mirror of
https://github.com/Homebrew/brew.git
synced 2024-11-25 16:33:34 +08:00
Merge pull request #18800 from Homebrew/ca-certs-secure
Some checks are pending
CodeQL / Analyze (push) Waiting to run
Docker / docker (Ubuntu ${{ matrix.version }}) (18.04) (push) Waiting to run
Docker / docker (Ubuntu ${{ matrix.version }}) (20.04) (push) Waiting to run
Docker / docker (Ubuntu ${{ matrix.version }}) (22.04) (push) Waiting to run
Docker / docker (Ubuntu ${{ matrix.version }}) (24.04) (push) Waiting to run
Documentation CI / docs (push) Waiting to run
Ruby Documentation CI / rubydoc (push) Waiting to run
Update sponsors, maintainers, manpage and completions / updates (push) Waiting to run
CI / syntax (push) Waiting to run
CI / tap syntax (push) Blocked by required conditions
CI / formula audit (push) Blocked by required conditions
CI / cask audit (push) Blocked by required conditions
CI / vendored gems (push) Blocked by required conditions
CI / ${{ matrix.name }} (update-test (Ubuntu), ubuntu-latest) (push) Blocked by required conditions
CI / ${{ matrix.name }} (update-test (macOS), macos-15) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (Ubuntu 20.04), ubuntu-20.04, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (Ubuntu 22.04), ubuntu-22.04, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (Ubuntu 24.04), ubuntu-24.04, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (generic OS), ubuntu-latest, --generic --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (macOS 13 x86_64), macos-13, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (macOS 15 arm64), macos-15, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (online), ubuntu-latest, --online --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (ghcr.io/homebrew/ubuntu20.04, test default formula (Ubuntu 20.04), ubuntu-latest) (push) Blocked by required conditions
CI / ${{ matrix.name }} (ghcr.io/homebrew/ubuntu22.04:master, test default formula (Ubuntu 22.04), ubuntu-latest) (push) Blocked by required conditions
CI / ${{ matrix.name }} (test default formula (macOS 13 x86_64), macos-13) (push) Blocked by required conditions
CI / ${{ matrix.name }} (test default formula (macOS 15 arm64), macos-15) (push) Blocked by required conditions
Some checks are pending
CodeQL / Analyze (push) Waiting to run
Docker / docker (Ubuntu ${{ matrix.version }}) (18.04) (push) Waiting to run
Docker / docker (Ubuntu ${{ matrix.version }}) (20.04) (push) Waiting to run
Docker / docker (Ubuntu ${{ matrix.version }}) (22.04) (push) Waiting to run
Docker / docker (Ubuntu ${{ matrix.version }}) (24.04) (push) Waiting to run
Documentation CI / docs (push) Waiting to run
Ruby Documentation CI / rubydoc (push) Waiting to run
Update sponsors, maintainers, manpage and completions / updates (push) Waiting to run
CI / syntax (push) Waiting to run
CI / tap syntax (push) Blocked by required conditions
CI / formula audit (push) Blocked by required conditions
CI / cask audit (push) Blocked by required conditions
CI / vendored gems (push) Blocked by required conditions
CI / ${{ matrix.name }} (update-test (Ubuntu), ubuntu-latest) (push) Blocked by required conditions
CI / ${{ matrix.name }} (update-test (macOS), macos-15) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (Ubuntu 20.04), ubuntu-20.04, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (Ubuntu 22.04), ubuntu-22.04, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (Ubuntu 24.04), ubuntu-24.04, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (generic OS), ubuntu-latest, --generic --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (macOS 13 x86_64), macos-13, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (macOS 15 arm64), macos-15, --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (tests (online), ubuntu-latest, --online --coverage) (push) Blocked by required conditions
CI / ${{ matrix.name }} (ghcr.io/homebrew/ubuntu20.04, test default formula (Ubuntu 20.04), ubuntu-latest) (push) Blocked by required conditions
