-
Notifications
You must be signed in to change notification settings - Fork 12.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use HTTPS links where possible #86586
Conversation
(rust-highfive has picked a reviewer for you, use r? to override) |
LGTM, although I obviously didn't check whether all the links are accessible. |
@bors r+ |
📌 Commit 157898e has been approved by |
…henkov Use HTTPS links where possible While looking at rust-lang#86583, I wondered how many other (insecure) HTTP links were in `rustc`. This changes most other `http` links to `https`. While most of the links are in comments or documentation, there are a few other HTTP links that are used by CI that are changed to HTTPS. Notes: - I didn't change any to or in licences - Some links don't support HTTPS :( - Some `http` links were dead, in those cases I upgraded them to their new places (all of which used HTTPS)
⌛ Testing commit 157898e with merge 3d991178fe4bcc8ea8153cd15a311bc9f8ece22e... |
💔 Test failed - checks-actions |
This comment has been minimized.
This comment has been minimized.
CI is unable to download from https://gcc.gnu.org/pub/gcc/infrastructure/mpfr-2.4.2.tar.bz2
|
On the mailinglist from 2015 there was a discussion about including TLS 1.2 in Debian 6 (the image we are using): The host gcc.gnu.org supports TLSv1.2 only: Where AWS supports TLS 1.0 to 1.3 the old image can use 1.1: Should we update it to Debian 7 because TLS 1.2 support will not happen and the LTS support has ended in 2016? |
Maybe, but certainly not in this PR. |
This is needed as they are built on a long-outdated Debian version. :(
@bors r+ |
📌 Commit 3da037f has been approved by |
☀️ Test successful - checks-actions |
Tested on commit rust-lang/rust@4819719. Direct link to PR: <rust-lang/rust#86586> 🎉 rls on linux: test-fail → test-pass (cc @Xanewok).
Revert "Download the GCC sources insecurely" This reverts commit 3da037f. This workaround was added after TLS problems with Debian 6 were noted in <rust-lang#86586 (comment)>, but we should be well past that since rust-lang#95026, where our oldest images are now based on CentOS 7.
Revert "Download the GCC sources insecurely" This reverts commit 3da037f82988b8b3aca2ce13c5c81ba975923cab. This workaround was added after TLS problems with Debian 6 were noted in <rust-lang/rust#86586 (comment)>, but we should be well past that since #95026, where our oldest images are now based on CentOS 7.
Revert "Download the GCC sources insecurely" This reverts commit 3da037f82988b8b3aca2ce13c5c81ba975923cab. This workaround was added after TLS problems with Debian 6 were noted in <rust-lang/rust#86586 (comment)>, but we should be well past that since #95026, where our oldest images are now based on CentOS 7.
While looking at #86583, I wondered how many other (insecure) HTTP links were in
rustc
. This changes most otherhttp
links tohttps
. While most of the links are in comments or documentation, there are a few other HTTP links that are used by CI that are changed to HTTPS.Notes:
http
links were dead, in those cases I upgraded them to their new places (all of which used HTTPS)