1. 26 Jan, 2018 2 commits
  2. 02 Jan, 2018 1 commit
  3. 15 Dec, 2017 1 commit
  4. 15 Sep, 2017 1 commit
    • intrigeri's avatar
      Make regexp match only what it should (refs: #12680). · ddccd730
      intrigeri authored
      "." is a regexp special char. We mean "." literally so it ought to be escaped.
      
      Wrong:
      
       $ echo 'user_pref("extensionsXenigmailYconfiguredVersion",' \
         | sed --regexp-extended \
              '/^(user_)?pref\("extensions.enigmail.configuredVersion",/d'
      
      Right:
      
       $ echo 'user_pref("extensionsXenigmailYconfiguredVersion",' \
         | sed --regexp-extended \
              '/^(user_)?pref\("extensions\.enigmail\.configuredVersion",/d'
       user_pref("extensionsXenigmailYconfiguredVersion",
      ddccd730
  5. 14 Sep, 2017 3 commits
  6. 13 Sep, 2017 1 commit
  7. 04 Sep, 2017 1 commit
  8. 15 Aug, 2017 1 commit
    • anonym's avatar
      Fix regex. · 73488ca4
      anonym authored
      So /[D|d]/ will match "|" which wasn't the intention. Presumably the
      intention was /(D|d)/, but a plain /[Dd]/ is cleaner.
      73488ca4
  9. 14 Aug, 2017 1 commit
  10. 24 Jul, 2017 1 commit
  11. 03 Jun, 2017 14 commits
  12. 18 May, 2017 2 commits
    • intrigeri's avatar
      Return to the initramfs (unpacked in /run/initramfs) on shutdown (refs:... · 888ccc5a
      intrigeri authored
      Return to the initramfs (unpacked in /run/initramfs) on shutdown (refs: #12428, #12354, Debian#778849).
      
      … otherwise the aufs read-write (tmpfs) branch, among possibly other things,
      can't be properly unmounted and its content remains in memory.
      
      Notes:
      
       * We have to handle some unmounting ourselves in initramfs-pre-shutdown-hook:
         systemd-shutdown doesn't manage to unmount the aufs read-write
         branch (/oldroot/lib/live/mount/overlay) as it is needed by the
         aufs (/oldroot) filesystem, and reciprocally it cannot unmount /oldroot as it
         is kept busy by /oldroot/lib/live/mount/*. So we disentangle this mess
         ourselves. And we have to manually empty the aufs read-write (tmpfs) branch,
         otherwise for some reason its content remains in memory. This code will of
         course need to be adapted for overlayfs some day.
      
       * We lock /bin/kill in memory: apparently systemd-exit.service needs it.
      
       * We remount /run on shutdown *before* dropping caches, just in case dropping
         caches removes what we've locked into memory.
      
       * We unpack the initramfs to /run/initramfs at *boot* time: sadly, I was not
         able to have it unpacked reliably in udev-watchdog-wrapper when the boot
         medium is ejected, so we'll use a little bit more RAM (instead of locking the
         compressed initramfs into memory, we're storing the uncompressed one there)
         and probably slow down the boot a bit, in order to make emergency shutdown
         robust. Note, however, that we save some of the RAM used by the uncompressed
         initramfs by deleting the worst offenders (kernel modules).
      
       * For now the whole procedure is quite noisy on the screen: the pre-shutdown
         hook runs under "set -x", doesn't run "clear", and spits out lots of
         debugging information. The goal is to enable users to provide useful
         debugging data if they have problems with emergency shutdown. Once we have
         shipped this code in a few releases and trust it's robust enough, we can
         surely reconsider and polish the UX by making the output less noisy.
      
       * We use absolute paths in many places to avoid $PATH lookup which might
         fail if the root filesystem is not there anymore.
      888ccc5a
    • intrigeri's avatar
      Drop kexec-based memory erasure feature (refs: #12354). · e2caab51
      intrigeri authored
      It's not reliable enough and provides poor UX. Linux memory poisoning
      works well enough to get rid of it.
      e2caab51
  13. 17 May, 2017 2 commits
    • anonym's avatar
      Simplify and clarify. · 22573019
      anonym authored
      Note that the backslash in the removed `\_${pattern}_`-style sed
      patterns just says "the next character will be the delimiter", so _
      becomes the delimiter. That allows you to use another delimiter than /
      in compination with d, which is nice when the pattern is a path (that
      tend to include /). It's a little known sed-feature. Just FYI! :)
      22573019
    • anonym's avatar
      Revert "live-persist: simplify." · c73cc472
      anonym authored
      This reverts commit b3abf4e5.
      c73cc472
  14. 16 May, 2017 1 commit
  15. 15 May, 2017 5 commits
  16. 11 May, 2017 1 commit
    • Alan's avatar
      autoclean package cache after upgrade · 10fdd168
      Alan authored
      …otherwise obsolete packages will pile up endlessly: we've had to disable
      apt-daily.timer to ensure it doesn't 1. waste RAM; 2. run at the same time as
      tails-additional-software (which would break the latter).
      
      Will-fix: #12400
      10fdd168
  17. 31 Mar, 2017 1 commit
  18. 29 Mar, 2017 1 commit