Add a new real parsed Tag field
Dpkg::Source::Quilt: Refactor register() and unregister() methods
Refactor the code out from Dpkg::Source::Package::V3::Quilt into two new
methods that take care of registering and unregistering a patch from the
series and applied_patches in-core and on-disk lists.
Refactor the code out from Dpkg::Source::Package::V3::Quilt into two new
methods that take care of registering and unregistering a patch from the
series and applied_patches in-core and on-disk lists.
Dpkg::Source::Package::V3::Quilt: Handle series files with no final newline
Do not mangle the series files when the last line is missing a newline,
by loading and saving the file with the added patch. This is quite ugly
in general, but fixes the immediate problem. The code will be getting a
general overhaul in due time.
Closes: #584233
Do not mangle the series files when the last line is missing a newline,
by loading and saving the file with the added patch. This is quite ugly
in general, but fixes the immediate problem. The code will be getting a
general overhaul in due time.
Closes: #584233
Dpkg::Source::Package::V3::Quilt: Refactor _load_file()
Dpkg::Source::Quilt: Rename write_db() to save_db()
This is the normal counterpart to load actions.
This is the normal counterpart to load actions.
Dpkg::Source::Quilt: Refactor write_patch_list()
Dpkg::Source::Quilt: Add minimal test case
Dpkg::Deps::Multiple: Add profile_is_concerned() and reduce_profiles() methods
These got missed in commit 7662e0937bb064a0754d12605d80a96a17e2aadf.
The current dpkg code is not using those methods, but external programs
might need them.
These got missed in commit 7662e0937bb064a0754d12605d80a96a17e2aadf.
The current dpkg code is not using those methods, but external programs
might need them.
Dpkg::Deps: Add test cases for OR relationships
Dpkg: Update and fix CHANGES POD sections
Do not use actual POD =item, just normal paragraphs. Split items in
different paragraphs. Sort versions in decreasing order. Document
missing changes in public interfaces. Qualify methods with the
variable.
Do not use actual POD =item, just normal paragraphs. Split items in
different paragraphs. Sort versions in decreasing order. Document
missing changes in public interfaces. Qualify methods with the
variable.
Dpkg::Deps: Bump VERSION to 1.03
This was missed in commit e8950d7e2d4a58f96c74782825e2edf7ceb583ca.
This was missed in commit e8950d7e2d4a58f96c74782825e2edf7ceb583ca.
Dpkg::Path: Bump VERSION to 1.03
This was missed in commit eb4bb268ab954748d015626a216f46f632f2371a.
This was missed in commit eb4bb268ab954748d015626a216f46f632f2371a.
dpkg-buildpackage: Add support for automatic parallel jobs selection
This adds support to automatically set the number of jobs to be used by
the build process to match the number of online processors, with the new
-j argument «auto».
It will try to infer the number of processors from getconf(1), but the
system might not support the configuration variable, in which case it
will fallback to not having any limit when passing the -j option to
make.
This adds support to automatically set the number of jobs to be used by
the build process to match the number of online processors, with the new
-j argument «auto».
It will try to infer the number of processors from getconf(1), but the
system might not support the configuration variable, in which case it
will fallback to not having any limit when passing the -j option to
make.
dpkg-buildpackage(1): Document that the -j argument is optional
This was clear from the --help output, but not from the man page.
This was clear from the --help output, but not from the man page.
dpkg-gensymbols(1): Improve symbols file maintenance documentation
Add notes about checking for backwards compatibility.
Closes: #746973
Based-on-patch-by: "Bernhard R. Link" <brlink@debian.org>
Add notes about checking for backwards compatibility.
Closes: #746973
Based-on-patch-by: "Bernhard R. Link" <brlink@debian.org>
dpkg-deb(1): Mention deprecation of bzip2 and lzma compressors
deb(5): Change control.tar.gz reference to simply control.tar
deb-src-control(5): Expand Vcs-* into each supported field
This makes it easier to search for the fields in the man page.
This makes it easier to search for the fields in the man page.
man: Remove spurious trailing space from msgstr
This makes po4a emit a warning.
This makes po4a emit a warning.
man: Attempt to clarify and improve wording of some strange constructs
Reported-by: Helge Kreutzmann
Reported-by: Helge Kreutzmann
man: Fix typo
Signed-off-by: Guillem Jover <guillem@debian.org>
Signed-off-by: Guillem Jover <guillem@debian.org>
perl: Fix unused capture groups false positives
These are false positives, as when there's no match perl will leave
the subpattern variables untouched. We'll just use the opportunity to
unconfuse perlcritic, making some of those variable usages more clear
by using intermediate variables.
