Romt

=============

- Support crate file deletion and modification.

- Previously, Romt did not expect crates to be removed or modified once
published; however, crates may in fact be removed from crates.io in certain
circumstances, and after removal a crate may be re-published with a
different hash.

- Romt now properly handles deleted and modified crates via the newly added
``romt crate prune`` command (which is implied by the ``romt crate``
commands ``update``, ``export``, and ``import``). See the "Crate file
cleanup" section of ``README.md`` for information on cleaning up any
modified or obsolete ``.crate`` files in an existing ``crates/`` directory.

- Enhance the ``romt crate list`` command:

- Support three methods of displaying crates:

- ``crateversion`` (the new default format).
- ``rel/path/to/crate-version.crate`` (via ``--show-path``).
- ``<SHA256SUM> *rel/path/to/crate-version.crate`` (via ``--show-hash``).

- Also display removed crates with a leading ``-``.

- For ``romt crate download`` and ``romt crate verify``, rename the
``--good-paths`` and ``--bad-paths`` switches to be ``--good-crates`` and
``--bad-crates``, and use the ``--show-path`` and ``--show-hash`` switches
from ``romt crate list`` to control the output format.

- Support crate filtering via ``--filter FILTER`` and ``--filter-file
FILTER_FILE``. This allows selective filtering of the crates implied by the
RANGE of crates in the INDEX. Thus, for example, a single crate of a
particular version may be downloaded, verified, listed, etc., e.g.::

romt crate --start 0 --filter some_crate1.2.3 list

=============

- Speed up tests.

- Fix accidental reliance on backported security fixes in Python's ``tarfile``
module. The "data_filter" feature was added in Python 3.12, but got
backported to some previous versions, making it look like it was supported
since Python 3.8 (our oldest supported version). Now we probe for the feature
directly to ensure it's available before we use it.

- Move build and release steps into ``noxfile.py``.

- Add GitHub workflow for testing and quality checks.

- Add Docker-based build for Linux, based on Ubuntu 18.04. This provides
executables that will run on older versions of Linux.

- Add GitHub workflow for building Romt executables.

- Change Romt's ``darwin`` alias to denote ``aarch64-apple-darwin`` now that
``x86_64`` is no longer the primary macOS architecture.

- Note changed URL for ``httpx`` library; add some details on proxy-related
environment variables for ``httpx``.

=============

- Include ``poetry.lock`` and ``requirements.txt`` in the generated
``romt-x.y.z.tar.gz`` source archive. This allows explicit use of locked
versions for all dependencies when installing from PyPI.

- Extend ``romt serve`` to support the "sparse" index protocol. This requires
adjustments to the ``.cargo/config.toml`` file; see the ``README.rst`` file
for details.

- Document how to use ``nxingx`` to serve the "sparse" ``crates.io-index``
protocol.

=============

- Remove extraneous artifacts from the built ``romt-x.y.z-*.whl`` file. In the
absence of a specified ``format`` option, these should have been present only
in the source distribution file ``romt-x.y.z.tar.gz`` according to the Poetry
documentation (https://python-poetry.org/docs/pyproject/#include-and-exclude).
Now explicitly restrict these included files using ``format = "sdist"``. In
addition, include ``make-exec-*`` and ``romt-wrapper.py`` into the source
distribution file to allow building the ``romt`` executable.

=============

- Bump minimum required interpreter version from Python 3.6 to Python 3.8.

- Add ``toolchain download --cross`` feature to allow downloading only the
``rust-std`` (Rust standard library) component of a target. This is useful
for allowing cross-compilation to a given target without downloading the full
native toolchain for that target.

- Update list of supported ``rustup`` targets.

- Note the use of the ``.toml`` suffix for Cargo configuration files.

- Note how to configure Cargo to use the Git command-line client for fetching
the ``crates.io-index`` repository for greatly improved performance.

- Switch to Python Poetry for dependency management.

- Require ``git`` only for operations that need it.

- Tighten command-line argument parsing for shared arguments. Due to an
unfortunate design aspect of Python's ``argparse`` module, "global" arguments
do not work when shared between the main argument parser and subparsers. So,
for example, ``romt --readme`` is accepted and correctly processed, whereas
``romt crate --readme`` is not a syntax error but the ``--readme`` switch is
effectively ignored. There doesn't appear to be a clean way to work around
this, so common arguments are no longer shared between the subparsers and the
main parser. The two main switches (``--readme`` and ``--version``) must be
given before any subcommand, and the remaining switches (``--verbose``,
``--quiet``, ``--num-jobs``, and ``--timeout``) must be given after the
subcommand name (e.g., ``romt crate --verbose``).

- Allow environment variable ``RUSTUP_DIST_SERVER`` to override default value
for ``romt toolchain --url``. Allow environment variable
``RUSTUP_UPDATE_ROOT`` to override default value for ``romt rustup --url``.

=============

- **NOTE** If upgrading from older Romt, it's recommended to use the same
version of Romt on the Internet-connected machine and the offline machine.
See ``Upgrading from Romt versions before 0.4.0`` in the README.rst for
details.

- Add support for lowercase crate prefixes in CRATES_ROOT. This avoids problems
when using a crate mirror with both case-sensitive and case-insensitive
filesystems simultaneously; see https://github.com/drmikehenry/romt/issues/14.
See README.rst for details.

- Add ``--timeout`` option to control the timeout in seconds for downloading.
Change default timeout from five seconds (the default for the ``httpx``
library) to sixty seconds. A value of ``0`` disables the timeout altogether.

- Fix toolchain unpacking of archives created with multiple specs and
``--target=all`` (see https://github.com/drmikehenry/romt/issues/17). When
packing a toolchain archive, the specs and targets are specified
independently, so typically each spec must use the same list of targets; but
the special target ``all`` is expanded to a per-spec list of targets during
packing. During unpacking, Romt had been detecting the union of all targets
present in the archive and applying this set of targets to all detected specs
in the archive, causing problems if one spec supported more targets than the
others. Now Romt detects archives that contain all targets for all included
specs and converts back to the special ``all`` target for verification and
further processing.