GitLab

Also clean up handling of signature failures for index files.
(cherry picked from commit 304dc4a6)
(cherry picked from commit b7f58c96)

Conflicts:

	src/apk_database.h
	src/database.c

it's not backwards compatible with older apk-tools in the
alpine-2.1.x branch.

Parse arch from .PKGINFO and index; write it to index and
installed database.

Contains conservative parts from master branch commit
fca1c30b. We'll add the
repository URL related changes when we have a migration plan.

Just disable installation of packages using the new stuff. Also
flag lower case package info fields as non-critical and allow
installation even if that features is not supported.
(backported master commit d8ba07e4)

Otherwise we end up using wrong uid/gid mappings when doing install
to alternate system root. Fixes #434.

Seems like recent eglibc requires that you include sys/stat.h

Take the uid/gid from passwd and group.

Instead of having a null pointer, use a dummy array which just
says the array is empty. This helps in multiple places of the code
which would otherwise need explicitly need to check first if the
array exists. This has been cause of multiple seg.faults in the
past as the array check is easily omitted.

This also removes (or fixes) all existing checks accordingly.

clean up the triggers properly, in proper order.

Print more information why installation changeset calculation failed.
Fixes #187.

openssl BIO does not close the fd unless we explicitly tell it to
do so.

get list of overlay files from stdin, so those do not get overwritten.

if the dependencies are empty with only trailing new line, the
parsing was incorrect. fix the new line check.

accept also pkgfile in addition to pkgname. make also the signature
verification stuff work properly again with non-repository files.

this makes the database package entry smaller, and we propbably
get more fields to installed_package later too. this cleans up
the way scripts are stored and is a preparation for supporting
triggers. some parsing for trigger meta-data. ref #45.

some hooks to package verification code were missing causing the
verification to not be done (causing pre-script to be not run).
fixes #124, #126.

it will allow to overwrite files owned by some other packages
to get upgrades right (e.g. when splitting or renaming packages)

this way we never change cwd, and relative filenames are always
parsed consistently. this also helps filename construction in many
places. this patch also changes '--root' to override location of
all configuration to be in the new root. previously it depended
on the file which one was used.

and force checksumming only when unpacking archive. otherwise
it's extra computation for nothing.

this dependency is now inserted automatically by abuild.

when failed to load an existing index.

fixes verification of non-repository packages while installing
them. this is final thing needed for full signing support
(fixes #46).

make sure cache is enabled on non-permanent rootfs setups.
some optimizations and fixes too.

smaller callback and less cases to check. also reintroduce the
oneshot digest flag, hopefully correct this time.

to not make hard error of untrusted or missing signatures

- error codes for verification failure types
- fix some fdb corruption on file migration
- combine some dependency parsing code
- fix versioned dependencies

- extract everything as .apk-new and overwrite only after data
  has been checksummed
- url construction fixes (to work with simple http servers)
- end of gunzip stream fixed
- remove oneshot digesting flag for now as it's usage was broken

prefer index in the new format as signed .tar.gz.

speeds up digest calculation on some cases.