Fixes RegularExpressions::ProhibitUnusedCapture.
Warned-by: perlcritic
These are false positives, as when there's no match perl will leave
the subpattern variables untouched. We'll just use the opportunity to
unconfuse perlcritic, making some of those variable usages more clear
by using intermediate variables.
Fixes RegularExpressions::ProhibitUnusedCapture.
Warned-by: perlcritic
scripts: Switch unused capturing groups to non-capturing ones
These have better runtime performance, not that it matters in many of
the instances here though.
Addresses RegularExpressions::ProhibitUnusedCapture.
Warned-by: perlcritic
These have better runtime performance, not that it matters in many of
the instances here though.
Addresses RegularExpressions::ProhibitUnusedCapture.
Warned-by: perlcritic
scripts: Use character classes instead of single character alternations
Fixes RegularExpressions::ProhibitSingleCharAlternation.
Warned-by: perlcritic
Fixes RegularExpressions::ProhibitSingleCharAlternation.
Warned-by: perlcritic
scripts: Add template test cases for most modules
This at least tests if the module in question can be use'ed correctly,
and gives a more realistic code coverage report.
The remaining modules should be covered by one of their parents.
This at least tests if the module in question can be use'ed correctly,
and gives a more realistic code coverage report.
The remaining modules should be covered by one of their parents.
perl: Do not use global match variables
Fixes Variables::ProhibitMatchVars.
Warned-by: perlcritic
Fixes Variables::ProhibitMatchVars.
Warned-by: perlcritic
test: Add labels to Test::More tests
Fixes TestingAndDebugging::RequireTestLabels.
Warned-by: perlcritic
Fixes TestingAndDebugging::RequireTestLabels.
Warned-by: perlcritic
dpkg-maintscript-helper: Print only once that we are moving a conffile
Move the printing to the final phase, and skip the intermediate message
that we are moving the file aside for later processing. This information
is redundant and really unnecessary. It also does not match the other
actions in the script.
Closes: #747370
Move the printing to the final phase, and skip the intermediate message
that we are moving the file aside for later processing. This information
is redundant and really unnecessary. It also does not match the other
actions in the script.
Closes: #747370
dpkg-buildpackage: Move code inside s///eg into a function
By using a closure, we makes the code more clear.
By using a closure, we makes the code more clear.
dpkg-architecture: Move -L argument to the Commands --help output section
The -L argument is not an option, it's a full blown command.
The -L argument is not an option, it's a full blown command.
dpkg: Switch an assert() on a volatile variable to an internerr()
The assert() has a side-effect as the variable is volatile, switch it
to an internerr() so that we always get the same result regardless of
the build settings, NDEBUG in this case.
Warned-by: coverity
The assert() has a side-effect as the variable is volatile, switch it
to an internerr() so that we always get the same result regardless of
the build settings, NDEBUG in this case.
Warned-by: coverity
s-s-d: Cope with bogus OpenVZ kernels that prepend the " (deleted)" marker
There are OpenVZ Linux kernels that instead of appending, prepend the
deleted marker, making the exec check fail to match. Add a workaround
so that those systems do not get affected.
This will still be affecting any other userland tool that checks the
/proc/PID/exe symlink, and might end up helping this behaviour to get
entrenched, but better this than the getting strange system failures.
Closes: #731530
There are OpenVZ Linux kernels that instead of appending, prepend the
deleted marker, making the exec check fail to match. Add a workaround
so that those systems do not get affected.
This will still be affecting any other userland tool that checks the
/proc/PID/exe symlink, and might end up helping this behaviour to get
entrenched, but better this than the getting strange system failures.
Closes: #731530
u-a: Switch from alternative_has_choice() to checking if fs is NULL
We are performing the same search twice, let's just reuse the fs pointer
to decide if we have found the choice.
This was confusing coverity, and making it think that
alternative_has_broken_slave() could get fs with a NULL value.
Warned-by: coverity
We are performing the same search twice, let's just reuse the fs pointer
to decide if we have found the choice.
This was confusing coverity, and making it think that
alternative_has_broken_slave() could get fs with a NULL value.
Warned-by: coverity
u-a: Fix TOCTOU race in rename_mv()
This does not have any security implications, but it makes the code
more robust.
Warned-by: coverity
This does not have any security implications, but it makes the code
more robust.
Warned-by: coverity
u-a: Fix TOCTOU race when loading an alternative
This does not have any security implications, but it makes the code
more robust.
Warned-by: coverity
This does not have any security implications, but it makes the code
more robust.
