Qubes/core-agent-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
2,270 Commits 1 Branch 0 Tags 34 MiB
e29a678c5d
Commit Graph

2270 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Marek Marczykowski-Górecki
9b9ebe81d0
Merge remote-tracking branch 'origin/pr/38' 
* origin/pr/38:
  disable leaking TCP timestamps by default

Fixes QubesOS/qubes-issues#1344
 2015-10-24 20:53:56 +02:00
Marek Marczykowski-Górecki
116e337323
Merge remote-tracking branch 'origin/pr/37' 
* origin/pr/37:
  archlinux: readd lines removed by error during merge
  archlinux: readd notification-daemon as a dependency
  archlinux: force running scripts with python2 even when /usr/bin/env is used
  archlinux: update packaging and install script to use systemd DROPINs
 2015-10-24 20:47:43 +02:00
Marek Marczykowski-Górecki
97a3793345
qrexec: implement buffered write to a child stdin 
Implement one of TODOs left in the code. Without this buffering, it may
happen that qrexec-agent will hang waiting on write(2) to the child
process, while that child will do the same (try to write something to
the qrexec-agent), without reading its stdin. This would end up in a
deadlock.

Fixes QubesOS/qubes-issues#1347
 2015-10-24 20:35:36 +02:00
erihe251
de293f12d5 Update qubes.sudoers 2015-10-19 22:34:34 +02:00
erihe251
0f410ed2de Small language fixes 2015-10-19 21:52:41 +02:00
Patrick Schleizer
ba8337658e
disable leaking TCP timestamps by default 
https://github.com/QubesOS/qubes-issues/issues/1344
 2015-10-19 14:03:57 +00:00
Olivier MEDOC
2d4b86c020 archlinux: readd lines removed by error during merge 2015-10-18 11:11:45 +02:00
Olivier MEDOC
fcee020cf5 Merge branch 'master' of https://github.com/marmarek/qubes-core-agent-linux 
Conflicts:
	archlinux/PKGBUILD.install
 2015-10-18 10:56:18 +02:00
Olivier MEDOC
ead0b32a87 archlinux: readd notification-daemon as a dependency 2015-10-17 10:16:56 +02:00
Olivier MEDOC
705142e8a8 archlinux: force running scripts with python2 even when /usr/bin/env is used 2015-10-17 10:15:54 +02:00
Olivier MEDOC
9954cd82f1 archlinux: update packaging and install script to use systemd DROPINs 2015-10-16 14:34:15 +02:00
Patrick Schleizer
f063b4a90f
Renamed qubes-mount-home to qubes-mount-dirs. 
Renamed qubes-mount-home service and mount-home.sh script to qubes-mount-dirs service and mount-dirs.sh.
Because mount-home.sh also processed /rw/usrlocal.
preparation to fix the following issues:
- upstream bind-directories functionality to Qubes - https://phabricator.whonix.org/T414
- Bind mount /rw/usrlocal -> /usr/local instead of symlink - https://github.com/QubesOS/qubes-issues/issues/1150
- /bin/sync hangs forever in whonix-ws-dvm - https://github.com/QubesOS/qubes-issues/issues/1328
 2015-10-15 20:57:43 +00:00
Patrick Schleizer
2eb0ed2be1
removed trailing spaces 2015-10-15 04:34:55 +02:00
Marek Marczykowski-Górecki
ce443b2e18
network: forward TCP DNS queries 
Fixes QubesOS/qubes-issues#1325
 2015-10-12 01:28:05 +02:00
Marek Marczykowski-Górecki
d3bf3e0978
version 3.1.2 2015-10-11 03:00:00 +02:00
Marek Marczykowski-Górecki
801c5c62f1
dom0-updates: fix hostname in error message 2015-10-11 01:47:03 +02:00
Marek Marczykowski-Górecki
520178d5dc
dom0-updates: check "yum check-update" exit code, not only its output 
QubesOS/qubes-issues#1168
 2015-10-10 22:02:16 +02:00
Marek Marczykowski-Górecki
397f6fdc52
dom0-updates: Fix showing package list when --check-only option was used 
Fixes QubesOS/qubes-issues#1294
 2015-10-10 22:02:12 +02:00
Marek Marczykowski-Górecki
afb70cf040
Add missing R: dconf to hide nm-applet when not used 
Without dconf, gsettings uses "memory" backend which isn't saved
anywhere and isn't shared across applications. This makes gsettings
pretty useless.

