Update certificates in some Ubuntu 16 images. #90550
Conversation
|
r? @kennytm (rust-highfive has picked a reviewer for you, use r? to override) |
rust-highfive
added
the
S-waiting-on-review
|
There are some alternate approaches this could take:
I only updated the images that are using crosstools. I did not check if other Ubuntu 16 images need to download things, but a quick skim I didn't see any. BTW, is there a way to reuse parts of a Dockerfile? I looked around, and didn't see any simple solutions. |
apiraino
added
the
T-infra
|
Triage: looks like this still needs work |
rustbot
added
S-waiting-on-author
|
@JohnCSimon This is actually waiting on review. @kennytm Do you think this is something you can review? Or perhaps @Mark-Simulacrum would prefer to review it? |
ehuss
added
S-waiting-on-review
|
I think this is okay. I'm not too happy with the impl here, but in general I'm not sure we have great alternatives, and the duplication seems OK. I suspect there's no really great way to change this that is still nice in general. The general pattern we seem to have is that our Dockerfiles get increasingly mangled with workarounds over time, unfortunately, and I'm not sure we can do much to help there. @bors r+ rollup=iffy |
|
📌 Commit 951dad6 has been approved by |
bors
added
S-waiting-on-bors
Update certificates in some Ubuntu 16 images. These images use crosstool-ng, which needs to download various things off the internet. The certificate for `www.kernel.org` no longer works with the ca-certificates in Ubuntu 16. This resolves the issue by grabbing from a newer image a certificate bundle from https://curl.se/ca/cacert.pem, which is usually somewhat up to date.
…askrgr Rollup of 7 pull requests Successful merges: - rust-lang#83744 (Deprecate crate_type and crate_name nested inside #![cfg_attr]) - rust-lang#90550 (Update certificates in some Ubuntu 16 images.) - rust-lang#91272 (Print a suggestion when comparing references to primitive types in `const fn`) - rust-lang#91467 (Emphasise that an OsStr[ing] is not necessarily a platform string) - rust-lang#91531 (Do not add `;` to expected tokens list when it's wrong) - rust-lang#91577 (Address some FIXMEs left over from rust-lang#91475) - rust-lang#91638 (Remove `in_band_lifetimes` from `rustc_mir_transform`) Failed merges: r? `@ghost` `@rustbot` modify labels: rollup
These images use crosstool-ng, which needs to download various things off the internet. The certificate for
www.kernel.orgno longer works with the ca-certificates in Ubuntu 16. This resolves the issue by grabbing from a newer image a certificate bundle from https://curl.se/ca/cacert.pem, which is usually somewhat up to date.