apt/methods, branch 1.4.1Debians commandline package managerhttps://git.kalnischkies.de/apt/atom?h=1.4.12017-01-24T10:48:22Zbasehttp: Only read Content-Range on 416 and 206 responses2017-01-24T10:48:22ZJulian Andres Klodejak@debian.org2017-01-18T19:39:27Zurn:sha1:4759a702081297bde66982efed8b2b7fd39ca27c
This fixes issues with sourceforge where the redirector includes
such a Content-Range in a 302 redirect. Since we do not really know
what file is meant in a redirect, let's just ignore it for all
responses other than 416 and 206.
Maybe we should also get rid of the other errors, and just ignore
the field in those cases as well?
LP: #1657567
fix various typos reported by spellintian2017-01-19T14:59:38ZDavid Kalnischkiesdavid@kalnischkies.de2017-01-19T14:14:19Zurn:sha1:93cff633a830e222693fc0f3d78e6e534d1126ee
Most of them in (old) code comments. The two instances of user visible
string changes the po files of the manpages are fixed up as well.
Gbp-Dch: Ignore
Reported-By: spellintian
stop rred from leaking debug messages on recovered errors2017-01-19T03:14:08ZDavid Kalnischkiesdavid@kalnischkies.de2017-01-19T03:14:08Zurn:sha1:2984d7aec37e09b473c7b99f43d20622c25dc99d
rred can fail for a plentory of reasons, but its failure is usually
recoverable (Ign lines) so it shouldn't leak unrequested debug messages
to an observing user.
Closes: #850759
https: Quote path in URL before passing it to curl2017-01-17T00:59:15ZJulian Andres Klodejak@debian.org2016-12-29T13:16:07Zurn:sha1:994515e689dcc5f963f5fed58284831750a5da03
Curl requires URLs to be urlencoded. We are however giving it
undecoded URLs. This causes it go completely nuts if there is
a space in the URI, producing requests like:
GET /a file HTTP/1.1
which the servers then interpret as a GET request for "/a" with
HTTP version "file" or some other non-sense.
This works around the issue by encoding the path component of
the URL. I'm not sure if we should encode other parts of the URL
as well, this one seems to do the trick for the actual issue at
hand.
A more correct fix is to avoid the dequoting and (re-)quoting
of URLs when a redirect occurs / a new request is sent. That's
been on the radar for probably a year or two now, but nobody
bothered implementing that yet.
LP: #1651923
rename ServerMethod to BaseHttpMethod2016-12-31T01:29:21ZDavid Kalnischkiesdavid@kalnischkies.de2016-12-09T14:13:09Zurn:sha1:d8617331afc39281d5925033975b6097128786f4
This 'method' is the abstract base for http and https and should as such
be called out like this rather using an easily confused name.
Gbp-Dch: Ignore
separating state variables regarding server/request2016-12-31T01:29:21ZDavid Kalnischkiesdavid@kalnischkies.de2016-11-09T11:25:44Zurn:sha1:13a9f08de18dea0dfc1951992b0ddeda9c2fa2dd
Having a Reset(bool) method to partially reset certain variables like
the download size always were strange, so this commit splits the
ServerState into an additional RequestState living on the stack for as
long as we deal with this request causing an automatic "reset".
There is much to do still to make this code look better, but this is a
good first step which compiles cleanly and passes all tests, so keeping
it as history might be beneficial and due to avoiding explicit memory
allocations it ends up fixing a small memory leak in https, too.
Closes: #440057
Honour Acquire::ForceIPv4/6 in the https transport2016-12-08T13:48:12ZLukasz Kawczynskin@neuroid.pl2016-12-08T13:48:12Zurn:sha1:49b91f6903804183dbe1abb12ce1f9803a3dee5fgpgv: Untrust SHA1, RIPE-MD/160, but allow downgrading to weak2016-11-25T22:45:19ZJulian Andres Klodejak@debian.org2016-11-25T12:12:28Zurn:sha1:33d7a8d672c8c720947e81158de4a5a07be05b72
Change the trust level check to allow downgrading an Untrusted
option to weak (APT::Hashes::SHA1::Weak "yes";), so it prints
a warning instead of an error; and change the default values
for SHA1 and RIPE-MD/160 from Weak to Untrusted.
report apt-key errors via status-fd messages2016-11-23T23:21:35ZDavid Kalnischkiesdavid@kalnischkies.de2016-11-12T22:22:33Zurn:sha1:8e438ede2f179f2f66268308c24d62952ac06fa4
We report warnings from apt-key this way already since
29c590951f812d9e9c4f17706e34f2c3315fb1f6, so reporting errors seems like
a good addition. Most of those errors aren't really from apt-key
through, but from the code setting up and actually calling it which used
to just print to stderr which might or might not intermix them with
(other) progress lines in update calls. Having them as proper error
messages in the system means that the errors are actually collected
later on for the list instead of ending up with our relatively generic
but in those cases bogus hint regarding "is gpgv installed?".
The effective difference is minimal as the errors apply mostly to
systems which have far worse problems than a not as nice looking error
message, which makes this pretty hard to test – but at least now the
hint that your system is broken can be read in proper order (= there
aren't many valid cases in which the permissions of /tmp are messed up…).
LP: #1522988
http: skip connection cleanup if we close it anyhow2016-11-11T22:40:37ZDavid Kalnischkiesdavid@kalnischkies.de2016-11-11T09:32:31Zurn:sha1:11c96d7618faecc8fab9edfd83b2b2e0afefda3b
Suggested in #529794