Fixes QubesOS/qubes-issues#1299
 2015-10-10 16:23:47 +02:00
Marek Marczykowski-Górecki
7e321ba63c
Use 'type' instead of 'which' to prevent unnecessary dependency 
QubesOS/qubes-issues#1299
 2015-10-10 16:23:46 +02:00
Marek Marczykowski-Górecki
13fb6e2fc3
sysvinit: load random seed from dom0 provided data 
QubesOS/qubes-issues#1311
 2015-10-10 16:23:46 +02:00
Marek Marczykowski-Górecki
7963fb91c7
systemd: actually enable qubes-random-seed service 
QubesOS/qubes-issues#1311
 2015-10-10 16:23:46 +02:00
HW42
05292c0ac5
reload qubes-random-seed when restoring DispVM 2015-10-10 00:45:48 +02:00
HW42
0ffa746678
qubes-random-seed: feed kernel rng with randomness from dom0 2015-10-10 00:45:44 +02:00
Patrick Schleizer
9664c97e55 minor 2015-10-06 17:13:52 +00:00
Marek Marczykowski-Górecki
580d21acdc
network: fix 'qubes-uplink-eth0' NetworkManager connection (#1280) 
According to the specification[1], the setting name is 'addresses', not
'address'.  The later apparently worked on some NetworkManager versions,
but for example not on the one in Debian wheezy. Also fix value
format (IP;netmask;gateway).

[1] htts://developer.gnome.org/NetworkManager/unstable/ref-settings.html

Fixes QubesOS/qubes-issues#1280
 2015-10-06 15:29:30 +02:00
Marek Marczykowski-Górecki
6c4831339c
network: use drop-ins for NetworkManager configuration (#1176) 
Do not modify main /etc/NetworkManager/NetworkManager.conf as it would
cause conflicts during updates. Use
/etc/NetworkManager/conf.d/30-qubes.conf instead.
Also remove some dead code for dynamically generated parts (no longer
required to "blacklist" eth0 in VMs - we have proper connection
generated for it). It was commented out for some time already

Fixes QubesOS/qubes-issues#1176
 2015-10-06 15:15:26 +02:00
Marek Marczykowski-Górecki
f2222a9b53
Cleanup R3.0->R3.1 transitional package 
QubesOS/qubes-issues#1276
 2015-10-05 19:06:21 +02:00
Marek Marczykowski-Górecki
a1f696fc07
updates-proxy: Disable 'Via: tinyproxy' header 
Fixes QubesOS/qubes-issues#1187
 2015-10-05 06:24:30 +02:00
Marek Marczykowski-Górecki
2bdbf37ef9
Run 'ldconfig' to update /usr/local/lib* cache, if applicable 
Fixes QubesOS/qubes-issues#1255
 2015-10-05 06:13:49 +02:00
Marek Marczykowski-Górecki
03f6ddc41a
Adjust progress message on file move operation 
Fixes QubesOS/qubes-issues#1269
 2015-10-05 06:02:37 +02:00
Marek Marczykowski-Górecki
8e497bffc0
Merge branch 'qubes-iptables' 
Conflicts:
	debian/control
	rpm_spec/core-vm.spec

QubesOS/qubes-issues#1067
 2015-10-05 01:47:01 +02:00
Marek Marczykowski-Górecki
2a39adfe0f
Enlarge /tmp and /dev/shm 
Initial size of those tmpfs-mounted directories is calculated as 50% of
RAM at VM startup time. Which happen to be quite small number, like
150M. Having such small /tmp and/or /dev/shm apparently isn't enough for
some applications like Google chrome. So set the size statically at 1GB,
which would be the case for baremetal system with 2GB of RAM.

