apt/cmdline, branch 1.0.9.5Debians commandline package managerhttps://git.kalnischkies.de/apt/atom?h=1.0.9.52014-12-22T13:23:39Zdispose http(s) 416 error page as non-content2014-12-22T13:23:39ZDavid Kalnischkiesdavid@kalnischkies.de2014-11-29T16:59:52Zurn:sha1:92e8c1ff287ab829de825e00cdf94744e699ff97
Real webservers (like apache) actually send an error page with a 416
response, but our client didn't expect it leaving the page on the socket
to be parsed as response for the next request (http) or as file content
(https), which isn't what we want at all… Symptom is a "Bad header line"
as html usually doesn't parse that well to an http-header.
This manifests itself e.g. if we have a complete file (or larger) in
partial/ which isn't discarded by If-Range as the server doesn't support
it (or it is just newer, think: mirror rotation).
It is a sort-of regression of 78c72d0ce22e00b194251445aae306df357d5c1a,
which removed the filesize - 1 trick, but this had its own problems…
To properly test this our webserver gains the ability to reply with
transfer-encoding: chunked as most real webservers will use it to send
the dynamically generated error pages.
(The tests and their binary helpers had to be slightly modified to
apply, but the patch to fix the issue itself is unchanged.)
Closes: 768797
support long keyids in "apt-key del" instead of ignoring them2014-11-28T15:15:39ZJames McCoyjamessan@debian.org2014-11-28T13:21:06Zurn:sha1:69d8b8537af1dd52db5f2e0e785bdce3e52fdf8d
apt-key given a long keyid reports just "OK" all the time, but doesn't
delete the mentioned key as it doesn't find the key.
Note: In debian/experimental this was closed with
29f1b977100aeb6d6ebd38923eeb7a623e264ffe which just added the testcase
as the rewrite of apt-key had fixed this as well.
Closes: 754436
use 'best' hash for source authentication2014-11-10T16:23:29ZDavid Kalnischkieskalnischkies@gmail.com2013-08-18T21:27:24Zurn:sha1:3a2b39ee602dd5a98b8fdaee2f1c8e0b13a276e2
Collect all hashes we can get from the source record and put them into a
HashStringList so that 'apt-get source' can use it instead of using
always the MD5sum.
We therefore also deprecate the MD5 struct member in favor of the list.
While at it, the parsing of the Files is enhanced so that records which
miss "Files" (aka MD5 checksums) are still searched for other checksums
as they include just as much data, just not with a nice and catchy name.
This is a cherry-pick of 1262d35 with some dirty tricks to preserve ABI.
LP: 1098738
apt-get: Create the temporary downloaded changelog inside tmpdir2014-10-02T20:05:25ZGuillem Joverguillem@debian.org2014-10-02T15:48:13Zurn:sha1:4c370aad7539b7e3bc0028aa538f34b95a526cff
The code is creating a secure temporary directory, but then creates
the changelog alongside the tmpdir in the same base directory. This
defeats the secure tmpdir creation, making the filename predictable.
Inject a '/' between the tmpdir and the changelog filename.
generalize Acquire::GzipIndex2014-09-21T08:18:03ZMichael Vogtmvo@debian.org2014-09-21T08:18:03Zurn:sha1:b0f4b486e6850c5f98520ccf19da71d0ed748ae4Use heap to allocate PatternMatch to avoid potential stack overflow2014-09-02T15:25:35ZMichael Vogtmvo@ubuntu.com2014-09-02T15:06:52Zurn:sha1:097248092ea4ff4543dfb17deb4e0d31dd697c71
When apt-cache search with many args (> 130) is given the allocation
of PatternMatch on the stack may fail resulting in a segmentation
fault. By using the heap the max size is much bigger and we also
get a bad_alloc expection instead of a segfault (which we can catch
*if* this ever becomes a pratical problem). No test for the crash
as its not reproducable with the MALLOC_ settings in framework.
Closes: 759612
Make Proxy-Auto-Detect check for each host2014-09-02T14:02:37ZMichael Vogtmvo@ubuntu.com2014-09-02T13:50:19Zurn:sha1:c6ee61eab54edf6cc3fbe118d304d72a860e1451
When doing Acquire::http{,s}::Proxy-Auto-Detect, run the auto-detect
command for each host instead of only once. This should make using
"proxy" from libproxy-tools feasible which can then be used for PAC
style or other proxy configurations.
Closes: #759264
add dpkg::source-options for dpkg-source invocation2014-08-26T18:49:48ZDavid Kalnischkiesdavid@kalnischkies.de2014-08-16T11:29:10Zurn:sha1:c53cf70da31a3c59675af8c5425b54433793dc8d
dpkg-source can be told to enforce signature checks with
--require-valid-signature, but while this isn't feasible as default for
Debian itself at the moment, a local admin should be able to use it.
This commit also fixes the size limit on the construction of the command
being called for dpkg-source and dpkg-buildpackage.
Closes: 757534
show our broken packages message in 'apt' solver2014-06-18T09:17:18ZDavid Kalnischkiesdavid@kalnischkies.de2014-06-17T15:45:33Zurn:sha1:d39d7f885d61bfe296c131c83bdc042a2ab6b0d7Merge remote-tracking branch 'mvo/feature/apt-update-info' into debian/sid2014-06-10T12:49:58ZMichael Vogtmvo@debian.org2014-06-10T12:49:58Zurn:sha1:59d6e5b06c25acdd6583ea801740c36acabc19ac