Format: 1.8 Date: Thu, 06 Nov 2014 11:04:29 +0100 Source: apt Binary: apt libapt-pkg4.15 libapt-inst1.6 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https Architecture: source Version: 1.1~exp8ubuntu1~ppa1 Distribution: vivid Urgency: medium Maintainer: Ubuntu Developers Changed-By: Michael Vogt Description: apt - commandline package manager apt-doc - documentation for APT apt-transport-https - https download transport for APT apt-utils - package management related utility programs libapt-inst1.6 - deb package format runtime library libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst libapt-pkg-doc - documentation for APT development libapt-pkg4.15 - package management runtime library Closes: 76442 647001 686221 733028 742578 742882 745036 752327 754436 762889 762898 763004 763033 763379 764055 764066 764737 765458 765951 Launchpad-Bugs-Fixed: 34638 1098738 Changes: apt (1.1~exp8ubuntu1~ppa1) vivid; urgency=low . * merge apt from debian/experimental . apt (1.1~exp8) experimental; urgency=medium . [ Michael Vogt ] * merge unstable upload version 1.0.9.3 * Ensure /etc/apt/auth.conf has _apt:root owner * Use sysconf(_SC_ARG_MAX) to find the size of Dpkg::MaxArgBytes * Only support Translation-* that are listed in the {In,}Release file * Call "Dequeue()" for items in AbortTransaction() to fix race * prepare ABI for feature/socketpair * Bump ABI to 4.15 . [ David Kalnischkies ] * reenable support for -s (and co) in apt-get source (Closes: 742578) * run acquire transactions only once * aborted reverify restores file owner and permission * test if TMPDIR is accessible before using (Closes: 765951) * chown finished partial files earlier * promote filesize to a hashstring . apt (1.1~exp7) experimental; urgency=medium . [ David Kalnischkies ] * don't cleanup cdrom files in apt-get update (Closes: 765458) * ignore Acquire::GzipIndexes for cdrom sources . apt (1.1~exp6) experimental; urgency=medium . [ josch ] * implement the updated build profile spec . [ Michael Vogt ] * methods/rsh.cc: replace strcat with std::string (Closes: #76442) * Add new configallowinsecurerepositories to the test framework . [ Guillem Jover ] * Update Status field values handling . [ David Kalnischkies ] * don't drop privileges if _apt has not enough rights * check for available space, excluding root reserved blocks . apt (1.1~exp5) experimental; urgency=medium . [ Michael Vogt ] * Only rename StatError files in AbortTransaction() * Document Acquire{MaxReleaseFileSize,AllowInsecureRepositories, AllowDowngradeToInsecureRepositories} and --no-allow-insecure-repositories * Fix backward compatiblity of the new pkgAcquireMethod::DropPrivsOrDie() * Change default of Acquire::AllowInsecureRepositories to "true" so that this change is less disruptive, this will be switched to "false" again after jessie . [ David Kalnischkies ] * remove useless pdiff filename output (Closes: 764737) * make --allow-insecure-repositories message an error * display a warning for unsigned repos * trusted=yes sources are secure, we just don't know why . apt (1.1~exp4) experimental; urgency=medium . [ Michael Vogt ] * Merge sid version 1.0.9.2 * feature/acq-trans: - Make apt-get update more transactional by keeping all data from a sources.list line in partial/ until all data is good and only then move it into lists/ in one step - add new -o Debug::Acquire::Transaction=1 debug option * feature/expected-size: Do not download more data in the mehotds than expected if we know the size. For the InRelease/Release/Release.gpg add new Acquire::MaxReleaseFileSize that defaults to 10Mb for now * Verify the the hashes of the downloaded compressed files early * Only load unauthenticated data into our parsers when the user explicitly asked for it via --allow-insecure-repositories (Acquire::AllowInsecureRepositories) * Print warning when trying to use unauthenticated repositories * Use /var/empty as the homedir for _apt * Revert making pkgAcquire::Item::DescURI() "const" to not break API * Do not allow going from a authenticated to unauthenticated repository * Add missing "adduser" dependency (for the new _apt user) Thanks to Russ Allbery (Closes: #763004) * Test if TMPDIR is a directory in apt-key and if not unset it * add early verification for the .diff/Index download * Bump library version to libapt-pkg4.14 * Rework pkgAcqMeta{Index,Sig,ClearSig}::{Done,Failed]() for readability * Ignore EINVAL from prctl(PR_SET_NO_NEW_PRIVS) (closes: 764066) . [ David Kalnischkies ] * deprecate Pkg->Name in favor of Grp->Name * drop stored StringItems in favor of in-memory mappings * de-duplicate version strings in the cache * fix progress output for (dist-)upgrade calculation * move PCI::From* methods into CacheSetHelper class (Closes: 686221) * add a (hidden) --quiet option for apt-key * only create new trusted.gpg if directory is writeable * support (multiple) arguments properly in apt-key * set a primary-keyring only if we have access to it * merge fragment keyrings in apt-key to avoid hitting gpg limits (Closes: 733028) * use apt-key adv (+ gnupg) instead of gpgv for verify * support gnupg2 as drop-in replacement for gnupg * allow to specify fingerprints in 'apt-key del' * use only one --keyring in gpg interactions * add and use 'apt-key verify' which prefers gpgv over gpg * remove empty keyrings in