| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
|
|
|
| |
Starting with python 3.7 ssl.SSLSocket was removed. Simply calling wrap_socket is the proposed fix here.
Starting with python 3.5 ssl.PROTOCOL_TLSv1 was removed, so we switch to PROTOCOL_TLS, which should result in the highest possible TLS connection. Modern OSes do no longer support SSLv2/3 so it is okayish to ignore those.
This should fix #415
|
| |
|
|
|
|
|
| |
We do not need to create files for the different certificat formats, because
all data could and should be recreated from the current certificate files.
|
|
|
|
|
| |
Even verify self signed certificates to recreate the certificate if it is
expired.
|
|
|
|
|
| |
This generator will not generate a new ssl key or ssl cert, but it will
generate a custom format of already existing ssl keys and certs.
|
| |
|
|
|
|
|
|
|
| |
After a CfgCreator wrote a file, it should block until the fam events are
processed. The newly created files might be required by another Cfg plugin
(like CfgPrivateKeyCreator and CfgPublicKeyCreator) and the fam events should
be processed before the other plugin is invoked.
|
|
|
|
| |
This will fix: 'bool' object has no attribute 'lower'
|
|\ |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
| |
| |
| |
| | |
Extra debconf entries, are entries that were seen but that are not specified in
the configuration.
|
| | |
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | | |
If multiple values specified for one package all values are joined
together in a set.
|
| | |
| | |
| | |
| | |
| | | |
This plugins allows the setting of varius flags per package. It should
be used f.e. to specify pinnings for debian packages.
|
| | |
| | |
| | |
| | |
| | | |
The provides packages of a source should be filtered by the Blacklist or
Whitelist tags for the source.
|
| | |
| | |
| | |
| | | |
Some mirror might block the default python urllib User-Agent.
|
| | | |
|
| | | |
|
| | | |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Pyapt is a new source that is using the apt python bindings to parse the
Packages files from debian repositories. Compared to the python implementation
it is faster and more robust. It will use the dependencies of the newest
version of a package from a specific source (because it can use the python
bindings to compare the version numbers).
|
| |/
| |
| |
| |
| |
| |
| | |
The new Reader classes implement different compression methods for the files
parsed by the Packages backends. Each source can specify a default compression
format. The user can configure a compression format per Source and the filename
and extension for the metadata files are generated automatically.
|
|\ \ |
|
| |/
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
We should favour "-trusted" over "-CAfile" because it will skip the system-wide
CAs and ensure that the certificate is relay validated against the specified
CA.
For validation against an intermediate certificate, only an additional
"-partial_chain" is required. With "-untrusted" we previously added an
unstrusted intermediate certificate only and validated the cert against default
system wide installed CAs.
|
|\ \ |
|
| |/
| |
| |
| |
| |
| | |
There are now separate filters for supplementary groups of a managed POSIXUser.
If neither a blacklist or a whitelist for the supplementary groups is set, it
will default to the same lists like the gid filters.
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The DirectoryBacked helper now does not recurse into directories that
contains a .bcfg2-ignore file. This makes it possible to ignore some
directories for most plugins (Bundler, Defaults, Pkgmgr, Properties,
PuppetENC, TemplateHelper, Trigger). You can store for example a python
module used by a TemplateHelper in the same directory, without getting
strange error messages while TemplateHelper is trying to import each
single file of this module.
|
| | |
| | |
| | |
| | | |
This is a no-op client tool to ignore all packages.
|
| | |
| | |
| | |
| | | |
This backend will not add any packages.
|
| | |
| | |
| | |
| | |
| | |
| | | |
The messages of the packages in the packagesite file may be encoded in
any encoding. We only need the dependencies and just ignore the unicode
errors.
|
| | |
| | |
| | |
| | | |
The Bundle do not need to be bound by another plugin.
|
| | | |
|
| | |
| | |
| | |
| | |
| | | |
If the server does not compute the packages as requirement, the client should
not install the recommended packages.
|
| | |
| | |
| | |
| | |
| | |
| | | |
For auto/any packages, currently only auto/any is stored in the
statistics as the new installed version. This patch changes this
behavior, so that the exact version string is saved additionaly.
|
| |/
|/| |
|
| |
| |
| |
| |
| |
| | |
bcfg2-web will fail without setting a valid time zone in newer django versions. This fix initializes the time zone as utc instead of None, to fix most setups without directly breaking functionality.
[reporting]
TIME_ZONE = <valid_tz>
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | | |
django-1.8 deprecated referencing views as strings in the url(), so we
need to import the fallback view and referencing the view function
directly.
|
|/ /
| |
| |
| | |
unicode in py3.
|
| |
| |
| |
| |
| | |
When importing packages we should not pollute the global modules
namespace and always import new modules with their package name.
|
| | |
|
| |
| |
| |
| |
| | |
Don't let the client follow symbolic links when changing the owner of a
path.
|
| | |
|