Commit Graph

627 Commits

Author SHA1 Message Date
Marek Marczykowski
004e5d9476 vm/file-editor: connect /dev/null as stdin (#657)
If stdin is closed (not connected to /dev/null) first opened file will get fd=0
and will be treated as stdin.
2012-10-04 05:44:19 +02:00
Marek Marczykowski
6345c4570a vm/iptables: block IPv6 traffic
This isn't properly handled by Qubes VMs yet, so block it in all the VMs.
Also restrict access to firewall config.
2012-10-04 05:44:19 +02:00
Marek Marczykowski
3839c15655 vm/yum-proxy: one more regexp fix 2012-10-04 05:44:19 +02:00
Marek Marczykowski
615a6c0098 vm/yum-proxy: filter regexp: add missing ^$ marks, remove unneded .* at the beginning
Reported-by: Igor Bukanov <igor@mir2.org>
2012-10-04 05:44:19 +02:00
Marek Marczykowski
8d69c40a37 vm/systemd: early user-configurable init script 2012-10-04 05:44:19 +02:00
Marek Marczykowski
45590a8190 vm/yum-proxy: allow pkgtags repodata 2012-10-04 05:44:19 +02:00
Joanna Rutkowska
d1ffa58be3 version 1.7.43 2012-08-10 14:45:19 +02:00
Marek Marczykowski
220c84cc61 vm: ignore additional actions in *.desktop files (#631) 2012-08-10 11:08:05 +02:00
Marek Marczykowski
f33fca9d95 vm/updates-proxy: fix regexp (#643) 2012-08-06 14:59:10 +02:00
Marek Marczykowski
32405af775 vm/kernel-placeholder: simplify upgrade 2012-07-30 23:16:05 +02:00
Joanna Rutkowska
ad3ee16d4a version 1.7.42 2012-07-30 16:59:19 +02:00
Marek Marczykowski
077c74782c vm: kernel-placeholder package to inhibit real kernel pkg in VM (#645)
Some packages depends on kernel (ex fuse, pulseaudio), but kernel in VM is
managed by dom0. Any hack like exlude or so on will break some things, so
install empty placeholder package to fulfill dependencies.
2012-07-23 23:17:50 +02:00
Marek Marczykowski
8f49a3d213 Merge remote-tracking branch 'joanna/master' 2012-07-23 22:16:42 +02:00
Marek Marczykowski
aa1b1e86a8 vm/prepare-dvm: wait for Xorg in more deterministic way (#636) 2012-07-22 01:23:45 +02:00
Marek Marczykowski
861b522d5c Merge branch 'master' of git://git.qubes-os.org/joanna/core
on (#635)

Parse config and setup socket before fork.
2012-07-20 23:01:06 +02:00
Joanna Rutkowska
f0ca597814 Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core 2012-07-20 16:45:35 +02:00
Marek Marczykowski
9e72a46e8c dom0/meminfo-writer: fork into background after first info sent to qmemman (#635) 2012-07-20 16:42:12 +02:00
Joanna Rutkowska
c75b5fcabc version 1.7.36 2012-07-16 14:29:31 +02:00
Joanna Rutkowska
499e9cca8d Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core 2012-07-16 14:25:11 +02:00
Joanna Rutkowska
0e49436ef4 version 1.7.35 2012-07-16 14:24:52 +02:00
Marek Marczykowski
c8f3f737f5 Revert "vm/spec: disable pam_systemd globally (#607)" (#626)
This reverts commit 8ec4b6963b71b95bc0cda6dd80d99bf60aa9caec.
This caused regression (#626).

Conflicts:

	rpm_spec/core-vm.spec
2012-07-16 13:36:08 +02:00
Marek Marczykowski
8129032c9e vm: implement qubes.GetAppmenus to reduce code duplication
As one-liner services are now real one-line, just do it.
2012-07-15 02:41:23 +02:00
Marek Marczykowski
55130c0dee vm: simplify qubes.VMShell service
Now additional wrapper not required to skip cmdline argument
2012-07-15 02:41:23 +02:00
Marek Marczykowski
58a12f951c dom0+vm/qrexec-services: pass remote domain via env variable not argument
Most qrexec services doesn't use remote domain name, as policy is enforced
earlier. So pass it in way that will allow use of generic command as qrexec
service.
2012-07-15 02:41:23 +02:00
Joanna Rutkowska
5a00577da5 Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core 2012-07-13 14:51:22 +02:00
Marek Marczykowski
bec4afc919 vm: export SuspendPre and SuspendPost qrexec services (#617)
1. Try to use NetworkManager sleep command instead of shutting it down
2. Move sleep action details (which is VM-specific) to VM
3. Export it as qrexec service(s)
2012-07-13 14:44:11 +02:00
Joanna Rutkowska
786e5a86a8 version 1.7.34 2012-07-13 13:32:29 +02:00
Joanna Rutkowska
332113c745 Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core 2012-07-13 13:25:55 +02:00
Marek Marczykowski
3af500fc80 vm: provide dispvm-dotfiles and dispvm-prerun.sh in rpm package (#620) 2012-07-12 14:22:44 +02:00
Joanna Rutkowska
7285d4f404 version 1.7.33 2012-07-12 13:41:49 +02:00
Marek Marczykowski
6d0cc13c13 vm/system: ensure that DispVM savefile have pagecache populated (#620)
This is done by readahead, so just let it done its work before suspend.
2012-07-12 03:56:09 +02:00
Marek Marczykowski
c336586fae vm/systemd: disable additional useless services (#620)
Most of them relay on direct network acces, which isn't true on Qubes.
2012-07-12 03:56:09 +02:00
Marek Marczykowski
654fb64a74 vm/spec: remove dupplicated commnds, suppress error message 2012-07-12 03:56:09 +02:00
Marek Marczykowski
821d853abb vm/file-editor: load session environment (#620)
Especially set DBUS socket to allow interprocess communication instead of
spawning new instances or timeouts.
2012-07-12 03:56:09 +02:00
Marek Marczykowski
5ee694f4d3 vm/spec: disable pam_systemd only in trigger
The %post part is unnecessary.
2012-07-09 15:54:33 +02:00
Marek Marczykowski
78df05afe1 Merge branch 'master' of ssh://git.qubes-os.org/var/lib/qubes/git/joanna/core 2012-07-09 15:54:14 +02:00
Marek Marczykowski
4d9898aa69 makefile: fix clean target 2012-07-07 02:45:56 +02:00
Joanna Rutkowska
28e12902a0 version 1.7.32 2012-07-06 10:32:27 +02:00
Joanna Rutkowska
625d092b48 Merge branch 'master' of git.qubes-os.org:/var/lib/qubes/git/marmarek/core 2012-07-06 10:20:01 +02:00
Marek Marczykowski
f0cdcdae34 vm: disable D-Bus activation of NetworkManager (#610) 2012-07-05 01:43:32 +02:00
Marek Marczykowski
0cd7a783d4 vm/spec: disable pam_systemd globally (#607)
Actually all /etc/pam.d/ files containing pam_systemd.so are autogenerated by
authconfig, so "removing" pam_systemd.so file as not elegant solution, seems to
be much more realiable.
2012-07-05 01:43:32 +02:00
Marek Marczykowski
7e55f001f5 vm/qubes-update-proxy: update URL whitelist 2012-07-05 01:43:32 +02:00
Joanna Rutkowska
4bb56e55aa version 1.7.31 2012-06-28 12:19:10 +02:00
Marek Marczykowski
733317492e Merge branch 'master' of ssh://git.qubes-os.org/var/lib/qubes/git/joanna/core 2012-06-26 03:44:31 +02:00
Marek Marczykowski
9efee9324f vm/spec: fix enabling NetworkManager SystemD service 2012-06-26 03:43:36 +02:00
Marek Marczykowski
77ccf99b88 vm/spec: fix error messages 2012-06-26 03:43:36 +02:00
Marek Marczykowski
47e49d0fd6 vm/spec: fix enabling of qubes-firewall SysV service 2012-06-26 03:43:36 +02:00
Joanna Rutkowska
95dc878497 version 1.7.30 2012-06-25 23:38:18 +02:00
Marek Marczykowski
6f88dae1be Merge branch 'master' of ssh://git.qubes-os.org/var/lib/qubes/git/joanna/core 2012-06-23 20:18:21 +02:00
Marek Marczykowski
1fdaa847c4 vm: RPC service for NTP time sync (#603) 2012-06-23 00:37:47 +02:00