apt/test/integration/framework, branch 1.1.exp11 Debians commandline package manager https://git.kalnischkies.de/apt/atom?h=1.1.exp11 2015-08-27T09:27:45Z allow explicit dis/enable of IndexTargets in sources options 2015-08-27T09:27:45Z David Kalnischkies david@kalnischkies.de 2015-08-27T08:41:19Z urn:sha1:e6a12ff73a2e3246b9e475d9772e88c79a6249f7 While Target{,-Add,-Remove} is available for configuring IndexTargets already, allow Targets to be mentioned explicitely as yes/no options as well, so that the Target 'Contents' can be disabled via 'Contents: no' as well as 'Target-Remove: Contents'. fix various typos reported by codespell 2015-08-27T09:27:44Z David Kalnischkies david@kalnischkies.de 2015-08-22T14:22:08Z urn:sha1:3a8776a37af38127fb04565959e8e0e449eb04a4 Reported-By: codespell Add support for "apt-cache showsrc --only-source srcpkgname" 2015-08-18T18:39:59Z Michael Vogt mvo@debian.org 2015-08-18T18:39:59Z urn:sha1:a8275acf87cf15992e6b89694d6276e0a5e529b9 Thanks: Steve Slangasek for the suggestion Closes: 695633 travis: add ppa:ubuntu-toolschain-r/test as source for gcc-5 2015-08-12T09:55:47Z David Kalnischkies david@kalnischkies.de 2015-08-10T17:00:16Z urn:sha1:3261271e8e813b883917f0f57031ffcecbce6e20 This makes travis-ci able to run our tests again. Sometimes. If it doesn't spontaneously fails with internal gcc errors… Git-Dch: Ignore move APT::Never-MarkAuto-Sections handling to MarkDelete 2015-08-10T15:27:59Z David Kalnischkies david@kalnischkies.de 2015-08-10T12:44:14Z urn:sha1:7c2cc4a7bc999c8e07fba607354bfaa3b09118f9 Having the handling in MarkInstall means that it just effects installation of the metapackage, but if the dependencies change the new dependencies aren't protected (and the old dependencies are still protected for no 'reason'). Having it in MarkDelete means that if a metapackage is sheduled for removal all its currently installed dependencies are marked as manual, which helps against both as in this case there is no new/old and additionally if a user decides the installation of a metapackage was wrong he can just remove it explicitely avoid the manual marking entirely. mark again deps of pkgs in APT::Never-MarkAuto-Sections as manual 2015-08-10T15:27:59Z David Kalnischkies david@kalnischkies.de 2015-08-03T05:00:33Z urn:sha1:3cbeed985254de7e8d186ebebb69a659727eaeb0 In 50ef3344c3afaaf9943142906b2f976a0337d264 (and similar for other branches), while 'fixing' the edgecase of a package being in multiple sections (e.g. moved from libs to oldlibs in newer releases) I accidently broke the feature itself completely by operating on the package itself and no longer on its dependencies… The behaviour isn't ideal in multiple ways, which we are hopefully able to fix with new ideas as mentioned in the buglog, but until then the functionality of this "hack" should be restored. Reported-By: Raphaël Hertzog <hertzog@debian.org> Tested-By: Adam Conrad <adconrad@ubuntu.com> Closes: 793360 LP: 1479207 Thanks: Raphaël Hertzog and Adam Conrad for detailed reports and initial patches elimate duplicated code in pkgIndexFile subclasses 2015-08-10T15:27:59Z David Kalnischkies david@kalnischkies.de 2015-07-20T08:17:29Z urn:sha1:c9443c01208377f0cba9706412ea3a98ad97b56d Trade deduplication of code for a bunch of new virtuals, so it is actually visible how the different indexes behave cleaning up the interface at large in the process. Git-Dch: Ignore add volatile sources support in libapt-pkg 2015-08-10T15:27:59Z David Kalnischkies david@kalnischkies.de 2015-07-18T16:03:54Z urn:sha1:5465192b9aeb1ccea778950ccf2d1b7b32f2cd91 Sources are usually defined in sources.list (and co) and are pretty stable, but once in a while a frontend might want to add an additional "source" like a local .deb file to install this package (No support for 'real' sources being added this way as this is a multistep process). We had a hack in place to allow apt-get and apt to pull this of for a short while now, but other frontends are either left in the cold by this and/or the code for it looks dirty with FIXMEs plastering it and has on top of this also some problems (like including these 'volatile' sources in the srcpkgcache.bin file). So the biggest part in this commit is actually the rewrite of the cache generation as it is now potentially a three step process. The biggest problem with adding support now through is that this makes a bunch of previously mostly unusable by externs and therefore hidden classes public, so a bit of further tuneing on this now public API is in order… implement Signed-By option for sources.list 2015-08-10T15:25:26Z David Kalnischkies david@kalnischkies.de 2015-06-24T17:31:22Z urn:sha1:b0d408547734100bf86781615f546487ecf390d9 Limits which key(s) can be used to sign a repository. Not immensely useful from a security perspective all by itself, but if the user has additional measures in place to confine a repository (like pinning) an attacker who gets the key for such a repository is limited to its potential and can't use the key to sign its attacks for an other (maybe less limited) repository… (yes, this is as weak as it sounds, but having the capability might come in handy for implementing other stuff later). fix memory leaks reported by -fsanitize 2015-08-10T15:25:25Z David Kalnischkies david@kalnischkies.de 2015-06-18T15:33:15Z urn:sha1:3d8232bf97ce11818fb07813a71136484ea1a44a Various small leaks here and there. Nothing particularily big, but still good to fix. Found by the sanitizers while running our testcases. Reported-By: gcc -fsanitize Git-Dch: Ignore