summaryrefslogtreecommitdiff
path: root/apt-pkg
AgeCommit message (Collapse)Author
2012-04-21* apt-pkg/contrib/strutl.cc:David Kalnischkies
- remove the message size limit from ioprintf and strprintf
2012-04-20merged from bzr+ssh://bazaar.launchpad.net/~donkult/apt/sid/Michael Vogt
2012-04-20fix a bug uncovered by the previous commit which checks if a CompressorDavid Kalnischkies
preference given by the Order setting is really available before adding it as possible CompressionType.
2012-04-20merged from lp:~donkult/apt/sidMichael Vogt
2012-04-20* apt-pkg/cacheset.cc:David Kalnischkies
- actually return to the fallback modifier if we have detected we should for packagenames which look like modifiers (Closes: #669591)
2012-04-20* apt-pkg/contrib/sha2_internal.cc:David Kalnischkies
- do not use the input data directly but memcpy it instead as it could be unaligned as in the http-transport which causes a sigbus error on sparc (Closes: #669061)
2012-04-20* apt-pkg/aptconfiguration.cc:David Kalnischkies
- if the compressor is not installed, but we link against it's library accept it as a CompressionType (Closes: #669328)
2012-04-20merge from the lp:~mvo/apt/mvo branchMichael Vogt
2012-04-20cherry pick r1975 from lp:~ubuntu-core-dev/apt/ubuntuMichael Vogt
2012-04-19* apt-pkg/packagemanager.cc:Malcolm Scott
- iterate over all pre-depends or-group member instead of looping endlessly over the first member in SmartUnpack (LP: #985852)
2012-04-19* apt-pkg/contrib/fileutl.cc:David Kalnischkies
- redirect stderr from compressors to /dev/null
2012-04-18* apt-pkg/deb/deblistparser.cc:David Kalnischkies
- only treat the native apt as essential by default
2012-04-17newer gcc versions seems to have no problem with that, but while workingDavid Kalnischkies
with g++-4.1 it complains about this so lets be extra clear
2012-04-16* apt-pkg/packagemanager.cc:David Kalnischkies
- init counter in SmartConfigure so that the loop-breaker isn't triggered at random… (Closes: #669060)
2012-04-12apt-pkg/packagemanager.cc: tweak MaxLoopCount to 500 and improve the error ↵Michael Vogt
message
2012-04-11merged from donkults experimental branchMichael Vogt
2012-04-11use a static FileFd::Write overload to reduce duplication of write()-retry codeDavid Kalnischkies
2012-04-11use xz-utils in the testcases instead of lzma and ensure that we reallyDavid Kalnischkies
ignore the presents (or absence) of lzma if we decided to use xz
2012-04-05 - add libbz2-dev as new build-dependencyDavid Kalnischkies
- remove the libz-dev alternative from zlib1g-dev build-dependency - do the same for bz2 builtin if available * apt-pkg/contrib/fileutl.cc: - use libz2 library for (de)compression instead of the bzip2 binary as the first is a dependency of dpkg and the later just priority:optional so we gain 'easier' access to bz2-compressed Translation files this way
2012-04-05if we have zlib builtin insert add a dummy gzip compressor for FileFDDavid Kalnischkies
2012-04-05* apt-pkg/aptconfiguration.cc:David Kalnischkies
- if present, prefer xz binary over lzma
2012-04-05detect zlib correctly. We still don't allow to build without it to remainDavid Kalnischkies
compatible with users accessing it directly, but this prepares for a drop of this strict requirement in the future
2012-03-27* apt-pkg/deb/dpkgpm.cc:Michael Vogt
- do not crash if (*I).Pkg is NULL (LP: #939867)
2012-03-22make these retry_write methods static so that they don't end up as symbolsDavid Kalnischkies
2012-03-22the previously used VERSION didn't work everywhere so we are switchingDavid Kalnischkies
to the more standard PACKAGE_VERSION and make it work in every file
2012-03-20* methods/rred.cc:David Kalnischkies
- check return of writev() as gcc recommends * methods/mirror.cc: - check return of chdir() as gcc recommends * apt-pkg/deb/dpkgpm.cc: - check return of write() a gcc recommends * apt-inst/deb/debfile.cc: - check return of chdir() as gcc recommends * apt-inst/deb/dpkgdb.cc: - check return of chdir() as gcc recommends
2012-03-20* apt-pkg/acquire-worker.cc:David Kalnischkies
- check return of write() as gcc recommends * apt-pkg/acquire.cc: - check return of write() as gcc recommends * apt-pkg/cdrom.cc: - check return of chdir() and link() as gcc recommends * apt-pkg/clean.cc: - check return of chdir() as gcc recommends * apt-pkg/contrib/netrc.cc: - check return of asprintf() as gcc recommends
2012-03-13add APT::pkgPackageManager::MaxLoopCount to ensure that theMichael Vogt
