git-echo/linux_patch_api
Private
Public Access
1
0
Fork 0
Code Releases 32 Wiki Activity
149 Commits 5 Branches 36 Tags
9e42f322702b4b4c990df417989335423c8519cb
Commit Graph

4 Commits

Author SHA1 Message Date
Echo
9e42f32270 fix: remove sudo from apt commands and RestrictSUIDSGID from service
All checks were successful
CI/CD Pipeline / Code Format (push) Successful in 2s
Details
CI/CD Pipeline / Clippy Lints (push) Successful in 1m17s
Details
CI/CD Pipeline / Unit Tests (push) Successful in 56s
Details
CI/CD Pipeline / Security Audit (push) Successful in 15s
Details
CI/CD Pipeline / Build Debian Package (Ubuntu 22.04) (push) Successful in 1m57s
Details
CI/CD Pipeline / Build Arch Package (push) Successful in 1m53s
Details
CI/CD Pipeline / Build Alpine Package (push) Successful in 3m17s
Details
CI/CD Pipeline / Build RPM Package (push) Successful in 3m36s
Details
CI/CD Pipeline / Build Debian Package (push) Successful in 2m11s
Details 
- Remove sudo from apt command execution (service runs as root)
- Remove RestrictSUIDSGID from systemd service (blocks setuid for apt/dpkg)
- Remove NoNewPrivileges from systemd service (blocks sudo PERM_SUDOERS)
- Bump version to 0.3.2
 2026-05-03 02:24:52 +00:00
Echo
2b35a143da fix: implement actual system reboot via shutdown/systemctl commands
All checks were successful
CI/CD Pipeline / Code Format (push) Successful in 2s
Details
CI/CD Pipeline / Clippy Lints (push) Successful in 40s
Details
CI/CD Pipeline / Unit Tests (push) Successful in 1m27s
Details
CI/CD Pipeline / Security Audit (push) Successful in 4s
Details
CI/CD Pipeline / Build Arch Package (push) Successful in 1m56s
Details
CI/CD Pipeline / Build Debian Package (Ubuntu 22.04) (push) Successful in 2m32s
Details
CI/CD Pipeline / Build Alpine Package (push) Successful in 3m25s
Details
CI/CD Pipeline / Build RPM Package (push) Successful in 3m44s
Details
CI/CD Pipeline / Build Debian Package (push) Successful in 3m0s
Details 
- Fix reboot_system() to use shutdown -r +N for delayed reboots
- Fix patches handler to call reboot_system() instead of just logging
- Add CAP_SYS_BOOT capability to systemd service for LXC reboot support
- Remove unused warn import from packages/mod.rs
- Bump version to 0.3.1
 2026-05-03 01:37:22 +00:00
Echo
03786d1798 v0.2.0: Fix List Jobs bug, TLS 1.3 enforcement, client_disconnect_timeout, RwLock contention
Some checks failed
CI/CD Pipeline / Code Format (push) Failing after 1s
Details
CI/CD Pipeline / Clippy Lints (push) Failing after 2s
Details
CI/CD Pipeline / Unit Tests (push) Failing after 7s
Details
CI/CD Pipeline / Build Debian Package (push) Has been skipped
Details
CI/CD Pipeline / Build Debian Package (Ubuntu 22.04) (push) Has been skipped
Details
CI/CD Pipeline / Build RPM Package (push) Has been skipped
Details
CI/CD Pipeline / Build Alpine Package (push) Has been skipped
Details
CI/CD Pipeline / Build Arch Package (push) Has been skipped
Details
CI/CD Pipeline / Security Audit (push) Failing after 3s
Details 
Bug fixes:
- Fix List Jobs connection reset: Add client_disconnect_timeout (5s) to prevent TLS write truncation
- Enforce TLS 1.3 only: Add with_protocol_versions(&[&TLS13]) to rustls ServerConfig
- Fix RwLock contention: Release read lock before sorting in list_jobs()
- Fix systemd service: Remove ProtectSystem=strict (blocks package management)
- Fix systemd service: Change Type=notify to Type=simple (fixes restart hangs)
- Fix systemd service: Add DEBIAN_FRONTEND=noninteractive
- Fix systemd service: Add ReadWritePaths for apt/dpkg paths

CI/CD:
- Add Ubuntu 22.04 build job to CI workflow

E2E Testing:
- Add comprehensive E2E test suite (test_e2e.py)
- Tests cover health, packages, patches, jobs, security, and reboot endpoints

Other:
- Bump version to 0.2.0
- Add lessons learned documentation
 2026-05-02 20:59:02 +00:00
Echo
145df1b3c8 Phase 1: Foundation - CI/CD, systemd service, test framework
Some checks failed
CI/CD Pipeline / Code Format (push) Has been cancelled
Details
CI/CD Pipeline / Clippy Lints (push) Has been cancelled
Details
CI/CD Pipeline / Unit Tests (push) Has been cancelled
Details
CI/CD Pipeline / Security Audit (push) Has been cancelled
Details
CI/CD Pipeline / Build Release (x86_64-unknown-linux-gnu) (push) Has been cancelled
Details
CI/CD Pipeline / Build Ubuntu Package (push) Has been cancelled
Details 
Completed Phase 1 foundation tasks:
- CI/CD pipeline (.github/workflows/ci.yml)
  - Format check (rustfmt)
  - Clippy lints
  - Unit tests with codecov
  - Security audit (cargo-audit)
  - Build release artifacts
  - Ubuntu package build
- Systemd service file (configs/linux-patch-api.service)
  - Security hardening (ProtectSystem, SystemCallFilter)
  - Journal logging integration
  - Resource limits
- Test framework structure (tests/unit/, tests/integration/)
  - Initial unit test template
  - Test framework verified with cargo test

Rust toolchain 1.94.1 installed and verified.
 2026-04-09 19:12:45 +00:00