Skip to content
Snippets Groups Projects
  1. Jan 08, 2018
  2. Jan 04, 2018
    • Timo Teräs's avatar
      d0a25d67
    • Timo Teräs's avatar
      enable automatic update of indexes controlled by --cache-max-age · 8a28c6d0
      Timo Teräs authored
      This modifies apk cache for indexes to be automatically refreshed
      periodically without explicit 'update' or '--update-cache' usage.
      
      The default is to do if-modified-since request if the local copy
      is older than 4 hours. This age can be changed with --cache-max-age.
      Using --update-cache will change this age to 60 seconds to make
      sure the cached copy is relatively new. The small age is in order
      to try to avoid downloading indexes second time when apk-tools is
      upgraded and apk re-execs after self-upgrade.
      
      Accordingly using explicitly 'apk update' will now enforce
      --force-refresh and request the very latest index by requesting
      any potential http proxy to do refresh too.
      8a28c6d0
  3. Jan 03, 2018
  4. Jan 02, 2018
  5. Dec 30, 2017
  6. Dec 15, 2017
  7. Dec 12, 2017
    • Timo Teräs's avatar
      solver: fix potential install_if processing failure, fixes #8237 · 8e7fd3e0
      Timo Teräs authored
      In discovery phase, there was logic to not process packages
      multiple times. However, that logic failed to account the package's
      depth and install_if state for the name being processed. This
      caused install_if processing failure in certain topologies of the
      dependency graph. Adds also a test case that should catch this
      issue reliably.
      8e7fd3e0
  8. Dec 11, 2017
  9. Nov 28, 2017
  10. Nov 02, 2017
  11. Oct 27, 2017
  12. Oct 12, 2017
  13. Oct 10, 2017
  14. Oct 06, 2017
  15. Oct 05, 2017
    • Timo Teräs's avatar
      libfetch: improve ssl connections · 52fd85a8
      Timo Teräs authored
      loosely based on the freebsd implementation, implement https
      connection settings to override CA, and use client certificate.
      
      new files supported in /etc/apk/:
        ca.pem   - if exists, it contains CAs acceptable for https
      	     (otherwise system wide CAs are used)
        crl.pem  - if ca.pem is used, this is the (optional) CRL for it
        cert.pem - used as client authentication certificate (+ key)
        cert.key - used as client key (can be also inside cert.pem)
      52fd85a8
    • Timo Teräs's avatar
      libfetch: remove unwanted code conditionals · 531fea4c
      Timo Teräs authored
      531fea4c
    • Timo Teräs's avatar
      libfetch: fix ssl context leak · f6860e0e
      Timo Teräs authored
      from freebsd
      f6860e0e
    • Timo Teräs's avatar
      build and use bundled libfetch natively · 86436fce
      Timo Teräs authored
      86436fce
    • Timo Teräs's avatar
      import libfetch-2.38 from NetBSD · 9dc6278c
      Timo Teräs authored
      ftp://ftp.fu-berlin.de/unix/NetBSD/packages/current-src/pkgsrc/net/libfetch/files
      
      libfetch comes (at least) in netbsd and freebsd flavors which
      differing functionality. Alpine and Arch package netbsd one,
      but it's not widely packaged across other distributions.
      
      We need NetBSD version as it does not use funopen(3) which is not
      supported in musl, and supports connection pooling.
      
      FreeBSD seems to be the orignal and better maintained version
      with support for SSL CAs, client certificate authentication,
      proxy authentication, and improved http redirect handling.
      
      So this imports NetBSD version, and future commits will pick up
      the needed improvements from FreeBSD tree.
      
      Incidentally, this also fixes #7857 and likes for good.
      9dc6278c
  16. Oct 04, 2017
  17. Sep 27, 2017
Loading