CI / ${{ matrix.name }} (ghcr.io/homebrew/ubuntu22.04:master, test default formula (Ubuntu 22.04), ubuntu-latest) (push) Blocked by required conditions
CI / ${{ matrix.name }} (test default formula (macOS 13 x86_64), macos-13) (push) Blocked by required conditions
CI / ${{ matrix.name }} (test default formula (macOS 15 arm64), macos-15) (push) Blocked by required conditions
revert setting `--insecure` to download ca-certificates
This commit is contained in:
commit
8d3056463d
@ -1,8 +1,11 @@
|
|||||||
# Documentation defined in Library/Homebrew/cmd/vendor-install.rb
|
# Documentation defined in Library/Homebrew/cmd/vendor-install.rb
|
||||||
|
|
||||||
# HOMEBREW_CURLRC, HOMEBREW_LIBRARY is from the user environment
|
# HOMEBREW_ARTIFACT_DOMAIN, HOMEBREW_ARTIFACT_DOMAIN_NO_FALLBACK, HOMEBREW_BOTTLE_DOMAIN, HOMEBREW_CACHE,
|
||||||
# HOMEBREW_CACHE, HOMEBREW_CURL, HOMEBREW_LINUX, HOMEBREW_LINUX_MINIMUM_GLIBC_VERSION, HOMEBREW_MACOS,
|
# HOMEBREW_CURLRC, HOMEBREW_DEVELOPER, HOMEBREW_DEBUG, HOMEBREW_VERBOSE are from the user environment
|
||||||
# HOMEBREW_MACOS_VERSION_NUMERIC and HOMEBREW_PROCESSOR are set by brew.sh
|
# HOMEBREW_PORTABLE_RUBY_VERSION is set by utils/ruby.sh
|
||||||
|
# HOMEBREW_LIBRARY, HOMEBREW_PREFIX are set by bin/brew
|
||||||
|
# HOMEBREW_CURL, HOMEBREW_GITHUB_PACKAGES_AUTH, HOMEBREW_LINUX, HOMEBREW_LINUX_MINIMUM_GLIBC_VERSION, HOMEBREW_MACOS,
|
||||||
|
# HOMEBREW_PHYSICAL_PROCESSOR, HOMEBREW_PROCESSOR, HOMEBREW_USER_AGENT_CURL are set by brew.sh
|
||||||
# shellcheck disable=SC2154
|
# shellcheck disable=SC2154
|
||||||
source "${HOMEBREW_LIBRARY}/Homebrew/utils/lock.sh"
|
source "${HOMEBREW_LIBRARY}/Homebrew/utils/lock.sh"
|
||||||
source "${HOMEBREW_LIBRARY}/Homebrew/utils/ruby.sh"
|
source "${HOMEBREW_LIBRARY}/Homebrew/utils/ruby.sh"
|
||||||
@ -129,11 +132,6 @@ fetch() {
|
|||||||
curl_args[${#curl_args[*]}]="--progress-bar"
|
curl_args[${#curl_args[*]}]="--progress-bar"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if [[ "${HOMEBREW_MACOS_VERSION_NUMERIC}" -lt "100600" ]]
|
|
||||||
then
|
|
||||||
curl_args[${#curl_args[*]}]="--insecure"
|
|
||||||
fi
|
|
||||||
|
|
||||||
temporary_path="${CACHED_LOCATION}.incomplete"
|
temporary_path="${CACHED_LOCATION}.incomplete"
|
||||||
|
|
||||||
mkdir -p "${HOMEBREW_CACHE}"
|
mkdir -p "${HOMEBREW_CACHE}"
|
||||||
|
@ -559,14 +559,6 @@ class CurlDownloadStrategy < AbstractFileDownloadStrategy
|
|||||||
|
|
||||||
args += meta.fetch(:headers, []).flat_map { |h| ["--header", h.strip] }
|
args += meta.fetch(:headers, []).flat_map { |h| ["--header", h.strip] }
|
||||||
|
|
||||||
if meta[:insecure]
|
|
||||||
unless @insecure_warning_shown
|
|
||||||
opoo DevelopmentTools.insecure_download_warning("an updated certificates file")
|
|
||||||
@insecure_warning_shown = true
|
|
||||||
end
|
|
||||||
args += ["--insecure"]
|
|
||||||
end
|
|
||||||
|
|
||||||
args
|
args
|
||||||
end
|
end
|
||||||
|
|
||||||
|
@ -51,20 +51,6 @@ class Resource
|
|||||||
def owner=(owner)
|
def owner=(owner)
|
||||||
@owner = owner
|
@owner = owner
|
||||||
patches.each { |p| p.owner = owner }
|
patches.each { |p| p.owner = owner }
|
||||||
|
|
||||||
return if !owner.respond_to?(:full_name) || owner.full_name != "ca-certificates"
|
|
||||||
return if Homebrew::EnvConfig.no_insecure_redirect?
|
|
||||||
|
|
||||||
@insecure = !specs[:bottle] && (DevelopmentTools.ca_file_substitution_required? ||
|
|
||||||
DevelopmentTools.curl_substitution_required?)
|
|
||||||
return if @url.nil?
|
|
||||||
|
|
||||||
specs = if @insecure
|
|
||||||
@url.specs.merge({ insecure: true })
|
|
||||||
else
|
|
||||||
@url.specs.except(:insecure)
|
|
||||||
end
|
|
||||||
@url = URL.new(@url.to_s, specs)
|
|
||||||
end
|
end
|
||||||
|
|
||||||
# Removes /s from resource names; this allows Go package names
|
# Removes /s from resource names; this allows Go package names
|
||||||
|
Loading…
Reference in New Issue
Block a user