apt, branch 2.7.13 Debians commandline package manager https://git.kalnischkies.de/apt/atom?h=2.7.13 2024-02-28T18:51:04Z Release 2.7.13 2024-02-28T18:51:04Z Julian Andres Klode julian.klode@canonical.com 2024-02-28T18:51:04Z urn:sha1:09092ad336e9f8a64ee59794fdc301a74238fe1c prepare-release: Adjust for t64 suffix 2024-02-28T18:47:33Z Julian Andres Klode julian.klode@canonical.com 2024-02-28T18:45:32Z urn:sha1:ee84fe87982076b4a093473e3e9904d6b72ca60a Merge branch 'gpgv-improvements' into 'main' 2024-02-28T18:39:57Z Julian Andres Klode jak@debian.org 2024-02-28T18:39:57Z urn:sha1:368a60cd267cb92be43c57a8cc92c77d5f7aeb50 Assert >=2048-bit RSA keys, Ed25519, Ed448, and some improvements to diagnostic reporting See merge request apt-team/apt!322 Merge branch 'gitlab-fix' into 'main' 2024-02-28T18:28:34Z Julian Andres Klode jak@debian.org 2024-02-28T18:28:34Z urn:sha1:010841260f7dce50ba407e23c5894e9017561ce2 Do not require versioned dpkg-dev on CI See merge request apt-team/apt!332 Do not require versioned dpkg-dev on CI 2024-02-28T17:32:32Z Julian Andres Klode julian.klode@canonical.com 2024-02-28T17:32:32Z urn:sha1:68ddc4a20fe7cbf53e22c7a8bbc35db597b87313 Annotate the Build-Depends with a <!pkg.apt.ci> profile and use that in prepare-release when doing build-dep. Temporarily downgrade key assertions to "soon worthless" 2024-02-28T17:22:01Z Julian Andres Klode julian.klode@canonical.com 2024-02-28T16:04:05Z urn:sha1:66998ed3d299bede651ad40368bdb270f5f5b0f9 This will only issue warnings instead of errors while we continue cleaning up our repositories. Rename 'weak digest algorithm' to 'weak algorithm' 2024-02-28T17:22:01Z Julian Andres Klode julian.klode@canonical.com 2024-02-28T15:52:33Z urn:sha1:8a14c18c5b487139948dcb22abd37bffdd9cf5f4 This allows us to render public key algorithms as weak as well. Implement gpgv --assert-pubkey-algo=>=rsa2048,ed25519,ed448 2024-02-28T17:22:01Z Julian Andres Klode julian.klode@canonical.com 2024-02-28T14:14:43Z urn:sha1:50e3fee26ae843a812b1c9ec8531946931773fd3 The assertion can be overriden using apt::key::assert-pubkey-algo, the default is the most opinionated one. This will inform the user during apt-cdrom add as we do not pass --quiet to user, so adjust test case. Add a simple test case for it to test-method-gpgv. LP: #2055193 gpgv: Add a reason to worthless signers 2024-02-28T17:21:01Z Julian Andres Klode julian.klode@canonical.com 2024-02-28T13:49:48Z urn:sha1:60d653634f889abe09c0f4d88f2559eab9202635 gpgv: Surface [GNUPG:] ERROR and [GNUPG:] WARNING status messages 2024-02-28T17:21:01Z Julian Andres Klode julian.klode@canonical.com 2024-01-18T17:35:35Z urn:sha1:066121ac4de3f1e07e203583a2c5d00a0289f84a