Age | Commit message (Expand) | Author |
2016-06-22 | add insecure (and weak) allow-options for sources.list | David Kalnischkies |
2016-05-04 | tests: disable generation of Release.gpg by default | David Kalnischkies |
2016-05-04 | tests: allow to disable generation of InRelease/Release.gpg file | David Kalnischkies |
2016-05-01 | support Signed-By in Release files as a sort of HPKP | David Kalnischkies |
2016-05-01 | support multiple fingerprints in signed-by | David Kalnischkies |
2016-05-01 | don't show NO_PUBKEY warning if repo is signed by another key | David Kalnischkies |
2016-05-01 | gpgv: handle expired sig as worthless | David Kalnischkies |
2016-05-01 | gpgv: use EXPKEYSIG instead of KEYEXPIRED | David Kalnischkies |
2016-03-28 | Allow lowering trust level of a hash via config | Julian Andres Klode |
2016-03-22 | handle gpgv's weak-digests ERRSIG | David Kalnischkies |
2016-03-21 | properly check for "all good sigs are weak" | David Kalnischkies |
2015-12-19 | tests: support spaces in path and TMPDIR | David Kalnischkies |
2015-09-15 | tests: don't use hardcoded port for http and https | David Kalnischkies |
2015-09-14 | tests: try to support spaces in TMPDIR | David Kalnischkies |
2015-08-27 | fix various typos reported by codespell | David Kalnischkies |
2015-08-14 | Replace --force-yes by various options starting with --allow | Julian Andres Klode |
2015-08-10 | show or-groups in not-installed recommends and suggests lists | David Kalnischkies |
2015-08-10 | implement Signed-By without using gpg for verification | David Kalnischkies |
2015-08-10 | implement Signed-By option for sources.list | David Kalnischkies |
2015-06-11 | show URI.Path in all acquire item descriptions | David Kalnischkies |
2015-05-18 | treat older Release files than we already have as an IMSHit | David Kalnischkies |
2015-03-16 | test exitcode as well as string equality | David Kalnischkies |
2014-10-01 | update test/integration/test-releasefile-verification | Michael Vogt |
2013-11-30 | tests: add a webserverconfig method to abstract config | David Kalnischkies |
2013-10-01 | retry without partial data after a 416 response | David Kalnischkies |
2013-08-28 | configurable compression for testcases | David Kalnischkies |
2013-08-12 | test Release file handling with expired keys | David Kalnischkies |
2013-06-24 | simple fork and pidfile aptwebserver | David Kalnischkies |
2013-05-08 | merged patch from Daniel Hartwig to fix URI and proxy releated issues | Michael Vogt |
2013-03-14 | * SECURITY UPDATE: InRelease verification bypass0.9.7.8 | Michael Vogt |
2012-04-11 | fix the remaining lzma calls with xz --format=lzma in the testcases | David Kalnischkies |
2012-03-03 | testcase for CVE-2012-0214 | Simon Ruderich |
2011-08-22 | remove the caches in 'apt-get update', too, as they will be | David Kalnischkies |
2011-01-20 | - try downloading clearsigned InRelease before trying Release.gpg | David Kalnischkies |