summaryrefslogtreecommitdiffstats
path: root/usr.sbin/syspatch (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Simplify for loops; prompted by a comment from rpe@ajacoutot2016-11-031-10/+7
|
* Be verbose when reverting a patch.ajacoutot2016-11-021-1/+2
| | | | committing now to please espie@
* Simplify.ajacoutot2016-11-011-8/+4
|
* Tap SIGINT while install(1)ing so that we can properly rollback and notajacoutot2016-11-011-31/+38
| | | | be left in an inconsistent state.
* Add an XXX.ajacoutot2016-11-011-1/+2
|
* Only run sp_cleanup() when applying or reverting a patch (needs root).ajacoutot2016-11-011-6/+8
|
* Also remove non matching release rollback kernel.ajacoutot2016-11-011-3/+9
| | | | Temporary unhook the cleanup function during tests.
* Add a cleanup function to remove non matching release content fromajacoutot2016-11-011-3/+19
| | | | | | | /var/syspatch and the rollback kernel if all kernel syspatches have been reverted. While here, make sure _RELINT and _REL are declared properly.
* Simplify fetch_and_verify(), no need for a loop here.ajacoutot2016-11-011-11/+11
|
* Add a few error messages so we know where we fail.ajacoutot2016-11-011-10/+15
| | | | | | | | Regular operation is mostly quiet, i.e: Applying syspatch-60-001_cp.tgz 100% |***********************| 65247 00:03 Move trap after we create the temporary directory so that we can remove it on failure and fix a typo in readonly vars.
* install_patch -> apply_patch to remove confusion with install_kernel andajacoutot2016-11-011-26/+26
| | | | install_file.
* We don't want to run on -stable (i.e. locally built release) but only onajacoutot2016-11-011-5/+7
| | | | | official release. Remove the half cooked rollback patch if we run into an error.
* First compute the variables, then set them readonly. So that we can catchajacoutot2016-09-111-7/+8
| | | | errors (e.g. mktemp(1) failing).
* Indent cleanup.ajacoutot2016-09-111-23/+22
| | | | Fix apply_patches return code while here.
* Drop syspatch_trap, it's simple enough for trap no needing its own function.ajacoutot2016-09-101-10/+8
| | | | Introduce sp_err() which will get used for error messages.
* apply_patches should not take any arguments.ajacoutot2016-09-102-9/+10
| | | | Few tweaks while here.
* Minimal man page.ajacoutot2016-09-071-3/+16
|
* Don't fetch all patches at once but instead fetch+verify+patch one by one.ajacoutot2016-09-071-5/+7
|
* Don't put bsd.mp twice in the GENERIC.MP rollback tarball.ajacoutot2016-09-071-5/+4
|
* syspatch goal is not to act as a package manager but to sync the system to theajacoutot2016-09-072-40/+23
| | | | | | | | corresponding stable. So prevent rollbacking a specific binpatch but instead always rollback the latest one. It's the only way we can know the system is consistent. discussed with halex@ jasper@ robert@
* Drop useless variable and check.ajacoutot2016-09-061-7/+4
|
* Greatly simplify patch type detection and make things more generic.ajacoutot2016-09-061-19/+10
|
* Sort and set readonly global vars.ajacoutot2016-09-061-6/+7
|
* Make sure the file exists before putting it in the rollback tarball.ajacoutot2016-09-051-7/+9
|
* Missing local.ajacoutot2016-09-051-12/+12
| | | | Shorter var name.
* use a for loop for mtree for the two spec filesrobert2016-09-051-4/+5
| | | | | | and add a better comment ok ajacoutot@
* No need to install the /var/syspatch/$REL directory, the binpatch does it for us.ajacoutot2016-09-052-12/+12
| | | | | | Put /var/syspatch into a variable, it's used more than 10 times. prodded by robert@
* Welcome syspatch(8), a binary patch management utility for the base system.ajacoutot2016-09-053-0/+324
This is currently a POC, maybe it will become something, maybe not. Therefore it will not be hooked to the build before we are happy with it. Workflow would be something like: - fetch and verify signed tarballs containing the patched binaries from a mirror - create a rollback tarball of the files we are about to replace - extract and install the patched files *** BIG FAT RED DISCLAIMER *** This is very much WIP, it does *NOT* work, don't bikeshed, don't use it! "get it in" deraadt@
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.