Debians commandline package manager https://git.kalnischkies.de/apt/atom?h=2.9.0 2024-03-03T07:23:51Z 2024-03-03T07:23:51Z Steve Langasek steve.langasek@canonical.com 2024-03-03T07:10:14Z urn:sha1:9044806c2adc6118399349c70a6c5746cedcc374 Once in a generation, it may be necessary to bootstrap apt in an environment where gnutls is not yet available. This makes gnutls support in apt optional. You may also want a configure flag to force gnutls to be required from outside the buildsystem (e.g. debian/rules). 2020-11-07T20:48:21Z David Kalnischkies david@kalnischkies.de 2020-11-07T20:23:57Z urn:sha1:9e1398b164f55238990907f63dfdef60588d9b24 Merging patches is a bit of non-trivial code we have for client-side work, but as we support also server-side merging we can export this functionality so that server software can reuse it. Note that this just cleans up and makes rred behave a bit more like all our other binaries by supporting setting configuration at runtime and supporting --help and --version. If you can make due without this, the now advertised functionality is provided already in earlier versions. 2020-07-14T14:04:56Z Julian Andres Klode julian.klode@canonical.com 2020-07-14T14:04:56Z urn:sha1:9f78677281b8866a28af469dc7f437771f2a1b8f Sorry! 2020-04-09T08:39:34Z Julian Andres Klode julian.klode@canonical.com 2020-03-25T16:31:12Z urn:sha1:29a79857c3cb53a94007bb7887234d2fe27850b2 Include that apt is being run from a service in the user agent, so traffic can be analysed for interactive vs non-interactive use, and prioritised accordingly. It looks like this now: User-Agent: Debian APT-HTTP/1.3 (2.0.1) non-interactive A previous version included the full service names, but this raised some privacy concerns. LP: #1825000 2018-01-03T18:42:45Z David Kalnischkies david@kalnischkies.de 2017-11-18T11:38:21Z urn:sha1:4df5483994d510290677abab5720445f71babe65 A mirror list we get from an non-local source like http shouldn't be able to include e.g. file sources and even with other online sources we need to be careful: They also shouldn't include prefixed methods like 'tor+http'. So apply magic based on how the method is called: mirror+file will be allowed to redirect to any source while tor+mirror+file allows all, but sends them to their tor+ variant. 2018-01-03T17:55:41Z David Kalnischkies david@kalnischkies.de 2017-10-27T16:39:36Z urn:sha1:57fa854e4cdb060e87ca265abd5a83364f9fa681 Embedding an entire acquire stack and HTTP logic in the mirror method made it rather heavy weight and fragile. This reimplement goes the other way by doing only the bare minimum in the method itself and instead redirect the actual download of files to their proper methods. The reimplementation drops the (in the real world) unused query-string feature as it isn't really implementable in the new architecture. 2017-10-26T20:41:42Z Julian Andres Klode jak@debian.org 2017-10-26T20:41:42Z urn:sha1:cc1f94c95373670fdfdb8e2d6cf9125181f7df0c The store method replaced them all, the symlinks where mostly for partial upgrades or whatever, they should not be needed any longer. 2017-10-23T02:19:19Z Julian Andres Klode jak@debian.org 2017-10-23T01:29:10Z urn:sha1:43b9eb5bac15666fdc0346aca7031fab0fa5e064 Use OBJECT libraries for http and connect stuff, and move the seccomp link expression into a global link_libraries() call. This also fixes a bug where only the http target pulled in the gnutls header arguments despite gnutls being used in connect.cc, and thus by mirror and ftp as well. Adjust translation support to ignore TARGET_OBJECTS sources and add the OBJECT libraries to the translated files. 2017-10-22T21:38:31Z Julian Andres Klode jak@debian.org 2017-10-22T21:34:03Z urn:sha1:32bcbd73e0988d2d2237690ffae33b4f5cc5ff81 This reduces the number of syscalls to about 140 from about 350 or so, significantly reducing security risks. Also change prepare-release to ignore the architecture lists in the build dependencies when generating the build-depends package for travis. We might want to clean up things a bit more and/or move it somewhere else. 2017-09-24T18:36:41Z Julian Andres Klode jak@debian.org 2017-09-24T18:33:49Z urn:sha1:5e770a07c8fd649340e83725f6d07b94c361e87c This automatically removes any old apt-transport-https, as apt now Breaks it unversioned.