Restore support for older yum: no --downloadonly option, so use
yumdownloader.
Also add some a code to handle some Debian quirks - especially default
rpmdb location in user home...
(cherry picked from commit 3fdb67ac2b)
Conflicts:
debian/control
misc/qubes-download-dom0-updates.sh
A file is created in /var/lib/qubes/protected-files. Scripts can grep this file before modifying
known files to be protected and skip any modifications if the file path is within protected-files.
Usage Example:
if ! grep -q "^/etc/hostname$" "${PROTECTED_FILE_LIST}" 2>/dev/null; then
Also cleaned up maintainer scripts removing unneeded systemd status functions and streamlined
the enable/disable systemd unit files functions
systemctl is-enabled always reports "disabled" for them (actually not a
real "disabled", but and error, but exit code is the same). So simply
always disable the unit, it is no-op for already disabled ones.
BTW systemctl preset also do not work for them.
(cherry picked from commit 52d502bce2)
nautilus-actions was orphaned in fc21, so all nautilus context menus have
been re-written as nautilus-python extensions
(cherry picked from commit 6836420c3c)
Conflicts:
debian/control
-----BEGIN PGP SIGNATURE-----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=zO0z
-----END PGP SIGNATURE-----
Merge tag 'hw42_62a0b065' into release2
tag for commit 62a0b065ab
# gpg: Signature made Thu Feb 5 04:31:51 2015 CET using RSA key ID E09C093C
# gpg: Good signature from "HW42 (Qubes Signing Key) <hw42-qubes@ipsumj.de>"
# gpg: WARNING: This key is not certified with a trusted signature!
# gpg: There is no indication that the signature belongs to the owner.
# Primary key fingerprint: FC1A C023 76D0 4C68 341F 406F 8C05 216C E09C 093C
-----BEGIN PGP SIGNATURE-----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=EloY
-----END PGP SIGNATURE-----
Merge tag 'hw42_de9b3b55' into release2
tag for commit de9b3b55a6
# gpg: Signature made Thu Feb 5 04:04:48 2015 CET using RSA key ID E09C093C
# gpg: Good signature from "HW42 (Qubes Signing Key) <hw42-qubes@ipsumj.de>"
# gpg: WARNING: This key is not certified with a trusted signature!
# gpg: There is no indication that the signature belongs to the owner.
# Primary key fingerprint: FC1A C023 76D0 4C68 341F 406F 8C05 216C E09C 093C
Generate user-groups via -U instead of explicit via groupadd. This also
fix the problem that the tinyproxy group were not gererated as
"system"-group.
Also suppress unneeded output of the existence test.
Starting services in the postinst script doesn't make much sense since
the package is normally installed in the template. In addition the start
can fail when executed through a trigger.
/etc/iptables/rules.* are already part of the packet.
The removed code has never done something in debian (since
/etc/iptables/rules.* already exists).
