| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
| |
The prune actions was not run. The fix that does not add multiple prune
actions on multiple Verify runs in 7077358b1 does not set the pruneTrue
flag during the later Verify runs and therefor the prune actions are
ignored. This set the pruneTrue flag if the first Verify run, detected
some entries that should be pruned.
|
|
|
|
|
|
| |
If a directory should be pruned from all unknown files VerifyDirectory
created a new entry each call and the second fails because the
file was already removed.
|
|
|
|
|
|
| |
For auto/any packages, currently only auto/any is stored in the
statistics as the new installed version. This patch changes this
behavior, so that the exact version string is saved additionaly.
|
|
|
|
|
| |
Actions that are executed always, does not set the host statistics
to modified. (One always action would lead to always modified hosts)
|
|
|
|
|
|
|
| |
This is used to first update the apt repositories and than install
all current versions in one bcfg2-run. Also the installation of
software from custom repositories (that are configured on the client
via bcfg2) should be possible on the first run.
|
| |
|
| |
|
|
|
|
|
|
| |
Massive typo.
This reverts commit c51850b13f54d6f46e6c671e5ee1d3f0cacef727.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* Stat the link itself, not its target
* Get SELinux context from the link, not the target
* Don't get ACLs at all; symlinks don't have their own ACLs
The first issue listed wasn't actually a bug, because none of the
information queried from the target by the stat call was actually used
in verification, but it's been fixed for completeness.
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
ACLs on directories
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
| |
Fix another place where a unicode XML string with an encoding
declaration may be read. Cf. 0f8d403d1a86cfbfe8222662dc445e16e8f7eff9
|
|
|
|
|
|
|
| |
This is just a workaround to avoid a traceback; the real fix will
involve making the POSIX tool properly handle ACLs with no user/group
given, which refer to the current user/group of the file they apply
to.
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Added ability to specify initial content for a file that doesn't
exist, to avoid a messy situation where you'd have to probe for file
existence and either use a Path type="file" or Path type="augeas"
depending, and run Bcfg2 twice.
* All commands in an Augeas path are run if *any* of them fail to
verify. Previously, only commands that hadn't been run would be
installed, but that had issues, particularly with the Clear command,
which could pass verification but then be required during the
installation phase anyway.
* Miscellaneous bug fixes.
|
| |
|
| |
|
| |
|
|
|
|
| |
This mimics the behavior for "real" tools
|
| |
|
|
|
|
|
|
| |
When installing an entry with no ACLs specified, but with ACLs on the
file as it exists on the filesystem, the ACL mask was preserved, even
as the ACLs are deleted.
|
|
|
|
| |
Signed-off-by: Sol Jerome <sol.jerome@gmail.com>
|
| |
|
|
|
|
| |
determining if a bundle has been modified
|
|
|
|
|
|
|
|
| |
If you don't supply a mode to the selinux.matchpathcon() function, it
fails to properly look up the context in some circumstances related to
context patterns in the SELinux policy. This change looks up the mode
and supplies it to the function.
(cherry picked from commit 20a2c9a8fb6c6ecbed259b5deccb01c01bf3304f)
|
|
|
|
|
|
|
| |
Previously, when a bundle's contents were updated, all services listed
in the bundle were stopped if the status attribute was set to 'ignore'.
Signed-off-by: Sol Jerome <sol.jerome@gmail.com>
|
|
|
|
| |
Signed-off-by: Sol Jerome <sol.jerome@gmail.com>
|
|
|
|
| |
Signed-off-by: Sol Jerome <sol.jerome@gmail.com>
|
|
|
|
| |
Signed-off-by: Sol Jerome <sol.jerome@gmail.com>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
If the POSIX client tool is run as a non-root user, it is very
likely that the _set_perms() call in _makedirs() will fail because
it cannot set the owner of the newly-created directories. This
causes _makedirs() to return False, which in turn causes
POSIXFile.install() to bail out early.
Applying the reasoning in <https://github.com/Bcfg2/bcfg2/pull/108>
the freebie directories created by _makedirs should have mode and
ownership done on a best-effort basis. If a user needs parent
directories to have a specific ownership and mode, then they should
specify that directory in their configuration.
|
|\ |
|
| |
| |
| |
| |
| | |
Bootstatus is optional and should have the value of status if not specified.
This is handled by get_bootstatus.
|
| | |
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This fixes a crash when the client tries to render the diff of a file
which includes unicode characters. This change assumes that utf-8 is the
default encoding, which looking at the rest of the code appears to be a
safe bet.
Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>
|
|\ \ \
| |/ /
|/| | |
Chkconfig should not set service to "on" on every run level
|