ordering code does not get into a endless loop when it flip-flops between two states
2012-03-13merged from lp:~donkult/apt/experimentalMichael Vogt
2012-03-13recheck dependencies in SmartUnpack after a change, tooDavid Kalnischkies
2012-03-13* apt-pkg/packagemanager.cc:David Kalnischkies
- recheck all dependencies if we changed a package in SmartConfigure as this could break an earlier dependency (LP: #940396)
2012-03-12ensure that the fullname of a package is displayed in the debug outputDavid Kalnischkies
2012-03-07show which dependency couldn't be satisfied in the debug outputDavid Kalnischkies
2012-03-07* apt-pkg/packagemanager.cc:Michael Vogt
- fix inconsistent clog/cout usage in the debug output
2012-03-06add Debug::pkgAcqArchive::NoQueue to disable package downloadingDavid Kalnischkies
2012-03-06merge with apt/experimentalDavid Kalnischkies
* apt-pkg/packagemanager.cc: - fix bug in predepends handling - ensure that packages that needs unpackaging are unpacked before they are configured (LP: #927993) [ Julian Andres Klode ] * apt-pkg/deb/deblistparser.cc: - Set the Essential flag on APT instead of only Important * apt-pkg/packagemanager.cc: - Do not use immediate configuration for packages with the Important flag * Treat the Important flag like the Essential flag with those differences: - No Immediate configuration (see above) - Not automatically installed during dist-upgrade - No higher score for installation ordering
2012-03-06* apt-pkg/packagemanager.cc:Michael Vogt
- fix bug in predepends handling - ensure that packages that needs unpackaging are unpacked before they are configured (LP: #927993)
2012-03-06* apt-pkg/contrib/fileutl.cc:David Kalnischkies
- do not warn about the ignoring of directories (Closes: #662762)
2012-03-05* Treat the Important flag like the Essential flag with two differences:Julian Andres Klode
- No Immediate configuration (see above) - Not automatically installed during dist-upgrade
2012-03-05* apt-pkg/packagemanager.cc:Julian Andres Klode
- Do not use immediate configuration for packages with the Important flag
2012-03-05* apt-pkg/deb/deblistparser.cc:Julian Andres Klode
- Set the Essential flag on APT instead of only Important
2012-03-05as we parse datestrings from external sources a lot specify the lengthDavid Kalnischkies
of the integer fields as well to avoid crashes in scanf as cppchecks warns: "(warning) scanf without field width limits can crash with huge input data"
2012-03-05set char-limits for the scanf parsing previous crash-reportsDavid Kalnischkies
2012-03-04fix a bunch of cppcheck "(warning) Member variable '<#>' is notDavid Kalnischkies
initialized in the constructor." messages (no functional change)
2012-03-04handle a SIGINT in all modes as a break after the currently runningDavid Kalnischkies
dpkg transaction instead of ignoring it completely
2012-03-04* apt-pkg/acquire-item.cc:David Kalnischkies
- remove 'old' InRelease file if we can't get a new one before proceeding with Release.gpg to avoid the false impression of a still trusted repository by a (still present) old InRelease file. Thanks to Simon Ruderich for reporting this issue! (CVE-2012-0214) Effected are all versions >= 0.8.11 Possible attack summary: - Attacker needs to find a user which has run at least one successful 'apt-get update' against an archive providing InRelease files. - Create a Packages file with his preferred content. - Attacker then prevents the download of InRelease, Release and Release.gpg (alternatively he creates a valid Release file and sends this, the other two files need to be missing either way). - User updates against this, getting the modified Packages file without any indication of being unsigned (beside the "Ign InRelease" and "Ign Release.gpg" in the output of 'apt-get update'). => deb files from this source are considered 'trusted' (and therefore the user isn't asked for an additional confirmation before install)
2012-03-03* apt-pkg/packagemanager.cc:David Kalnischkies
- do not try to a void a breaks if the broken package pre-depends on the breaker, but let dpkg auto-deconfigure it
2012-03-03show in the debug output if we are looping in the avoid breaksDavid Kalnischkies
2012-03-03eanup the ordering-code avoiding a break (no function change)David Kalnischkies
2012-03-02* apt-pkg/packagemanager.cc:Michael Vogt
- when calculating pre-dependencies ensure that both unpack and configure are considered (instead of only configure) LP: #927993