| #
91cb7cd0 |
| 07-Dec-2020 |
ajacoutot <ajacoutot@openbsd.org> |
When asking to install patches and none are available, return 2.
man page and inputs from schwarze@
ok sthen@
|
| #
735d7ac9 |
| 25-Jul-2020 |
solene <solene@openbsd.org> |
Add a EXIT STATUS section
"no objection" ajacoutot@
|
| #
6205d5a7 |
| 15-Jun-2019 |
ajacoutot <ajacoutot@openbsd.org> |
"If any sets are missing, patches are skipped accordingly."
wording help and ok jmc@
|
| #
a8f86fd3 |
| 22-Aug-2017 |
ajacoutot <ajacoutot@openbsd.org> |
Add support for KARL:
- only extract the according /usr/share/compile/GENERIC{,.MP}
- if a "kernel" patch was properly installed (or rolled back), run
/usr/libexec/reorder_kernel _once_ just before
Add support for KARL:
- only extract the according /usr/share/compile/GENERIC{,.MP}
- if a "kernel" patch was properly installed (or rolled back), run
/usr/libexec/reorder_kernel _once_ just before exiting
- don't backup /bsd anymore, reorder_kernel already does it for us
- drop 2 now unused functions: install_kernel() and sp_cleanup()
While it appears to work fine after some quick testing, it should still be
considered WIP.
show more ...
|
| #
4c9e7d12 |
| 09-May-2017 |
ajacoutot <ajacoutot@openbsd.org> |
Document that patches are cumulative and as such it is not possible to install
only a subset of them.
with input from jmc@
|
| #
b40f9483 |
| 05-May-2017 |
ajacoutot <ajacoutot@openbsd.org> |
Add a `-R' switch that reverts all patches.
prodded by deraadt@
knobs sorting input jmc@
ok sthen@
|
| #
c408c745 |
| 08-Apr-2017 |
schwarze <schwarze@openbsd.org> |
use .Em for emphasis, not .Pa
|
| #
3965237c |
| 07-Feb-2017 |
jmc <jmc@openbsd.org> |
Ox on its own line;
|
| #
8b55056c |
| 07-Feb-2017 |
ajacoutot <ajacoutot@openbsd.org> |
Add installurl to FILES and SEE ALSO.
|
| #
e6d78d6e |
| 08-Dec-2016 |
ajacoutot <ajacoutot@openbsd.org> |
Make it possible to install patches even if we don't have all sets installed
(e.g. no x sets); in this case, syspatch will skip the patch *but* it will still
be listed as available. This will allow a
Make it possible to install patches even if we don't have all sets installed
(e.g. no x sets); in this case, syspatch will skip the patch *but* it will still
be listed as available. This will allow applying the patch in case sets are
installed later on.
show more ...
|
| #
08a8da71 |
| 30-Nov-2016 |
ajacoutot <ajacoutot@openbsd.org> |
Change the hierarchy under /var/syspatch/ so that the output of installed or
missing patches matches the official names.
e.g.
$ doas syspatch -c
015_libssl
Add a bit more output on what we are doing
Change the hierarchy under /var/syspatch/ so that the output of installed or
missing patches matches the official names.
e.g.
$ doas syspatch -c
015_libssl
Add a bit more output on what we are doing.
Tighten a few checks and rename some vars.
People playing with syspatch on 6.0 should update syspatch.sh asap from current
as I will soon remove the temporary quirks glue.
show more ...
|
| #
611a204a |
| 29-Nov-2016 |
ajacoutot <ajacoutot@openbsd.org> |
Document the fact that *for now* syspatch only works on official releases and
will always sync and apply all patches regardless of the installed sets.
|
| #
ff826bc8 |
| 16-Nov-2016 |
ajacoutot <ajacoutot@openbsd.org> |
/bsd.rollbackXX -> bsd.syspatchXX to make it more obvious where it comes from
and less prone to conflict.
Simplify ls_installed while here.
|
| #
63880a3f |
| 15-Nov-2016 |
ajacoutot <ajacoutot@openbsd.org> |
Small wording tweak and a couple of fixes from jmc@
|
| #
4b940db2 |
| 10-Nov-2016 |
ajacoutot <ajacoutot@openbsd.org> |
Extend documentation a bit. It'll probably need some adjustments soon.
|
| #
ed78b536 |
| 08-Nov-2016 |
ajacoutot <ajacoutot@openbsd.org> |
Simplify.
|
| #
3cab49e4 |
| 03-Nov-2016 |
ajacoutot <ajacoutot@openbsd.org> |
rollback -> revert where it makes sense.
|
| #
c027aa9e |
| 10-Sep-2016 |
ajacoutot <ajacoutot@openbsd.org> |
apply_patches should not take any arguments.
Few tweaks while here.
|
| #
00bd6dac |
| 07-Sep-2016 |
ajacoutot <ajacoutot@openbsd.org> |
Minimal man page.
|
| #
cbc95686 |
| 07-Sep-2016 |
ajacoutot <ajacoutot@openbsd.org> |
syspatch goal is not to act as a package manager but to sync the system to the
corresponding stable. So prevent rollbacking a specific binpatch but instead
always rollback the latest one. It's the on
syspatch goal is not to act as a package manager but to sync the system to the
corresponding stable. So prevent rollbacking a specific binpatch but instead
always rollback the latest one. It's the only way we can know the system is
consistent.
discussed with halex@ jasper@ robert@
show more ...
|
| #
b1898abe |
| 05-Sep-2016 |
ajacoutot <ajacoutot@openbsd.org> |
No need to install the /var/syspatch/$REL directory, the binpatch does it for us.
Put /var/syspatch into a variable, it's used more than 10 times.
prodded by robert@
|
| #
cb6f7b6f |
| 05-Sep-2016 |
ajacoutot <ajacoutot@openbsd.org> |
Welcome syspatch(8), a binary patch management utility for the base system.
This is currently a POC, maybe it will become something, maybe not.
Therefore it will not be hooked to the build before we
Welcome syspatch(8), a binary patch management utility for the base system.
This is currently a POC, maybe it will become something, maybe not.
Therefore it will not be hooked to the build before we are happy with it.
Workflow would be something like:
- fetch and verify signed tarballs containing the patched binaries from a mirror
- create a rollback tarball of the files we are about to replace
- extract and install the patched files
*** BIG FAT RED DISCLAIMER ***
This is very much WIP, it does *NOT* work, don't bikeshed, don't use it!
"get it in" deraadt@
show more ...
|