apt/test, branch 1.3_rc2 Debians commandline package manager https://git.kalnischkies.de/apt/atom?h=1.3_rc2 2016-08-17T19:53:05Z methods: read config in most to least specific order 2016-08-17T19:53:05Z David Kalnischkies david@kalnischkies.de 2016-08-17T19:53:05Z urn:sha1:d1bdb73a96d01896ec8e213a0f14abc38d19a929 The implementation of the generic config fallback did the fallback in the wrong order so that the least specific option wasn't the last value picked but in fact the first one… doh! So in the bugreports case http -> https -> http::<hostname> -> https::<hostname> while it should have been the reverse as before. Regression-In: 30060442025824c491f58887ca7369f3c572fa57 Closes: 834642 add --with-source option and Packages/Sources support 2016-08-17T12:12:25Z David Kalnischkies david@kalnischkies.de 2016-08-16T18:08:29Z urn:sha1:8bd823d0a1f7e08ad94a7110bb118f73348133a1 We support "./foobar.deb" as a way to install a deb file directly. Recently .changes files were added. This highlights a problem as you can't add the changes file without also trying to install all of them. Now, it could also be handy to add entire Packages/Sources files to perhaps get a bunch of packages in without installing them all implicitly. This commit introduces --with-source which allows to add *.deb, *.changes, *.dsc, source-dirs, Packages & Sources files (the later can also be compressed) without also installing them. allow spaces in fingerprints for 'apt-key del' 2016-08-17T12:12:24Z David Kalnischkies david@kalnischkies.de 2016-08-17T06:10:29Z urn:sha1:e289907f5e7241034cb0d37055dc2cba4e3a19af Fingerprints tend to be displayed in space-separated octet pairs so be nice and allow delete to remove a key based on such a string rather than requiring that the user is deleting all the spaces manually. add the gpg-classic variant to the gpgv/gnupg or-group 2016-08-17T07:52:32Z David Kalnischkies david@kalnischkies.de 2016-08-16T13:46:19Z urn:sha1:19fdf93d7363261227811a62157063081b9f1a5d We need to support partial upgrades anyhow, so we have to deal with the different versions and your tests try to ensure that we do, so we shouldn't make any explicit higher requirements. tests: update self-sigs on our test keys 2016-08-17T05:55:46Z David Kalnischkies david@kalnischkies.de 2016-08-16T11:42:30Z urn:sha1:d6e9ec719e2824db0b90f344f71b6e853df05627 gpg upstream committed "gpgv: Tweak default options for extra security." applied on the 1.x and 2.x branches: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=e32c575e0f3704e7563048eea6d26844bdfc494b This commit includes "[…], but we should validate the key by its self signature for primary key, and back signature for subkey." Our testkeys are old and do not really considered best practices in the last years, so their most recent self-signature is SHA1-only which with this gpg commit and our testcases defaulting to --weak-digest sha1 are refused. So what we do here is just applying some of the recent best practices on top of our testcase keys. Gbp-Dch: Ignore tests: set source directory for gdb 2016-08-17T05:55:46Z David Kalnischkies david@kalnischkies.de 2016-08-16T05:38:18Z urn:sha1:f036d9bb539a5ed2b4c43a0c26a9cdfa5671298b Helps interactive gdb calls find the source code. Gbp-Dch: Ignore support compression and by-hash for .diff/Index files 2016-08-17T05:55:46Z David Kalnischkies david@kalnischkies.de 2016-08-16T05:47:44Z urn:sha1:77e274f5ad23d79294f28ecc9868fc6f534214a4 In af81ab9030229b4ce6cbe28f0f0831d4896fda01 by-hash got implemented as a special compression type for our usual index files like Packages. Missing in this scheme was the special .diff/Index index file containing the info about individual patches for this index file. Deriving from the index file class directly we inherent the compression handling infrastructure and in this way also by-hash nearly for free. Closes: #824926 retry without same redirection mirror on 404 errors 2016-08-17T05:55:45Z David Kalnischkies david@kalnischkies.de 2016-08-14T11:12:08Z urn:sha1:ad9416611ab83f7799f2dcb4bf7f3ef30e9fe6f8 If 9b8034a9fd40b4d05075fda719e61f6eb4c45678 serves the Release files from a partial mirror we will end up getting 404 for some of the indexes. Instead of giving up, we will instead ignore our same redirection mirror constrain and ask the redirection service as a potential hashsum mismatch is better than keeping the certain 404 error. don't sent Range requests if we know its not accepted 2016-08-16T16:49:37Z David Kalnischkies david@kalnischkies.de 2016-08-11T16:24:35Z urn:sha1:d94b1d80d8326334d17f6a43061368e783b8e0aa If the server told us in a previous request that it isn't supporting Ranges with bytes via an Accept-Ranges header missing bytes, we don't try to formulate requests using Ranges. http(s): allow empty values for header fields 2016-08-13T06:49:35Z David Kalnischkies david@kalnischkies.de 2016-08-12T20:13:09Z urn:sha1:148c049150cc39f2e40894c1684dc2aefea1117e It seems completely pointless from a server-POV to sent empty header fields, so most of them don't do it (simply proven by this limitation existing since day one) – but it is technically allowed by the RFC as the surounding whitespaces are optional and Github seems to like sending "X-Geo-Block-List:\r\n" since recently (bug reports in other http clients indicate July) at least sometimes as the reporter claims to have seen it on https only even through it can happen with both. Closes: 834048