Debians commandline package manager https://git.kalnischkies.de/apt/atom?h=1.6_alpha7 2018-01-03T18:42:45Z 2018-01-03T18:42:45Z David Kalnischkies david@kalnischkies.de 2017-11-18T11:38:21Z urn:sha1:4df5483994d510290677abab5720445f71babe65 A mirror list we get from an non-local source like http shouldn't be able to include e.g. file sources and even with other online sources we need to be careful: They also shouldn't include prefixed methods like 'tor+http'. So apply magic based on how the method is called: mirror+file will be allowed to redirect to any source while tor+mirror+file allows all, but sends them to their tor+ variant. 2018-01-03T17:55:41Z David Kalnischkies david@kalnischkies.de 2017-10-27T16:39:36Z urn:sha1:57fa854e4cdb060e87ca265abd5a83364f9fa681 Embedding an entire acquire stack and HTTP logic in the mirror method made it rather heavy weight and fragile. This reimplement goes the other way by doing only the bare minimum in the method itself and instead redirect the actual download of files to their proper methods. The reimplementation drops the (in the real world) unused query-string feature as it isn't really implementable in the new architecture. 2017-10-26T20:41:42Z Julian Andres Klode jak@debian.org 2017-10-26T20:41:42Z urn:sha1:cc1f94c95373670fdfdb8e2d6cf9125181f7df0c The store method replaced them all, the symlinks where mostly for partial upgrades or whatever, they should not be needed any longer. 2017-10-23T02:19:19Z Julian Andres Klode jak@debian.org 2017-10-23T01:29:10Z urn:sha1:43b9eb5bac15666fdc0346aca7031fab0fa5e064 Use OBJECT libraries for http and connect stuff, and move the seccomp link expression into a global link_libraries() call. This also fixes a bug where only the http target pulled in the gnutls header arguments despite gnutls being used in connect.cc, and thus by mirror and ftp as well. Adjust translation support to ignore TARGET_OBJECTS sources and add the OBJECT libraries to the translated files. 2017-10-22T21:38:31Z Julian Andres Klode jak@debian.org 2017-10-22T21:34:03Z urn:sha1:32bcbd73e0988d2d2237690ffae33b4f5cc5ff81 This reduces the number of syscalls to about 140 from about 350 or so, significantly reducing security risks. Also change prepare-release to ignore the architecture lists in the build dependencies when generating the build-depends package for travis. We might want to clean up things a bit more and/or move it somewhere else. 2017-09-24T18:36:41Z Julian Andres Klode jak@debian.org 2017-09-24T18:33:49Z urn:sha1:5e770a07c8fd649340e83725f6d07b94c361e87c This automatically removes any old apt-transport-https, as apt now Breaks it unversioned. 2017-06-30T14:33:09Z Julian Andres Klode jak@debian.org 2017-06-30T14:33:09Z urn:sha1:c6a428e4d17b408c2701def5daa46ca950948980 The old curl based method is still available as 'curl', 'curl+http', and 'curl+https'. 2017-06-28T13:52:38Z Julian Andres Klode jak@debian.org 2017-06-27T22:12:11Z urn:sha1:0fe2161020d6e331639ed11872a947dd20035890 This makes testing easier and prepares us for the transition. 2017-06-28T13:52:38Z Julian Andres Klode jak@debian.org 2017-06-28T08:55:57Z urn:sha1:2851ec6cf037d552118b885be0dd7796d74730c6 The http method will eventually replace the curl-based https method, but for now, this is an opt-in experiment that can be enabled by setting Dir::Bin::Methods::https to "http". Known issues: - We do not support HTTPS proxies yet - We do not support proxying HTTPS connections yet (CONNECT) - IssuerCert and SslForceVersion are unsupported Gbp-Dch: Full 2016-12-31T01:29:21Z David Kalnischkies david@kalnischkies.de 2016-12-09T14:13:09Z urn:sha1:d8617331afc39281d5925033975b6097128786f4 This 'method' is the abstract base for http and https and should as such be called out like this rather using an easily confused name. Gbp-Dch: Ignore