fix: skip edit of files owned by system packages

Skipping the Git system configuration on Whonix weakens the state as it starts depending on the dotfiles, but it is the only way to not break system updates due to Whonix security-misc package owning the same file. Fix: https://github.com/ben-grande/qusal/issues/101
2024-12-13 01:44:34 -05:00 · 2024-10-14 17:05:14 +02:00 · 2024-10-14 17:05:14 +02:00 · 475b81a67f
commit 475b81a67f
parent d5b4190d3e
2 changed files with 9 additions and 1 deletions
--- a/salt/dotfiles
+++ b/salt/dotfiles
@ -1 +1 @@
-Subproject commit f9457092eaeddd4a21419620291a0cf1ab1bd277
+Subproject commit 7659897283297be0ee9e5e41943c05a8a925e688
--- a/salt/sys-git/install-client.sls
+++ b/salt/sys-git/install-client.sls
@ -50,7 +50,15 @@ include:
      - user
      - group

+{% if not salt['file.file_exists']('/usr/share/whonix/marker') -%}
+{#
+  Whonix's security-misc package owns /etc/gitconfig, fallback to Git dotfiles
+  to set this option.
+#}
+
 "{{ slsdotpath }}-install-client-allow-protocol":
  cmd.run:
    - name: git config --system protocol.qrexec.allow always
    - runas: root
+
+{% endif -%}