| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Allow restart_syscall() syscall in seccomp sandboxes | Julian Andres Klode | 2018-04-06 | 1 | -0/+1 |
| * | Turn off seccomp sandboxing by default | Julian Andres Klode | 2018-04-06 | 1 | -1/+1 |
| * | use a more standard approach to disable security for cdrom method | David Kalnischkies | 2018-02-19 | 1 | -2/+8 |
| * | non-local mirrorlists shouldn't redirect to local | David Kalnischkies | 2018-01-03 | 2 | -3/+47 |
| * | add tag-based control over mirror choices from the list | David Kalnischkies | 2018-01-03 | 1 | -34/+103 |
| * | require methods to request AuxRequest capability at startup | David Kalnischkies | 2018-01-03 | 1 | -1/+1 |
| * | reimplement and simplify mirror:// method | David Kalnischkies | 2018-01-03 | 6 | -478/+251 |
| * | Correctly report transient errors again | Julian Andres Klode | 2018-01-03 | 1 | -4/+8 |
| * | Add rapid "happy eyeballs" connection fallback (RFC 8305) | Julian Andres Klode | 2018-01-03 | 1 | -26/+100 |
| * | connect: Extract Connection::CheckError() method | Julian Andres Klode | 2018-01-03 | 1 | -0/+6 |
| * | connect: Store the IP used when picking a connection | Julian Andres Klode | 2018-01-03 | 1 | -9/+5 |
| * | connect: Extract a Connection struct | Julian Andres Klode | 2018-01-03 | 1 | -8/+36 |
| * | connect: Alternate address families for addresses | Julian Andres Klode | 2018-01-03 | 1 | -24/+48 |
| * | report transient errors as transient errors | David Kalnischkies | 2017-12-13 | 9 | -232/+433 |
| * | mark some 500 HTTP codes as transient acquire errors | David Kalnischkies | 2017-12-13 | 1 | -1/+13 |
| * | avoid some useless casts reported by -Wuseless-cast | David Kalnischkies | 2017-12-13 | 1 | -1/+1 |
| * | Also look at https_proxy for https URLs | Julian Andres Klode | 2017-11-19 | 1 | -4/+13 |
| * | Do not attempt seccomp under qemu-user and drop EFAULT workaround | Julian Andres Klode | 2017-11-12 | 1 | -1/+37 |
| * | seccomp: Allow clock_nanosleep() and nanosleep() syscalls | Julian Andres Klode | 2017-10-27 | 1 | -0/+2 |
| * | Drop unused gzip, lzma, bzip2, and xz symlinks of store | Julian Andres Klode | 2017-10-26 | 1 | -1/+1 |
| * | seccomp: Allow ipc() for fakeroot, and allow sysinfo() for sort | Julian Andres Klode | 2017-10-26 | 1 | -0/+2 |
| * | Print syscall number and arch to stderr when trapped by seccomp | Julian Andres Klode | 2017-10-26 | 1 | -0/+33 |
| * | Only warn about seccomp() EINVAL (normal) and EFAULT (qemu) errors | Julian Andres Klode | 2017-10-25 | 1 | -3/+5 |
| * | methods: Enable additional syscalls (SYSV IPC) in fakeroot | Julian Andres Klode | 2017-10-25 | 1 | -0/+10 |
| * | CMake: methods: Cleanup link libraries, use OBJECT libraries | Julian Andres Klode | 2017-10-23 | 1 | -17/+14 |
| * | seccomp: Conditionalize statx() whitelisting | Julian Andres Klode | 2017-10-23 | 1 | -0/+2 |
| * | seccomp: Add missing syscalls for ppc64el, i386, and others | Julian Andres Klode | 2017-10-23 | 1 | -0/+11 |
| * | Sandbox methods with seccomp-BPF; except cdrom, gpgv, rsh | Julian Andres Klode | 2017-10-22 | 8 | -19/+240 |
| * | methods/basehttp.cc: Remove proxy autodetect debugging code | Julian Andres Klode | 2017-10-22 | 1 | -2/+0 |
| * | methods/mirror: Enable sandboxing and other aptMethod features | Julian Andres Klode | 2017-10-22 | 1 | -1/+1 |
| * | Run Proxy-Auto-Detect script from main process | Julian Andres Klode | 2017-10-22 | 2 | -1/+10 |
| * | proper error reporting for v3 onion services | David Kalnischkies | 2017-09-26 | 1 | -3/+3 |
| * | Drop curl method and apt-transport-https package | Julian Andres Klode | 2017-09-24 | 3 | -655/+1 |
| * | allow the auth.conf to be root:root owned | David Kalnischkies | 2017-07-26 | 7 | -27/+47 |
| * | lookup login info for proxies in auth.conf | David Kalnischkies | 2017-07-26 | 1 | -1/+1 |
| * | reimplement and document auth.conf | David Kalnischkies | 2017-07-26 | 6 | -8/+25 |
| * | fail early in http if server answer is too small as well | David Kalnischkies | 2017-07-26 | 4 | -6/+37 |
| * | fail earlier if server answers with too much data | David Kalnischkies | 2017-07-26 | 3 | -7/+17 |
| * | don't try to parse all fields starting with HTTP as status-line | David Kalnischkies | 2017-07-26 | 1 | -1/+1 |
| * | Reformat and sort all includes with clang-format | Julian Andres Klode | 2017-07-12 | 21 | -96/+95 |
| * | methods/aptmethod.h: Add missing fileutl.h include | Julian Andres Klode | 2017-07-12 | 1 | -0/+1 |
| * | Stop bragging about old speeds in http.cc comments | Julian Andres Klode | 2017-07-03 | 1 | -8/+0 |
| * | don't set ip addresses as server names for SNI | David Kalnischkies | 2017-07-03 | 1 | -2/+12 |
| * | Swap file descriptors before the handshake | Julian Andres Klode | 2017-07-03 | 1 | -2/+4 |
| * | Do not error out, only warn if ca certificates are not available | Julian Andres Klode | 2017-07-03 | 1 | -5/+5 |
| * | tls: Add more details to error messages, and detect more errors | Julian Andres Klode | 2017-07-03 | 1 | -9/+11 |
| * | http: A response with Content-Length: 0 has no content | Julian Andres Klode | 2017-07-01 | 1 | -1/+4 |
| * | Make Verify-Host and Verify-Peer independent again | Julian Andres Klode | 2017-07-01 | 1 | -2/+2 |
| * | TLS support: Error out on unsupported curl options | Julian Andres Klode | 2017-06-30 | 1 | -2/+4 |
| * | Improve closing the TLS connection | Julian Andres Klode | 2017-06-30 | 1 | -3/+3 |
