From mboxrd@z Thu Jan  1 00:00:00 1970
X-GM-THRID: 6723128764544319488
X-Received: by 2002:a50:c90d:: with SMTP id o13mr3245778edh.148.1565705198009;
        Tue, 13 Aug 2019 07:06:38 -0700 (PDT)
X-BeenThere: isar-users@googlegroups.com
Received: by 2002:a50:89f6:: with SMTP id h51ls3574051edh.15.gmail; Tue, 13
 Aug 2019 07:06:37 -0700 (PDT)
X-Google-Smtp-Source: APXvYqyNMc9RHCPLld6Tl26x/qoHzo7IHPajvfVYTCaxl8Gr8eLUYwSIOvlbC0RR9DhpRjqAPrfl
X-Received: by 2002:a50:f78b:: with SMTP id h11mr13117421edn.93.1565705197594;
        Tue, 13 Aug 2019 07:06:37 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1565705197; cv=none;
        d=google.com; s=arc-20160816;
        b=Ylh87L+qFrnIA4MuOQUNfPx0V0o70tKrjNbZ/DuUGTbWYowHfsVerb/kAopo3l4iEa
         Jp1e6HhFR8nGY1E0Odn7XkfZjcg9Y/LbOgDdYfncXiUdV7Tft8atwbzNdVnMcDbqISZf
         Z2gaT+QkpSC3CeliE+wSrwgitwjTiSIJ6uZgQAZ5FFsoLPih1FJWvW8QG27B5epYta43
         02uEvt/NuM1BIbVbmVHk3PyitCTjHi9ejyArGuD/uvK1CJh6+bQEs0YDHvs5GY9mddnZ
         DwPHf2JJMtAPHzuXa5wQ3IS6RirQnW2rWJ3paN+Q2V4NjyfrcnELp7TARDpyxg1u0qYO
         zA7w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:subject:cc:to:from:date;
        bh=2RwUvJsyu1OKxdCKRTsA8BudST4sCtZgb28wmOFnJMg=;
        b=YWuTbnXG+WkNfTQbtf3wGe2fdL5pE+HRSwnD5jedOzy8EvjG7BGgtOqh5rApx7ZvTL
         3q5nx7HOk8nwLjOFXD0KjXFkZGjUzzSVroMa3Ni+vf1tWnUE8OWFb7T7asRSdvNMvOFt
         2LZ0YAbatnEHXMfwyzPeiM37BJhSofrwYll5lI4Xgk090ft75UxO8dX0CImLRKAvE7Ra
         wzOVsLclFhgKps6tkz6BqO4IpKXa2BdTvASJXLewL/O1TSxblZnz2Ti7WSWoiM5liOiP
         JnVNnt9LLsMhxU2D5XYD5sbP2DqvL/vMtJ7tYkq3gP6BBTIVFOKySFB6Ui1AOffYovMy
         2bwg==
ARC-Authentication-Results: i=1; gmr-mx.google.com;
       spf=pass (google.com: domain of henning.schild@siemens.com designates 192.35.17.14 as permitted sender) smtp.mailfrom=henning.schild@siemens.com;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=siemens.com
Return-Path: <henning.schild@siemens.com>
Received: from david.siemens.de (david.siemens.de. [192.35.17.14])
        by gmr-mx.google.com with ESMTPS id m3si342183edq.0.2019.08.13.07.06.37
        for <isar-users@googlegroups.com>
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Tue, 13 Aug 2019 07:06:37 -0700 (PDT)
Received-SPF: pass (google.com: domain of henning.schild@siemens.com designates 192.35.17.14 as permitted sender) client-ip=192.35.17.14;
Authentication-Results: gmr-mx.google.com;
       spf=pass (google.com: domain of henning.schild@siemens.com designates 192.35.17.14 as permitted sender) smtp.mailfrom=henning.schild@siemens.com;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=siemens.com
Received: from mail2.sbs.de (mail2.sbs.de [192.129.41.66])
	by david.siemens.de (8.15.2/8.15.2) with ESMTPS id x7DE6b6G028440
	(version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK);
	Tue, 13 Aug 2019 16:06:37 +0200
Received: from md1za8fc.ad001.siemens.net ([139.25.0.65])
	by mail2.sbs.de (8.15.2/8.15.2) with ESMTP id x7DE6aZq028788;
	Tue, 13 Aug 2019 16:06:36 +0200
Date: Tue, 13 Aug 2019 16:06:36 +0200
From: Henning Schild <henning.schild@siemens.com>
To: Andreas Reichel <Andreas.Reichel@tngtech.com>
Cc: isar-users <isar-users@googlegroups.com>
Subject: Re: [PATCH] isar-bootstrap: Do not require https-support with
 custom bootstrap keys
Message-ID: <20190813160636.7c056524@md1za8fc.ad001.siemens.net>
In-Reply-To: <20190812092430.GA31772@archlinux>
References: <caf2186d-15eb-ec5c-b166-2f0aa25c4452@siemens.com>
	<20190812090952.GA11083@yssyq.m.ilbers.de>
	<20190812092430.GA31772@archlinux>
X-Mailer: Claws Mail 3.17.3 (GTK+ 2.24.32; x86_64-pc-linux-gnu)
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-TUID: 3aBNlNumBi0a

Am Mon, 12 Aug 2019 11:24:30 +0200
schrieb Andreas Reichel <Andreas.Reichel@tngtech.com>:

> On Mon, Aug 12, 2019 at 11:09:52AM +0200, Baurzhan Ismagulov wrote:
> > Hello Andreas,
> > 
> > On Fri, Aug 09, 2019 at 01:33:15PM +0200, Jan Kiszka wrote:  
> > > There is apparently no problem to solve here, custom repos with
> > > custom keyrings build fine without https-support by debootstrap.  
> > ...  
> > > --- a/meta/recipes-core/isar-bootstrap/isar-bootstrap.inc
> > > +++ b/meta/recipes-core/isar-bootstrap/isar-bootstrap.inc
> > > @@ -163,13 +163,6 @@ def get_distro_have_https_source(d,
> > > is_host=False): return any(source[2].startswith("https://") for
> > > source in generate_distro_sources(d, is_host)) 
> > >  def get_distro_needs_https_support(d, is_host=False):
> > > -    distro_bootstrap_keys = d.getVar("DISTRO_BOOTSTRAP_KEYS",
> > > False)
> > > -    if distro_bootstrap_keys and distro_bootstrap_keys != "":
> > > -        # debootstrap falls back to https if there is no
> > > -        # 'reliable' keyring, whatever that means, but it
> > > happened
> > > -        #
> > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891009
> > > -        return "https-support"
> > > -  
> > 
> > Could you please comment on the motivation? What was your test
> > case?  
> 
> I am sorry, I cannot add more than I already wrote as comment. If you
> don't understand this bug neither (I didn't), and it does not happen
> again, maybe try without this. If it doesn't break then fine.

This fallback path should only be taken when debootstrap is not called
with a USER_MIRROR. And it seems we do not ever have that case in Isar.
Maybe the problem appeared in intermediate manual steps. Or with some
older version of debootstrap.

Henning

> Kind regards
> 
> > 
> > With kind regards,
> > Baurzhan.  
>