Go to file

Colin Walters a9c8b1fae1 ex-container: Make /etc/shadow 0400 on import, not post-checkout

Switching to the `_CONSUME` flag revealed an "oh god how did I write that"
bug in the previous patch in https://github.com/projectatomic/rpm-ostree/pull/1046
AKA commit: 334f0b89be271cbe2b9973ebc7eab50f955517e8

The way that actually fixed the bug before was because we were using
hardlink checkouts, and we were operating outside an `rofiles-fuse`
context, we simply directly changed the on-disk object mode.

But with the `_CONSUME` flag we started deleting the files as we write,
meaning that stopped working.

I *initially* wrote a patch to do the same split "prepare/processing/commit"
flow that treecompose and package layering do, but that can't really fix this
bug - we need to do it on import.

So do the chmod on import and drop the postprocessing bits.

Closes: #1067
Approved by: jlebon

2017-10-18 17:07:54 +00:00

.github

Add issue template, move PR template to .github

2017-03-10 16:31:27 +00:00

api-doc

lib: Expose new API around basearch

2017-07-21 16:02:41 +00:00

buildutil

tap-test: create tmpdir in /var/tmp

2017-06-29 16:16:54 +00:00

ci: don't use CentOS Alpha anymore

2017-10-06 00:42:55 +00:00

design

design/package-layering: New file

2014-06-18 08:48:03 -04:00

docs

Rework treecompose kernel processing

2017-09-12 14:26:44 +00:00

libdnf @ 022365553a

libdnf: bump for metadata_expire fix

2017-08-22 19:49:55 +00:00

libglnx @ e627524af9

Update libglnx

2017-10-16 13:22:30 +00:00

man

app: add --download-only option

2017-10-16 17:49:51 +00:00

packaging

Add polkit support

2017-06-19 21:19:42 +00:00

scripts

bwrap: Don't use --unshare-net in nspawn by default

2017-03-10 17:27:56 +00:00

src

ex-container: Make /etc/shadow 0400 on import, not post-checkout

2017-10-18 17:07:54 +00:00

tests

ex-container: Make /etc/shadow 0400 on import, not post-checkout

2017-10-18 17:07:54 +00:00

vagrant

Vagrantfile: specify full path to using_sshfs

2016-12-21 20:00:43 +00:00

.dir-locals.el

.dir-locals.el: Global Emacs style settings

2017-01-12 16:09:16 +00:00

.editorconfig

tree: add vimrc and editorconfig

2017-10-02 14:36:44 +00:00

.gitmodules

submodules: Use new repo for libdnf

2017-02-06 19:13:19 +00:00

.papr.yml

ci: don't use CentOS Alpha anymore

2017-10-06 00:42:55 +00:00

.vimrc

tree: add vimrc and editorconfig

2017-10-02 14:36:44 +00:00

autogen.sh

autogen.sh: tweak program checking logic

2015-09-11 10:24:44 -04:00

configure.ac

Release 2017.9

2017-09-25 15:39:57 +00:00

CONTRIBUTING.md

docs: fix ostree and CONTRIBUTING.md links

2016-07-12 15:46:53 +00:00

COPYING

COPYING: Update to latest LGPLv2+

2014-03-10 16:40:16 -04:00

git.mk

build: Use git.mk, make git status clean

2016-03-10 14:36:44 -05:00

HACKING.md

hacking: make it easier to use a custom tree

2017-09-01 19:58:55 +00:00

LICENSE

Add a LICENSE symlink

2016-04-28 13:09:22 +00:00

Makefile-daemon.am

daemon: Install dbus introspection files

2017-06-23 19:15:42 +00:00

Makefile-decls.am

build: Always recurse build into libdnf/

2017-04-13 16:10:14 +00:00

Makefile-lib-defines.am

lib: Add version macros and version checking function

2017-07-21 20:35:26 +00:00

Makefile-lib.am

lib: Expose new API around basearch

2017-07-21 16:02:41 +00:00

Makefile-libdnf.am

build: Always recurse build into libdnf/

2017-04-13 16:10:14 +00:00

Makefile-libpriv.am

libpriv: Add a helper function to print pkg diff

2017-04-26 14:26:00 +00:00

Makefile-man.am

build: Use git.mk, make git status clean

2016-03-10 14:36:44 -05:00

Makefile-rpm-ostree.am

app: add 'refresh-md' command

2017-10-06 18:20:59 +00:00

Makefile-tests.am

Makefile-tests.am: actually support SKIP_INSTALL

2017-10-02 20:36:07 +00:00

Makefile.am

Makefile.am: add rpm-ostreed stub to GITIGNOREFILES

2017-02-21 14:13:42 +00:00

mkdocs.yml

docs: Start using mkdocs

2016-03-09 11:10:58 -05:00

README.md

README.md: libhif is now called libdnf

2017-02-16 15:40:20 +00:00

TODO

upgrader: Prune pkgcache repo

2016-08-30 19:53:24 +00:00

Vagrantfile

Vagrantfile: specify full path to using_sshfs

2016-12-21 20:00:43 +00:00

README.md

rpm-ostree Overview

rpm-ostree is a hybrid image/package system. It uses OSTree as a base image format, and supports RPM on both the client and server side using libdnf.

For more information, see the online manual: Read The Docs (rpm-ostree)

Features:

Atomic upgrades and rollback for host system updates
A server side tool to consume RPMs and commit them to an OSTree repository
A system daemon to consume OSTree commits as updates

Projects using rpm-ostree

Project Atomic uses rpm-ostree to provide a minimal host for Docker formatted Linux containers. Replicating a base immutable OS, then using Docker for applications.

Manual

For more information, see the online manual: Read The Docs (rpm-ostree)

Languages

C++ 58.8%

Rust 18.6%

Shell 13.6%

C 6.6%

M4 0.8%

Other 1.6%