Fixes QubesOS/qubes-issues#1003
 2015-10-04 23:07:10 +02:00
Marek Marczykowski-Górecki
ff40be9c99
version 3.1.1 2015-09-29 16:55:35 +02:00
Marek Marczykowski-Górecki
4950e3e791
Update repository definition for r3.1 
'master' branch points at next major release.
 2015-09-29 16:54:59 +02:00
Marek Marczykowski-Górecki
47a9940a8e
version 3.1.0 2015-09-29 16:39:55 +02:00
Marek Marczykowski-Górecki
0695a18020
Merge remote-tracking branch 'origin/pr/32' 
* origin/pr/32:
  fix typo
 2015-09-28 12:58:30 +02:00
Marek Marczykowski-Górecki
ca35c7ec70
Merge remote-tracking branch 'origin/pr/31' 
* origin/pr/31:
  Fixed /etc/pam.d/su.qubes. (Moved line 'auth sufficient pam_permit.so' up. May not be low '@include' lines.)
  - Prevent 'su -' from asking for password in Debian [based] templates. Thanks to @unman and @marmarek for suggesting the fix! Fixes https://github.com/QubesOS/qubes-issues/issues/1128. - Changed 'ifeq (1,${DEBIANBUILD})' to 'ifeq ($(shell lsb_release -is), Debian)' to make the build work outside of Qubes Builder as well.

Conflicts:
	debian/control
 2015-09-28 12:58:08 +02:00
Marek Marczykowski-Górecki
4342dc5c66
Merge remote-tracking branch 'origin/pr/30' 
* origin/pr/30:
  added missing dependency xserver-xorg-dev
 2015-09-28 12:57:13 +02:00
Marek Marczykowski-Górecki
653664cc15
Merge remote-tracking branch 'origin/pr/29' 
* origin/pr/29:
  fixed 'Debian 8 apt.config.d misconfiguration'
 2015-09-28 12:48:11 +02:00
Marek Marczykowski-Górecki
c615afb88f
Merge remote-tracking branch 'origin/pr/28' 
* origin/pr/28:
  qubes-rpc: fix icon selection using pyxdg and support SVG icons
  qubes-rpc: fix broken temporary file deletion in qubes.GetImageRGBA

Conflicts:
	qubes-rpc/qubes.GetImageRGBA
	rpm_spec/core-vm.spec
 2015-09-28 12:47:49 +02:00
Marek Marczykowski-Górecki
3552bc7e41
rpm: add dbus-python dependency 
This package is required by lots of stuff in Fedora anyway, but this
doesn't mean that we can have broken dependencies.
 2015-09-28 12:22:19 +02:00
Marek Marczykowski-Górecki
34b2e822ec
Merge remote-tracking branch 'origin/pr/27' 
* origin/pr/27:
  added missing dependency python-dbus to 'Depends:'
 2015-09-28 12:20:57 +02:00
Marek Marczykowski-Górecki
abfc8d23e1
Merge remote-tracking branch 'origin/pr/26' 
* origin/pr/26:
  qubes-rpc: fix broken temporary file deletion in qubes.GetImageRGBA
 2015-09-28 12:20:20 +02:00
Marek Marczykowski-Górecki
b10f0cf905
Merge remote-tracking branch 'origin/pr/25' 
* origin/pr/25:
  show error msg if qubes.ReceiveUpdates failed
 2015-09-28 12:09:54 +02:00
Marek Marczykowski-Górecki
54f8bb4169
Merge remote-tracking branch 'origin/pr/23' 
* origin/pr/23:
  Allow passwordless login for user "user" (when using 'sudo xl console') for images being upgraded.
 2015-09-28 12:09:12 +02:00
Marek Marczykowski-Górecki
cae488dd34
Merge remote-tracking branch 'origin/pr/22' 
* origin/pr/22:
  Allow passwordless login for user "user" (when using 'sudo xl console').
 2015-09-28 12:08:39 +02:00
Patrick Schleizer
cf55fa54c9 fix typo 2015-09-20 04:01:57 +00:00
Patrick Schleizer
e18a32d508
Fixed /etc/pam.d/su.qubes. (Moved line 'auth sufficient pam_permit.so' up. May not be low '@include' lines.) 2015-09-13 18:36:18 +00:00
Patrick Schleizer
665453da76
- Prevent 'su -' from asking for password in Debian [based] templates. 
Thanks to @unman and @marmarek for suggesting the fix!
Fixes https://github.com/QubesOS/qubes-issues/issues/1128.
- Changed 'ifeq (1,${DEBIANBUILD})' to 'ifeq ($(shell lsb_release -is), Debian)' to make the build work outside of Qubes Builder as well.
 2015-09-13 17:19:25 +00:00