9cea818727
set DPkg::Chroot-Directory in APT_CONFIG
...
This is so that users calling apt-get install from a hook only need to
have APT_CONFIG=$MMDEBSTRAP_APT_CONFIG set and do not also have to pass
-oDPkg::Chroot-Directory="$1".
This breaks users running apt-get with
DPkg::Options::=--force-script-chrootless or with Dpkg::Pre-Install-Pkgs
from within a hook with APT_CONFIG=$MMDEBSTRAP_APT_CONFIG.
In those situations, DPkg::Chroot-Directory has to be set to the empty
string explicitly with -o to overwrite the APT_CONFIG setting.
Thanks: Helmut Grohne
2023-03-22 09:37:07 +01:00
81d155cac8
release 1.3.5
2023-03-20 06:26:51 +01:00
b3338bd33b
refine warnings and add documentation for using --include with .deb files in unshare mode
2023-03-19 09:04:06 +01:00
19a2ec044a
fix undefined variable in error message
2023-03-19 09:02:43 +01:00
4d44b9dbbe
export MMDEBSTRAP_ARGV0 for hooks
2023-03-19 09:00:46 +01:00
9710ee16a0
release 1.3.4
2023-03-17 22:54:06 +01:00
ff9b76ed19
improve debug and error message wording
2023-03-16 22:18:49 +01:00
Jakub Wilk
a719ffd20a
Fix apt.conf permissions
...
Having world-writable apt.conf may be exploited by locals users to
execute arbitrary code in the context of the user running mmdebstrap.
2023-03-16 21:56:16 +01:00
55cae49ec7
let test_unshare_userns error out itself if necessary
2023-03-16 08:14:39 +01:00
055e1719b9
try unsharing before automatically choosing unshare mode
2023-03-15 17:08:12 +01:00
cc8dab5be8
add non-free-firmware to docs
2023-03-05 10:02:23 +01:00
Jochen Sprickerhof
84ea1e042b
Fail in --mode=unshare when newuidmap is not available
2023-03-03 23:59:19 +01:00
158607b3af
mmdebstrap: improve docs for --keyring
2023-03-02 11:53:43 +01:00
e7f21ce04c
Do not die if reading the number of ext2 blocks failed as that would skip the cleanup action
...
Reported-by: Helmut Grohne <helmut@subdivi.de>
2023-02-23 21:50:55 +01:00
8bdd04fce1
release 1.3.3
2023-02-19 09:36:57 +01:00
f3ab0a3d2d
release 1.3.2
2023-02-16 07:33:11 +01:00
46fc269b54
improve documentation of unshare mode
2023-02-14 22:00:19 +01:00
8d9a94fca5
if /proc is bind-mounted, make it a (recursive) slave mount so that changes to it (like unmounting) do not propagate to the outside
...
Thanks: Helmut Grohne
2023-02-12 14:05:09 +01:00
a23dd36bb6
fix warning to not talk about bind-mounting
2023-02-10 04:00:11 +01:00
8f8f5bd706
relax apt version regex even further to be able to cope with versions like 2.5.3ubuntu0.1
2023-02-10 04:00:10 +01:00
9ebb3d07ac
unify /proc mounting between root and unshare mode and fall back to rbind-mounting
...
This makes unshare mode work on salsaci and debci.
2023-02-10 03:59:33 +01:00
b990a3aa09
run apt with -oDebug:: options for all calls and not only in run_download()
2023-02-01 18:39:26 +01:00
a0133a6393
document maybe-merged-usr hook
2023-01-26 09:28:50 +01:00
7910ca79ac
redirect apt-helper drop-privs output to /dev/null as we are only interested in the exit status and want to avoid spurious error messages from apt
2023-01-26 09:28:35 +01:00
f737cce3f1
Support creating a fakechroot with merged-/usr on an unmerged-/usr system
...
Thanks: Helmut Grohne for finding this issue and help interating this
2023-01-24 09:58:42 +01:00
d554c0b469
de-duplicate FAKECHROOT_CMD_SUBST variable
2023-01-23 15:01:21 +01:00
9cc494f245
release 1.3.1
2023-01-20 07:11:03 +01:00
5ea299f3d2
document the apt variant better
2023-01-20 07:08:55 +01:00
736cb493ea
release 1.3.0
2023-01-16 19:30:13 +01:00
c738e96752
allow empty sources.list entries
2023-01-16 15:19:50 +01:00
860a9048d5
make info message lowercase like the rest
2023-01-16 15:01:30 +01:00
327b75846f
add --skip=check/signed-by
2023-01-16 14:58:23 +01:00
ec58228f71
add more docs that non-empty SUITE will be used to select Essential:yes set
2023-01-16 14:32:42 +01:00
f27ed490d6
Do not split --include values again in run_download and run_install
...
Closes : #1028977
2023-01-16 12:13:21 +01:00
36f691f22b
document that positional arguments can be mixed with non-positional ones and that a double-dash has the expected effect
2023-01-16 12:06:20 +01:00
b0a5c30fb1
to find signed-by value, run gpg on the individual keys to print better error messages in case it fails (gpg doesn't give an indication which file it was unable to read) and print progress bar
2023-01-16 12:06:20 +01:00
ea2b57870b
warn if a hook is named like one but not executable and if a hook is executable but not named like one
2023-01-16 07:55:27 +01:00
0b7188ce32
be more verbose when 'apt-get update' failed
2023-01-16 07:54:27 +01:00
9945e65701
skip running apt-get update if we are very sure that it was already run
2023-01-16 07:43:09 +01:00
5fd96553f5
release 1.2.5
2023-01-04 07:24:50 +01:00
b67d30cb86
mmdebstrap: bump copyright year
2023-01-04 07:24:14 +01:00
d4eb268795
warn if hook directory contains no executable scripts
2023-01-04 07:23:56 +01:00
4595d3df44
release 1.2.4
2022-12-23 10:57:11 +01:00
2b832e0128
add jessie-or-older extract hook
2022-12-23 10:06:28 +01:00
a7b7e16033
move extract hook execution after run_prepare so that fakechroot works in it
2022-12-23 10:06:28 +01:00
eb98dfbaee
apt also needs /var/lib to exist
2022-12-23 10:06:28 +01:00
6c5210a94f
error out early if setup fails and thus the ext2 block reader returns EOF
2022-12-23 10:06:28 +01:00
a6a31e60eb
make sure that the unshared user has read access to the included package files
2022-12-23 10:06:28 +01:00
0dfd9adf2b
make sure absolute package paths start with a slash and are readable files
2022-12-23 10:06:28 +01:00
2fd3d768e8
avoid division by zero in progress computation
2022-12-23 10:06:27 +01:00
