| Commit message (Collapse) | Author | Age | Files | Lines |
| | |
|
| |
|
|
|
| |
Some manual editing, as riscv64 and mips64el are not yet built
in exp2
|
| | |
|
| | |
|
| |
|
|
|
| |
These templates are all inline and there is not much sense
exposing their vtables and typeinfo publicly.
|
| |
|
|
| |
Final ABI cleanup before unstable?!
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
This reflows the documentation po files now using the latest
gettext.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |\
| |
| |
| |
| | |
d/t/control: Don't depend on gdb-minimal.
See merge request apt-team/apt!429
|
| | |
| |
| |
| |
| |
| |
| |
| | |
gdb-minimal will soon be dropped from the archive; it doesn't offer
any advantages over the gdb binary package. Just depend on gdb
directly.
Signed-off-by: Sergio Durigan Junior <sergiodj@debian.org>
|
| | |
| |
| |
| | |
References: fd3684cdbc165ceaa635ed19fcbd231f509b0179
|
| | |
| |
| |
| |
| | |
References: f4e0e9daf221e840e122b0ffa97007aa512020a6
Closes: #1091344
|
| |/
|
|
| |
References: a00fbbdb28cc31e78882301c2efe7218583ab4cb
|
| |
|
|
| |
I typoed that.
|
| |
|
|
|
|
| |
We updated po/ with libunistring 1.3 as before, but had no
doc changes since the manual update with libunstring 1.2,
so no churn there. Hooray.
|
| |
|
|
|
| |
SUSE's Open Build Service is signing multiple repositories using
v3 signing keys.
|
| | |
|
| |
|
|
|
|
|
| |
This will restore most of the symbols from before and ensure
reverse dependencies not depending on new symbols can migrate.
It also ensures we see any missing symbols.
|
| |
|
|
|
|
|
|
|
|
| |
Somehow InsertErrno was wrongly formatted as
symbol 0.8.11.4 1
and that caused dedup to miss-handle it. The 2.9.19 merge
fixes that but kept "1" as the version, change it to say
0.8.11.4 instead.
|
| | |
|
| |\ |
|
| | |
| |
| |
| |
| |
| |
| | |
Hand edit 2.7.14build2 to 2.7.14
The funny 999:0misbuilt version number gets auto-reduced to
the current version when building which is sad, but it works.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Our goal is for each platform to have one blessed OpenPGP verification
system: Platforms that support sqv get sqv, platforms that don't get
gpgv. To do so we hardcode the architecture list at build time.
At build time we check if /usr/bin/sqv exists, which is the condition
that apt uses to see if it should build with sqv support.
We use a slight hack here to build with sqv on the official Debian
buildds but use gpgv on Ubuntu by abusing the fact that Ubuntu
resolves alternative build dependencies, and gpgv is installed
in the buildd image.
|
| |/
|
|
|
|
|
|
| |
Many repositories still have SHA-1 self-signatures, and they are not
security relevant for APT repositories in the first place since we
do not use a web of trust model, but rather a set of trusted keyrings,
and the subkey can essentially be always considered trusted even if
it cannot be verified.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Introduce an OpenSSL::Crypto backend for the hashes library
and an OpenSSL::SSL backend for the TLS support in our https
method.
Many thanks to curl for showing the way with how to handle
a CRL file. There are some memory leaks here with the
TlsFd itself as well as the proxy support; and we should
reorganize the code to generate the ssl object as late
as possible.
A peculiar aspect of OpenSSL is that SSL_has_pending() returns
1 even if SSL_read() will fail to read anything and return the
equivalent of EAGAIN. We work around this here by also peeking
ahead 1 byte. I was running a very high RTT connection from
Germany to Australia for testing, and with the peeking it's
using negligible amounts of CPU; before that, it was busy
looping at 100%. Bad OpenSSL!
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Remove the test case for MD5 and expired signatures, as we can't
create them (can't set signing digest, and can't set signature
expiry).
Tests for them have been added to test-method-gpgv instead.
We override sq in a function with cert-store and key-store
set to none.
This supports both sq 0.40 and sq 1.0.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Automatically show the output of `show`, `policy`, `list`,
`search`, `showsrc` in a pager.
The pager setup is inspired by git's pager setup. Notably,
the pager is found using APT_PAGER and PAGER variables.
We wait for the pager to be setup somewhat correctly by
using a notify pipe to figure out whether execvp() was
succesful - then the pipe will read EOF as the other end
got closed by CLOEXEC during exec - or not, then the pipe
will contain an errno.
We set up the correct handlers for signals and exit to close
the fds and wait for the pager. Notably inside the signal
handler we cannot flush our streams, only close them, so
there is some duplication.
We call the InitOutputPager() function from inside the
various Do...() functions rather than setting it up
generally in InitOutput(). Doing so allows us to first
render the progress without a pager, and then setup
the pager for the content only which improves user
experience.
When we setup a pager we also take care to disable
standard input, as we should not be prompting users
while a pager is running (the pager will be reading
from the tty directly). We do this by dup2-ing() a
/dev/null over it; if we just close()d the fd, another
open() might reuse the fd number and problems could
occur.
|
| | |
|
| |
|
|
|
|
|
| |
We move the user configuration section to the top of the manual
page as that is going to be what most are interested in and rewrite
it to cover all the modern ways to configure keys in a succinct
way.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
Oh well I accidentally committed everything from my work email
today but I'm off today ...
|
| | |
|
| | |
|