apt/cmdline/apt-get.cc, branch 1.0.9.4 Debians commandline package manager https://git.kalnischkies.de/apt/atom?h=1.0.9.4 2014-11-10T16:23:29Z use 'best' hash for source authentication 2014-11-10T16:23:29Z David Kalnischkies kalnischkies@gmail.com 2013-08-18T21:27:24Z urn:sha1:3a2b39ee602dd5a98b8fdaee2f1c8e0b13a276e2 Collect all hashes we can get from the source record and put them into a HashStringList so that 'apt-get source' can use it instead of using always the MD5sum. We therefore also deprecate the MD5 struct member in favor of the list. While at it, the parsing of the Files is enhanced so that records which miss "Files" (aka MD5 checksums) are still searched for other checksums as they include just as much data, just not with a nice and catchy name. This is a cherry-pick of 1262d35 with some dirty tricks to preserve ABI. LP: 1098738 apt-get: Create the temporary downloaded changelog inside tmpdir 2014-10-02T20:05:25Z Guillem Jover guillem@debian.org 2014-10-02T15:48:13Z urn:sha1:4c370aad7539b7e3bc0028aa538f34b95a526cff The code is creating a secure temporary directory, but then creates the changelog alongside the tmpdir in the same base directory. This defeats the secure tmpdir creation, making the filename predictable. Inject a '/' between the tmpdir and the changelog filename. generalize Acquire::GzipIndex 2014-09-21T08:18:03Z Michael Vogt mvo@debian.org 2014-09-21T08:18:03Z urn:sha1:b0f4b486e6850c5f98520ccf19da71d0ed748ae4 add dpkg::source-options for dpkg-source invocation 2014-08-26T18:49:48Z David Kalnischkies david@kalnischkies.de 2014-08-16T11:29:10Z urn:sha1:c53cf70da31a3c59675af8c5425b54433793dc8d dpkg-source can be told to enforce signature checks with --require-valid-signature, but while this isn't feasible as default for Debian itself at the moment, a local admin should be able to use it. This commit also fixes the size limit on the construction of the command being called for dpkg-source and dpkg-buildpackage. Closes: 757534 Show unauthenticated warning for source packages as well 2014-06-02T06:53:09Z Michael Vogt mvo@debian.org 2014-05-30T12:47:56Z urn:sha1:a3f1d60cb75ab83f63a52a43c056a4752c8fdeb2 This will show the same unauthenticated warning for source packages as for binary packages and will not download a source package if it is unauthenticated. This can be overridden with --allow-unauthenticated Closes: #749795 fix screen width detection for apt/apt-get lists 2014-05-22T16:18:13Z Sebastian Schmidt yath@yath.de 2014-05-17T04:57:47Z urn:sha1:d287a035e07030be13f72265d4d0812086c323f5 3163087b moved SigWinch(int) from apt-get.cc to private-output.cc without moving #include <sys/ioctl.h>, making SigWinch a nop. Closes: 748430, 747942 Fix missing ScreenWidth check in apt.cc 2014-04-28T11:41:33Z Michael Vogt mvo@debian.org 2014-04-28T11:41:33Z urn:sha1:3163087b04ca5c297a7c98c018ba5c30e850a11e use SPtrArray handling instead of explicit delete[] 2014-03-13T12:58:45Z David Kalnischkies david@kalnischkies.de 2014-03-06T00:31:55Z urn:sha1:500dc0700136092692d1cceba4e5c1639bcfc825 The warning message from gcc doesn't make that much sense in my reading as there is no loop which could overflow here, but it is better to use our SPtrArray wrapping anyway which fixes the warning as well. warning: cannot optimize loop, the loop counter may overflow [-Wunsafe-loop-optimizations] delete[] Dsc; Git-Dch: Ignore Reported-By: gcc -Wunsafe-loop-optimizations cleanup headers and especially #includes everywhere 2014-03-13T12:58:45Z David Kalnischkies david@kalnischkies.de 2014-03-05T21:11:25Z urn:sha1:453b82a388013e522b3a1b9fcd6ed0810dab1f4f Beside being a bit cleaner it hopefully also resolves oddball problems I have with high levels of parallel jobs. Git-Dch: Ignore Reported-By: iwyu (include-what-you-use) warning: unused parameter ‘foo’ [-Wunused-parameter] 2014-03-13T12:58:45Z David Kalnischkies david@kalnischkies.de 2014-03-01T14:11:42Z urn:sha1:655122418d714f342b5d9789f45f8035f3fe8b9a Reported-By: gcc -Wunused-parameter Git-Dch: Ignore