apt/debian, branch 1.9.6

apt/debian, branch 1.9.6 Debians commandline package manager https://git.kalnischkies.de/apt/atom?h=1.9.6 2020-01-15T22:08:38Z Release 1.9.6 2020-01-15T22:08:38Z Julian Andres Klode julian.klode@canonical.com 2020-01-15T22:07:22Z urn:sha1:799508a65e2df5f4af267f3597ba1117bb3c3eeb apt(8): Disable regular expressions and fnmatch 2020-01-15T21:19:17Z Julian Andres Klode julian.klode@canonical.com 2020-01-15T21:01:54Z urn:sha1:21cb4a9e513ccb6f376fbcaf67957c4851cbbe32 This is the first step. Next step will be to add warnings to apt-get and then remove support there as well. hashes: Use Libgcrypt for hashing purposes 2020-01-14T12:10:36Z Julian Andres Klode julian.klode@canonical.com 2020-01-07T18:21:40Z urn:sha1:814ffcfaf34ad1d35e397eeaaafefbf03faed9cf Switch the code of the Hashes class to use libgcrypt, which allows us to use hardware-accelerated implementations of SHA1 and friends. debian/rules: Adjust for -DWITH_TESTS=OFF in nocheck build 2020-01-07T20:59:58Z Julian Andres Klode julian.klode@canonical.com 2020-01-07T20:57:22Z urn:sha1:59f526699602c5e8dcb9ab4dc33a900fbb1e5c85 Gbp-Dch: ignore Drop g++ build-dependency to help crossbuilding 2020-01-05T11:38:27Z David Kalnischkies david@kalnischkies.de 2020-01-05T11:31:05Z urn:sha1:507f9ae50fb0078d41ac308ab8e68caacab2acd2 Introduced to help with an ABI break this is now long enough in the past that we can go back to not explicitly depend on g++ anymore as it is part of build-essential. References: f63b3e01e436a8c0b4711b69a1a8794161e4c5a7 Closes: #948201 Release 1.9.5 2019-12-02T17:18:57Z Julian Andres Klode julian.klode@canonical.com 2019-12-02T17:18:57Z urn:sha1:5a98b531f7afcd34367b46ac9e0c7bfe151d6999 netrc: Restrict auth.conf entries to https by default 2019-12-02T13:27:38Z Julian Andres Klode julian.klode@canonical.com 2019-12-02T10:46:49Z urn:sha1:93f33052de84e9aeaf19c92291d043dad2665bbd This avoids downgrade attacks where an attacker could inject Location: http://private.example/ and then (having access to raw data to private.example, for example, by opening a port there, or sniffing network traffic) read the credentials for the private repository. Closes: #945911 Release 1.9.4 2019-09-19T09:14:24Z Julian Andres Klode julian.klode@canonical.com 2019-09-19T09:13:53Z urn:sha1:534b12f4b47192bd20ea2147311bda58f92005e2 apt.systemd.daily: Do not numerically check if intervals equal 0 2019-08-22T07:10:16Z Julian Andres Klode julian.klode@canonical.com 2019-08-22T07:03:14Z urn:sha1:489da40d56075efaa28bfdcfb7b02b3bcc222323 Commit 1d9e29c9e2a5591b42a99a721b901fc003ed9149 added support for suffixes to to intervals, but did not adjust the code to actually support them by replacing -eq with =. LP: #1840995 Release 1.9.3 2019-08-19T14:22:15Z Julian Andres Klode julian.klode@canonical.com 2019-08-19T14:21:53Z urn:sha1:1eeacf3a51dbd7ddfc552919fc9dd3d498a9f971