Warned-by: coverity
libdpkg: Fix TOCTOU race in triggers database loading
This is not security sensitive.
Warned-by: coverity
This is not security sensitive.
Warned-by: coverity
libdpkg: Improve branch coverage for string module
libdpkg: Fix memory leaks in buffer_copy() on error conditions
Check for errors from subfunctions and break out of the loop to be able
to release resources. Check also for unexpected EOF only after freeing
resources, so that we don't end up leaking them.
Warned-by: coverity
Check for errors from subfunctions and break out of the loop to be able
to release resources. Check also for unexpected EOF only after freeing
resources, so that we don't end up leaking them.
Warned-by: coverity
libdpkg: Swap deb name and member name in dpkg_ar_member_get_size()
Otherwise we might perform an out of bounds buffer read access in the
error output on bogus member sizes.
Otherwise we might perform an out of bounds buffer read access in the
error output on bogus member sizes.
libdpkg: Make dpkg_locales_init() a public symbol
libdpkg: Add missing dpkg_program_ symbols to the version script
dselect: Fix word wrapping logic
The switch from integer literal to boolean literals botched one of the
assignments, which was turned from 1 to false, fix that now, and stop
turning parts of the code path dead.
Regression introduced in commit cf21cccb98bdb31a84bbe1aa1217c712b47aedd2.
Warned-by: coverity
The switch from integer literal to boolean literals botched one of the
assignments, which was turned from 1 to false, fix that now, and stop
turning parts of the code path dead.
Regression introduced in commit cf21cccb98bdb31a84bbe1aa1217c712b47aedd2.
Warned-by: coverity
build: Switch to use libtool for the static libraries
This makes it possible to embed libcompat inside libdpkg, so that the
static library that we ship is self contained with the required
compatibility code, specifically the MD5 functions.
This also prepares the build system for when we start building a
shared library, although it disables it by default.
Closes: #746122
This makes it possible to embed libcompat inside libdpkg, so that the
static library that we ship is self contained with the required
compatibility code, specifically the MD5 functions.
This also prepares the build system for when we start building a
shared library, although it disables it by default.
Closes: #746122
build: Fix lcov-inject to consider different coverage percentages
The current code was not taking into account the different coverage
ranges, with their different colors, and different images for the
completion bar. Refactor the code into functions, while we are at it.
The current code was not taking into account the different coverage
ranges, with their different colors, and different images for the
completion bar. Refactor the code into functions, while we are at it.
build: Do not use lcov-inject first argument as target directory
All arguments are files to modify.
All arguments are files to modify.
dpkg-source: unpack additional tarballs in a deterministic order
Reported-by: Samuel Bronson <naesten@gmail.com>
Closes: #747148
Reported-by: Samuel Bronson <naesten@gmail.com>
Closes: #747148
Update German translation of manual pages
Update to 2243t.
Update to 2243t.
Bump version to 1.17.10
Release 1.17.9
Regenerate .pot files and merge .po files with them
build: Make test suite errors fatal again
We need to check in the aggregated results if any test had any problem,
and die accordingly.
Regression introduced in commit 34b26c7db232b300991df5fb6f52707b381df28f.
Closes: #746331
We need to check in the aggregated results if any test had any problem,
and die accordingly.
Regression introduced in commit 34b26c7db232b300991df5fb6f52707b381df28f.
Closes: #746331
libdpkg: Mark the command_get_pager() tests on a tty as TODO
The build daemon environment does not expose a controlling terminal.
Mark these as possibly failing and as such non-fatal.
The build daemon environment does not expose a controlling terminal.
Mark these as possibly failing and as such non-fatal.
s-s-d: Fix off-by-one stack buffer overrun on GNU/Linux and GNU/kFreeBSD
This might happen if the executable pathname is longer than
_POSIX_PATH_MAX. Although this should not have security implications
as the buffer is surrounded by two arrays (so those catch accesses
even if the stack grows up or down), and we are compiling with
-fstack-protector anyway.
We just need to always leave room for the final NUL character.
Warned-by: coverity
This might happen if the executable pathname is longer than
_POSIX_PATH_MAX. Although this should not have security implications
as the buffer is surrounded by two arrays (so those catch accesses
even if the stack grows up or down), and we are compiling with
-fstack-protector anyway.
We just need to always leave room for the final NUL character.
Warned-by: coverity
u-a: Fix memory leaks in alternative_parse_fileset()
Free prio_str and master_file.
Warned-by: coverity
Free prio_str and master_file.
