feat: update apt to 3.0.2 #15

deepin-community-bot · 2025-06-23T12:09:53Z

This pull request is requested by @UTsweetyfish.

Basic Information

Old Version: 2.8.0deepin4
New Version: 3.0.2
Old version may contain dde / deepin patches. Please review more precisely.

Potential transition

libapt-pkg6.0 is not present in the new package.

64-bit time_t transition

DCBot assumes this package is already gone through 64-bit time_t transition.

github-actions · 2025-06-23T12:10:06Z

TAG Bot

TAG: 3.0.2
EXISTED: no
DISTRIBUTION: unstable

deepin-ci-robot · 2025-06-23T12:10:25Z

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

deepin-ci-robot · 2025-06-23T12:10:32Z

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign zccrs for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

https:/raw.githubusercontent.com/deepin-community/template-repository/master/debian/deepin/OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

UTsweetyfish · 2025-06-23T12:32:51Z

debian/control

@@ -28,6 +28,7 @@ Build-Depends: cmake (>= 3.4),
               ninja-build,
               pkg-config,
               po4a (>= 0.34-2) <!nodoc>,
+               sqv (>= 1.3.0) [amd64 arm64 armel armhf i386 mips64el ppc64el riscv64 s390x hurd-amd64 hurd-i386 loong64 powerpc ppc64 sparc64] <!pkg.apt.nosqv> | gpgv,


缺 sqv (>= 1.3.0) 呀

UTsweetyfish · 2025-06-23T12:33:29Z

vendor/deepin/apt-vendor.ent

vendor/deepin

UTsweetyfish · 2025-06-23T12:33:33Z

vendor/deepin/sources.list.in

vendor/deepin

UTsweetyfish · 2025-06-23T12:33:41Z

vendor/uos/apt-vendor.ent

UTsweetyfish · 2025-06-23T12:33:44Z

vendor/uos/sources.list.in

UTsweetyfish · 2025-06-23T12:35:29Z

debian/NEWS

+apt (2.9.15) unstable; urgency=medium
+
+  This release stops using apt-key to verify the signatures.
+  Final call to stop using it before it's gone next week.
+
+  Please note that due to the switch to internal verification, APT now
+  has the same requirements on files in trusted.gpg.d as for other .d
+  directories: Only alphanumerical characters, '_', '-', ':' and '.'
+  are supported, other characters such as '@' cause the file to silently
+  be ignored.
+
+ -- Julian Andres Klode <[email protected]>  Thu, 28 Nov 2024 19:31:24 +0100


apt-key deprecation

UTsweetyfish · 2025-06-23T12:35:41Z

debian/NEWS

+apt (2.9.19) unstable; urgency=medium
+
+  This release switches to OpenSSL for hashing and TLS, replacing the
+  GnuTLS and gcrypt libraries.
+
+  This release switches to Sequoia for OpenPGP verification on supported
+  Debian platforms. A Sequoia policy override enabling SHA1 self-signatures
+  until 2026 is included. To override the policy, the following environment
+  variables and files are considered:
+
+  * The APT_SEQUOIA_CRYPTO_POLICY environment variable, and failing that:
+    - /etc/crypto-policies/back-ends/apt-sequoia.config,
+    - /var/lib/crypto-config/profiles/current/apt-sequoia.config
+  * The SEQUOIA_CRYPTO_POLICY environment variable, and failing that:
+    - /etc/crypto-policies/back-ends/sequoia.config
+    - /var/lib/crypto-config/profiles/current/sequoia.config
+
+ -- Julian Andres Klode <[email protected]>  Mon, 23 Dec 2024 12:16:22 +0100


sqv support

UTsweetyfish · 2025-06-23T12:36:08Z

debian/NEWS

+apt (2.9.24) unstable; urgency=medium
+
+  /etc/apt/trusted.gpg is no longer trusted. Setting the Dir::Etc::trusted
+  option manually continues to work for some more time.
+
+  sources.list(5) entries without the Signed-By field are deprecated;
+  migrate any legacy entries to the deb822 .sources format. See the
+  apt-secure(8) manual page for best practices for signer configuration.
+  This deprecates the /etc/apt/trusted.gpg.d directory.
+
+ -- Julian Andres Klode <[email protected]>  Tue, 21 Jan 2025 12:17:36 +0100


/etc/apt/trusted.gpg

lhdjply · 2025-06-24T02:25:58Z

这个3.0是搞着玩的，还是真准备集成啊？ 3.0的apt 带了许多颜色，好像挺好用的

deepin-community-ci-bot · 2025-11-11T07:31:01Z

TAG Bot

New tag: 2.8.0deepin5
DISTRIBUTION: unstable
Suggest: synchronizing this PR through rebase #19

deepin-community-ci-bot · 2025-12-19T01:28:33Z

TAG Bot

New tag: 2.8.0deepin7
DISTRIBUTION: unstable
Suggest: synchronizing this PR through rebase #22

feat: update apt to 3.0.2

de56fda

deepin-ci-robot added the do-not-merge/work-in-progress label Jun 23, 2025

deepin-ci-robot requested review from justforlxz and myml June 23, 2025 12:10

UTsweetyfish requested changes Jun 23, 2025

View reviewed changes

feat: update apt to 3.0.2 #15

Are you sure you want to change the base?

feat: update apt to 3.0.2 #15

Uh oh!

Conversation

deepin-community-bot bot commented Jun 23, 2025

Basic Information

Potential transition

64-bit time_t transition

Uh oh!

github-actions bot commented Jun 23, 2025

Uh oh!

deepin-ci-robot commented Jun 23, 2025

Uh oh!

deepin-ci-robot commented Jun 23, 2025

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

lhdjply commented Jun 24, 2025

Uh oh!

deepin-community-ci-bot bot commented Nov 11, 2025

Uh oh!

deepin-community-ci-bot bot commented Dec 19, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants