]> git.saurik.com Git - apt.git/commit - test/integration/test-apt-update-nofallback
Do not allow going from authenticated to unauthenticated repo
authorMichael Vogt <mvo@debian.org>
Fri, 26 Sep 2014 18:59:31 +0000 (20:59 +0200)
committerMichael Vogt <mvo@debian.org>
Fri, 26 Sep 2014 20:27:54 +0000 (22:27 +0200)
commit631a7dc7906a10ccd5f14dcfe42224e6107e11f6
tree0068d6d431c194dee5d8a46d98ec7030e928364a
parentc4ffa0428b617cd844f0f9dfd5d16ae0553675ac
Do not allow going from authenticated to unauthenticated repo

Also rework the way we load the Release file, so it only after
Release.gpg verified the Release file. The rational is that we
never want to load untrusted data into our parsers. Only stuff
verified with gpg or by its hashes get loaded. To load untrusted
data you now need to use apt-get update --allow-unauthenticated.
apt-pkg/acquire-item.cc
apt-pkg/acquire-item.h
test/integration/test-apt-update-nofallback [new file with mode: 0755]