Warned-by: coverity
dselect: Assign desc->desc instead of checking if desc is not nullptr
If we've not found any description we end up in the sentinel entry that
contains nullptr for desc->action and desc->desc, but definitely not
nullptr for desc. Just assigning desc->desc will do the right thing.
Warned-by: coverity
If we've not found any description we end up in the sentinel entry that
contains nullptr for desc->action and desc->desc, but definitely not
nullptr for desc. Just assigning desc->desc will do the right thing.
Warned-by: coverity
dselect: Fix memory leak in set_color()
Warned-by: coverity
Warned-by: coverity
dselect: Do not leak keybindings from describenext()
The code affected is currently unused.
Warned-by: coverity
The code affected is currently unused.
Warned-by: coverity
dpkg-split: Fix short lived memory leaks in mksplit()
Warned-by: coverity
Warned-by: coverity
dpkg: Annotate case statements that fall through with a comment
Be explicit, so that code readers or static analyzers do not get
confused.
Warned-by: coverity
Be explicit, so that code readers or static analyzers do not get
confused.
Warned-by: coverity
dpkg: Do not leak the filepackages_iterator in dir_is_used_by_others()
Warned-by: coverity
Warned-by: coverity
libdpkg: Do not leak long tar names on bogus tar archives
Make sure we free the long names, in case of a bogus or truncated
tar archive with long entries not followed by a normal entry.
Warned-by: coverity
Make sure we free the long names, in case of a bogus or truncated
tar archive with long entries not followed by a normal entry.
Warned-by: coverity
libcompat: Make sure P_tmpdir is always defined
This will guarantee the macro constant is always defined, which allows
us to remove an equivalent code branch, which in normal conditions is
dead code.
As a side effect this unconfuses static code analyzers like cppcheck or
coverity.
This will guarantee the macro constant is always defined, which allows
us to remove an equivalent code branch, which in normal conditions is
dead code.
As a side effect this unconfuses static code analyzers like cppcheck or
coverity.
debian: Switch alternative database backups from xz to gzip
Switch the alternatives database backups from xz to gzip, as the latter
is Essential and we can rely on it being always present, using xz here
is not worth the trouble, disk space savings, or possible additional
dependencies.
Closes: #746354
Switch the alternatives database backups from xz to gzip, as the latter
is Essential and we can rely on it being always present, using xz here
is not worth the trouble, disk space savings, or possible additional
dependencies.
Closes: #746354
Dpkg::Source::Patch: Outright reject C-style filenames in patches
Because patch only started recognizing C-style filenames in diffs
in version 2.7, it's not safe to assume one behaviour or the other,
as the system might or might not have a recent enough version, or
a GNU patch program at all. There's also no reason we should be
supporting this kind of strange encoded filenames in patches, when
we have not done so up to now.
Let's just ban these types of diffs and be done with it.
Fixes: CVE-2014-0471
Closes: #746306
Because patch only started recognizing C-style filenames in diffs
in version 2.7, it's not safe to assume one behaviour or the other,
as the system might or might not have a recent enough version, or
a GNU patch program at all. There's also no reason we should be
supporting this kind of strange encoded filenames in patches, when
we have not done so up to now.
Let's just ban these types of diffs and be done with it.
Fixes: CVE-2014-0471
Closes: #746306
Update French scripts translation
Closes: #746350
Signed-off-by: Guillem Jover <guillem@debian.org>
Closes: #746350
Signed-off-by: Guillem Jover <guillem@debian.org>
Fix debian/changelog formatting
Update German translation of manual pages
Update to 2234t4f5u.
Update to 2234t4f5u.
Update German scripts translation
Update to 541t.
Update to 541t.
Update German scripts translation
Update to 541t.
Update to 541t.
Bump version to 1.17.9
Release 1.17.8
Regenerate .pot files and merge .po files with them
Dpkg::Source::Patch: Correctly parse C-style diff filenames
We need to strip the surrounding quotes, and unescape any escape
sequence, so that we check the same files that the patch program will
be using, otherwise a malicious package could overpass those checks,
and perform directory traversal attacks on source package unpacking.
Fixes: CVE-2014-0471
Reported-by: Jakub Wilk <jwilk@debian.org>
We need to strip the surrounding quotes, and unescape any escape
sequence, so that we check the same files that the patch program will
be using, otherwise a malicious package could overpass those checks,
and perform directory traversal attacks on source package unpacking.
Fixes: CVE-2014-0471
Reported-by: Jakub Wilk <jwilk@debian.org>
build: Enable failed test case reporting from the TAP::Harness
Set the «failures» argument for the harness, so that we can get the
failing test case entries, particularly important for the C test suite,
as perl will not report a line number for those.
