d9c version 1.6.28 2011-09-15 00:48:12 +02:00
Marek Marczykowski
c3456f7615 vm/qvm-dom0-update: output diagnostics to stderr
To not confuse qubes-watch-updates...
2011-09-15 00:19:48 +02:00
Marek Marczykowski
855664e6e5 dom0+vm: use qubes_download_dom0_updates.sh instead of qubes_check_for_updates.sh
Remove code duplication. Implemented required --check-only option to
qubes_download_dom0_updates.sh.
2011-09-15 00:18:56 +02:00
Marek Marczykowski
a46676a14b vm/qvm-dom0-update: fix typo in --clean option parsing 2011-09-15 00:14:13 +02:00
Joanna Rutkowska
cf0b720c41 version 1.6.27-vm 2011-09-14 20:25:39 +02:00
Joanna Rutkowska
0b89cb1ccc vm: fix package cleaning 2011-09-14 20:19:53 +02:00
Marek Marczykowski
a694afbb48 vm: clean also downloaded packages on qvm-dom0-update --clean 2011-09-14 20:11:23 +02:00
Joanna Rutkowska
0044064037 version 1.6.26 2011-09-14 19:33:57 +02:00
Joanna Rutkowska
2de02b7a6c vm: update symlinks in Nautilus Scripts menu
This is important for older templates that got upgraded to new core packages,
which renamed some of the tools by removing the '2' suffix.
2011-09-14 19:32:47 +02:00
Marek Marczykowski
3dd6d654ea dom0/qvm-dom0-update: Check if running as root at the beginning 2011-09-14 16:44:43 +02:00
Marek Marczykowski
93832b29db Merge branch 'master' of ssh://git.qubes-os.org/var/lib/qubes/git/joanna/core 2011-09-14 16:43:23 +02:00
Marek Marczykowski
cf7bc53cc7 dom0 spec: cleanup old entries from /etc/yum.conf before adding new one
Fix whitespaces in sed.
2011-09-14 00:47:24 +02:00
Marek Marczykowski
558d1ee582 dom+vm: Copy dom0 yum.conf to UpdateVM
At least to use dom0 'exclude' options, not VM one. Especially to not exlude
kernel and xorg updates...
2011-09-14 00:47:13 +02:00
Joanna Rutkowska
322a5e81bd version 1.6.25 2011-09-13 19:23:48 +02:00
Joanna Rutkowska
d5576ce77f Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core 2011-09-13 19:22:16 +02:00
Marek Marczykowski
0ce7336cad dom0: Distinguish 'Halting','Crashed' state from simple 'Halted' (#314) 2011-09-13 18:39:09 +02:00
Marek Marczykowski
dbf8c11ad6 dom0/qvm-backup-restore: Distinguish ProxyVM from NetVM (#345) 2011-09-13 15:50:14 +02:00
Marek Marczykowski
5d6ac01111 dom0/qvm-backup: Don't backup internal VMs (instead of *-dvm) (#352) 2011-09-13 11:30:04 +02:00
Joanna Rutkowska
099e8a47a9 Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core
Conflicts:
	dom0/qvm-tools/qvm-backup-restore
2011-09-13 10:33:42 +02:00
Marek Marczykowski
813b626d27 dom0/qvm-backup: include icon only for AppVM (#345) 2011-09-12 16:40:17 +02:00
Marek Marczykowski
ade25b8c8d dom0/qvm-backup: exclude dom0 from backup 2011-09-12 16:38:33 +02:00
Marek Marczykowski
029e3fc098 dom0/qvm-dom0-update: Filter yum options in dom0
Eg. don't pass --enablerepo to yum install.
2011-09-12 16:35:44 +02:00
Marek Marczykowski
fde8bc35fa dom0/qvm-backup: Support for NetVMs backup (#345) 2011-09-12 15:25:31 +02:00
Marek Marczykowski
02ca39458a vm/dom0 updates: Remove useless PKGCOUNT information from message 2011-09-12 15:08:29 +02:00
Marek Marczykowski
2107191ca9 dom0/qvm-dom0-update: do not use GUI when called from cmdline 2011-09-12 15:05:26 +02:00
Marek Marczykowski
2bbdb93594 dom0/qvm-dom0-update: replace gpk-update-viewer with yum update (#347) 2011-09-12 15:04:27 +02:00
Marek Marczykowski
9395ea239c dom0: qvm-dom0-update --help (#349) 2011-09-12 14:57:38 +02:00
Marek Marczykowski
972ab21d5f dom0: rename qvm-dom0-upgrade tool (#350) 2011-09-12 14:37:52 +02:00
Marek Marczykowski
d57804b6a0 vm: allow clean yum cache for dom0 updates (#346) 2011-09-12 14:36:53 +02:00