Git-Mirrors/qusal
1
0
Fork 0
mirror of https://github.com/ben-grande/qusal.git synced 2024-10-01 02:35:49 -04:00
Code Issues Packages Projects Releases Wiki Activity
fc22726ee8
qusal/salt
History
Ben Grande fc22726ee8
feat: build and sign RPM packages 
Passing files to Dom0 is always dangerous:

- Passing a git repository is dangerous as it can have ignored modified
  files and signature verification will pass.
- Passing an archive is troublesome for updates.
- Passing an RPM package depends on the RPM verification to be correct,
  some times it is not.
- Passing a RPM repository definition is less troublesome for the user,
  as it is a small file to verify the contents and update mechanism is
  via the package manager. Trust in RPM verification is still required.

Many improvements were made to the build scripts:

- requires-program: Single function to check if program is installed;
- spec-get: Sort project names for the usage message;
- spec-get: Only running commands that are necessary;
- spec-get: Fix empty summary when readme has copyright header;
- spec-gen: Fix grep warning of escaped symbol;
- spec-build: Sign RPM and verify signature;
- spec-build: Only lint the first SPEC for faster runtime;
- yumrepo-gen: Generate a local yum repository with signed metadata;
- qubesbuilder-gen: Generate a .qubesbuilder based on tracked projects;
- release: Build, sign and push all RPMs to repository.

Goal is to be able to build with qubes-builderv2 Qubes Executor.

For: https://github.com/ben-grande/qusal/issues/37
2024-06-12 14:44:04 +02:00
..
ansible fix: bump Ansible repository codename 2024-05-29 11:35:37 +02:00
browser fix: add Fedora 40 Firefox desktop file to appmenu 2024-06-09 12:36:39 +02:00
debian fix: remove extraneous package repository updates 2024-03-18 17:51:36 +01:00
debian-minimal fix: remove extraneous package repository updates 2024-03-18 17:51:36 +01:00
debian-xfce feat: build and sign RPM packages 2024-06-12 14:44:04 +02:00
dev fix: remove extraneous package repository updates 2024-03-18 17:51:36 +01:00
docker fix: remove old deb repository list format 2024-05-29 11:34:17 +02:00
dom0 fix: guarantee a fully updated system on bootstrap 2024-06-09 12:55:48 +02:00
dotfiles@dfc548e567 fix: update dotfiles module 2024-06-04 10:59:32 +02:00
electrum feat: add disposable qubes to bitcoin clients 2024-06-04 11:00:06 +02:00
element fix: remove old deb repository list format 2024-05-29 11:34:17 +02:00
fedora fix: remove extraneous package repository updates 2024-03-18 17:51:36 +01:00
fedora-minimal fix: install salt depends in fedora-39-minimal 2024-03-23 22:09:49 +01:00
fedora-xfce feat: build and sign RPM packages 2024-06-12 14:44:04 +02:00
fetcher feat: add manual page reader 2024-05-28 11:00:04 +02:00
kicksecure-minimal fix: enforce https on repository installation 2024-05-16 18:57:59 +02:00
mail doc: nested list indentation 2024-05-14 18:43:07 +02:00
media feat: add manual page reader 2024-05-28 11:00:04 +02:00
mgmt fix: set global prefs for management_dispvm 2024-06-10 19:39:08 +02:00
mirage-builder doc: nested list indentation 2024-05-14 18:43:07 +02:00
opentofu fix: remove old deb repository list format 2024-05-29 11:34:17 +02:00
qubes-builder fix: rpmmacros is unnecessary with split-gpg2 2024-06-12 11:32:43 +02:00
reader fix: add Fedora 40 Firefox desktop file to appmenu 2024-06-09 12:36:39 +02:00
remmina fix: remove extraneous package repository updates 2024-03-18 17:51:36 +01:00
signal fix: remove old deb repository list format 2024-05-29 11:34:17 +02:00
ssh feat: add manual page reader 2024-05-28 11:00:04 +02:00
sys-audio fix: more restrictive Qrexec audio policy 2024-06-07 16:51:43 +02:00
sys-bitcoin fix: remove undesired appmenus from builder qubes 2024-06-04 13:54:48 +02:00
sys-cacher fix: remove duplicated Fedora mirrors 2024-06-10 19:15:14 +02:00
sys-electrs fix: remove undesired appmenus from builder qubes 2024-06-04 13:54:48 +02:00
sys-electrumx fix: remove undesired appmenus from builder qubes 2024-06-04 13:54:48 +02:00
sys-firewall feat: add manual page reader 2024-05-28 11:00:04 +02:00
sys-git fix: correct man-db typo 2024-06-04 19:58:36 +02:00
sys-mirage-firewall doc: nested list indentation 2024-05-14 18:43:07 +02:00
sys-net fix: install libpci by default on sys-net 2024-05-02 19:33:32 +02:00
sys-pgp fix: split-gpg2 fedora clashes with debian agent 2024-05-28 15:04:20 +02:00
sys-pihole fix: guarantee states order dependent on browser 2024-06-09 12:50:53 +02:00
sys-print feat: add manual page reader 2024-05-28 11:00:04 +02:00
sys-rsync feat: add manual page reader 2024-05-28 11:00:04 +02:00
sys-ssh feat: add manual page reader 2024-05-28 11:00:04 +02:00
sys-ssh-agent feat: add manual page reader 2024-05-28 11:00:04 +02:00
sys-syncthing fix: guarantee states order dependent on browser 2024-06-09 12:50:53 +02:00
sys-usb doc: refer to video-companion for sys-usb webcam 2024-06-04 19:59:45 +02:00
sys-wireguard feat: add manual page reader 2024-05-28 11:00:04 +02:00
terraform fix: remove old deb repository list format 2024-05-29 11:34:17 +02:00
usb doc: prefix qubesctl with sudo 2024-02-23 16:55:11 +01:00
utils feat: add Firefox browser from Mozilla repository 2024-05-24 13:53:17 +02:00
vault feat: add manual page reader 2024-05-28 11:00:04 +02:00
video-companion feat: add Qubes Video Companion formula 2024-05-30 16:07:53 +02:00
whonix-gateway fix: remove extraneous package repository updates 2024-03-18 17:51:36 +01:00
whonix-workstation fix: remove extraneous package repository updates 2024-03-18 17:51:36 +01:00