Set the «failures» argument for the harness, so that we can get the
failing test case entries, particularly important for the C test suite,
as perl will not report a line number for those.
build: Use the perl TAP::Harness for the C test suite
The automake TAP driver only appeared once the parallel test runner
allowed custom drivers after 1.11, which we were not requesting in
the AM_INIT_AUTOMAKE call.
But simply requesting a later version is not good enough, as Debian
stable (wheezy) is still only shipping automake 1.11. Instead just switch
to use the perl TAP::Harness infrastructure for the C test suite too.
Regression introduced in commit d9833ac0b6b66e9dfaff272f6d0a25373bfff091.
The automake TAP driver only appeared once the parallel test runner
allowed custom drivers after 1.11, which we were not requesting in
the AM_INIT_AUTOMAKE call.
But simply requesting a later version is not good enough, as Debian
stable (wheezy) is still only shipping automake 1.11. Instead just switch
to use the perl TAP::Harness infrastructure for the C test suite too.
Regression introduced in commit d9833ac0b6b66e9dfaff272f6d0a25373bfff091.
build: Add new TEST_PREFIX variable to control test case execution paths
This is required as the perl test cases are in srcdir, but C based test
cases are going to be in builddir.
This is required as the perl test cases are in srcdir, but C based test
cases are going to be in builddir.
build: Switch test runner from Test::Harness to TAP::Harness
The latter is the recommended module for new code, the former being just
a compatibility wrapper around it. And it will allow to set more detailed
options for the harness that are not exposed through the Test::Harness
wrapper.
We use a make variable instead of inlining the perl code in the make
recipe due to the way make escapes backslashes inside single-quotes
in recipes, which disturbs the semantics of the perl code.
The latter is the recommended module for new code, the former being just
a compatibility wrapper around it. And it will allow to set more detailed
options for the harness that are not exposed through the Test::Harness
wrapper.
We use a make variable instead of inlining the perl code in the make
recipe due to the way make escapes backslashes inside single-quotes
in recipes, which disturbs the semantics of the perl code.
dpkg(1): Improve wording for --verify and --verify-format
Closes: #733057
Closes: #733057
dpkg-maintscript-helper: Document environment requirements for supports
Closes: #739634
Closes: #739634
Update and review Vietnamese program translations
Signed-off-by: Trần Ngọc Quân <vnwildman@gmail.com>
Signed-off-by: Guillem Jover <guillem@debian.org>
Signed-off-by: Trần Ngọc Quân <vnwildman@gmail.com>
Signed-off-by: Guillem Jover <guillem@debian.org>
German dpkg translation update
Update to 1088t2u.
Update to 1088t2u.
Update Russian program translations
Closes: #745869
Signed-off-by: Guillem Jover <guillem@debian.org>
Closes: #745869
Signed-off-by: Guillem Jover <guillem@debian.org>
libcompat: Fix comparison between signed and unsigned in strsignal()
libcompat: Declare strnlen() prototype in compat.h
Remove now unused strnlen.h header.
Remove now unused strnlen.h header.
libdpkg: Add missing <string.h> header
These are currently shadowed by the <string.h> inclusion from
<compat/strnlen.h>.
These are currently shadowed by the <string.h> inclusion from
<compat/strnlen.h>.
libdpkg: Add test cases for str_is_set() and str_is_unset()
libdpkg: Add test cases for dpkg_error functions
libdpkg: Use new DPKG_VERSION_OBJECT instead of local version macro
Use the new macro instead of the local one with a generic and
ambiguous name.
Use the new macro instead of the local one with a generic and
ambiguous name.
libdpkg: Add new DPKG_VERSION_OBJECT macro
libdpkg: Move test_warn() and test_error() to dpkg/test.h
These are generic test macros that can be reused by other test cases.
These are generic test macros that can be reused by other test cases.
libdpkg: Handle space-only strings when parsing versions
Consider these empty strings too.
Consider these empty strings too.
libdpkg: Add test cases for parseversion() branch coverage
libdpkg: Add test cases for dpkg_ar_member_is_illegal()
libdpkg: Add test cases for unmatched str_match_end()
libdpkg: Add test cases for growing command argv
libdpkg: Add test cases for command_get_pager()
libdpkg: Add test cases for dpkg_arch_describe()
Dpkg::Vendor: Add test cases for get_vendor_dir()
Dpkg::Deps: Add test cases for deps_concat()
Dpkg::Dist:Files: Add test cases for get_file()