trusted.gpg.d on upgrade * store source name and version in binary cache * allow fetcher setup without directory creation (Closes: 762898) * cleanup partial directory of lists in apt-get clean (Closes: #762889) * allow options between command and -- on commandline * update symbols file * support parsing of all hashes for pdiff * ensure world-readability for trusted.gpg in postinst (Closes: 647001) * ensure partial dirs are 0700 and owned by _apt:root * use _apt:root only for partial directories * display errortext for all Err * set PR_SET_NO_NEW_PRIVS also if run as non-root . [ James McCoy ] * ensure apt-key del handles 16-byte key ids (Closes: 754436) . [ Kenshi Muto ] * Japanese program translation update (Closes: 763033) . [ Trần Ngọc Quân ] * Set STRIP_FROM_PATH for doxygen . [ Mert Dirik ] * Turkish program translation update (Closes: 763379) . [ Guillem Jover ] * apt-get: Create the temporary downloaded changelog inside tmpdir . [ Miroslav Kure ] * [l10n] Updated Czech translation of apt (Closes: #764055) . apt (1.1~exp3) experimental; urgency=medium . [ Michael Vogt ] * merged changes from debian/sid up to 1.0.9.1 * Make /var/lib/apt/lists and /var/cache/apt/archives owned by the new _apt user * Drop Privileges in the following acquire methods: copy, http, https, ftp, gpgv, gzip/bzip2/lzma/xz * DropPrivs: Improvements based on feedback from error@debian.org . [ Julian Andres Klode ] * DropPriv: Really call seteuid and not setuid, and add more checks * Use _apt as our unprivileged user name * DropPrivs: Also check for saved set-user-ID and set-group-ID * methods: Fail if we cannot drop privileges * DropPrivs: Also check for saved set-user-ID and set-group-ID . apt (1.1~exp2) experimental; urgency=medium . [ Guillem Jover ] * Add new Base256ToNum long long overload function * Fix ar and tar code to be LFS-safe (Closes: #742882) . [ Michael Vogt ] * increase libapt-inst to version 1.6 * Only allow "apt-get build-dep path" when path starts with ./ or / * Allow passing a full path to apt-get install /foo/bar.deb (CLoses: #752327) * merge changes from the 1.0.6 upload . apt (1.1~exp1) experimental; urgency=low . [ David Kalnischkies ] * [API Break] change "std::string pkgAcquire::Item::DescURI()" to "std::string pkgAcquire::Item::DescURI() const" * [ABI-Break] increase hashtable size for packages/groups by factor 5 * [ABI-Break] cleanup datatypes mix used in binary cache * [internal API-Break] remove the Section member from package struct * use 'best' hash for source authentication (LP: 1098738) * use HashStringList in the acquire system * deal with hashes in ftparchive more dynamic as well * reenable pipelining via hashsum reordering support * parse and retrieve multiple Descriptions in one record * improve pkgTagSection scanning and parsing * invalid cache if architecture set doesn't match (Closes: 745036) . [ Michael Vogt ] * add support for "apt-get build-dep foo.dsc" * add support for "apt-get build-dep unpacked-source-dir" * add support for "apt-get install foo_1.0_all.deb" * make "apt-get update" progress much more accurate by loading the sizes of the targets into the fetcher early * Implement simple by-hash for apt update to improve reliability of the update. Apt will try to fetch the Packages file via /by-hash/$hash_type/$hash_value if the repo supports that. - add APT::Acquire::$(host)::By-Hash=1 knob - add Acquire-By-Hash=1 to Release file * add Debug::Acquire::Progress debug option * [ABI-Break] lp:~mvo/apt/source-hashes: - use sha{512,256,1} for deb-src when available LP: #1098738 * [ABI-Break] stop exporting the accidently exported parsenetrc() symbol * [ABI-Break] remove the PACKAGE_MATCHER_ABI_COMPAT defines * [ABI BREAK] apt-pkg/pkgcache.h: - adjust pkgCache::State::VerPriority enum, to match reality * test/integration/test-debsrc-hashes: - add integration test, thanks to Daniel Hartwig * [ABI-Break] remove the PACKAGE_MATCHER_ABI_COMPAT defines * [ABI-Break] Pass struct IndexTarget/indexRecords to pkgAcqIndex{,Merge}Diffs * [internal API-Break] rename pkgCache::Package::NextPackage to pkgCache::Package::Next * Calculate Percent as part of pkgAcquireStatus to provide a weighted percent for both items and bytes * apt-pkg/contrib/macros.h: bump library version to 4.13 * apt-private/acqprogress.cc: do not show file size on IMSHit, it wasn't fetched * Fix warnings from clang -Wall/clang -fsanitize=address * add DropPrivs() and drop privileges to nobody when running the the buildin apt and dump solvers * lp:~mvo/apt/webserver-simulate-broken-with-fix346386: - fix invalid InRelease file download checking and add regression test to server broken files to the buildin test webserver - add regression test for LP: #34638 Checksums-Sha1: 168b057f793723f7a4bb3e6f6c24ab51a13729c2 2484 apt_1.1~exp8ubuntu1~ppa1.dsc 9fb2513614a7066d523de582c811e1da33364f38 1861580 apt_1.1~exp8ubuntu1~ppa1.tar.xz Checksums-Sha256: 21fa58b40c7cbc6a33c38c02855a951bec3b24d63de1c9631551d74b641f2fb3 2484 apt_1.1~exp8ubuntu1~ppa1.dsc f117a9fd9c3652edd5889a490c14d14b0229ad679032279096134484a3e58211 1861580 apt_1.1~exp8ubuntu1~ppa1.tar.xz Files: 165c268ef206e33b6b58787e0d442ee7 2484 admin important apt_1.1~exp8ubuntu1~ppa1.dsc c5abf47ec2bd1ecff0f81cf9fdf25861 1861580 admin important apt_1.1~exp8ubuntu1~ppa1.tar.xz Original-Maintainer: APT Development Team