Uploaded image for project: 'Infrastructure'
  1. Infrastructure
  2. INFRA-989

Jenkins installation packages redirected to unsecure http urls.

    Details

    • Type: Bug
    • Status: Resolved (View Workflow)
    • Priority: Minor
    • Resolution: Fixed
    • Component/s: artifactory, www
    • Labels:
      None
    • Environment:
      Opensuse Leap 42.2
    • Similar Issues:

      Description

      The following package is going to be upgraded:
        jenkins
      
      1 package to upgrade.
      Overall download size: 65.5 MiB. Already cached: 0 B. After the operation, 1.0 MiB will be freed.
      Continue? [y/n/? shows all options] (y): 
      Retrieving package jenkins-2.34-1.2.noarch                                                                                                               (1/1),  65.5 MiB ( 65.7 MiB unpacked)
      Retrieving: jenkins-2.34-1.2.noarch.rpm ...............................................................................................................................................[error]
      Download (curl) error for 'https://pkg.jenkins.io/opensuse/jenkins-2.34-1.2.noarch.rpm':
      Error code:  Bad URL
      Error message: Protocol http not supported or disabled in libcurl
      
      Abort, retry, ignore? [a/r/i/? shows all options] (a): a
      
      

      Reason for this erros is because original repository URL configured to be over HTTPS:
      https://pkg.jenkins.io/opensuse

      However, mirroring infra later on redirects to unsecure locations:

      # curl -Lv https://pkg.jenkins.io/opensuse/jenkins-2.34-1.2.noarch.rpm -O 2>&1 | grep Location: 
      < Location: http://mirrors.jenkins.io/opensuse/jenkins-2.34-1.2.noarch.rpm
      < Location: http://ftp.icm.edu.pl/packages/jenkins/opensuse/jenkins-2.34-1.2.noarch.rpm
      

      Please fix. it either must be served everywhere over non-secure http/ftp or then respect https in URLs (preferable).

        Attachments

          Issue Links

            Activity

            Hide
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: R. Tyler Croy
            Path:
            dist/profile/files/mirrorbrain/sync.sh
            http://jenkins-ci.org/commit/jenkins-infra/139223102666651effce749bd5221b086b5eec9b
            Log:
            Avoid pkg.jenkins.io staging => production rsync overwrites of Puppet managed files

            These files (like .htaccess) have been removed (jenkinsci/packaging#81) but seem
            to keep cropping up. This makes sure they're not rsynced into production.

            Fixes INFRA-985, INFRA-989

            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: R. Tyler Croy Path: dist/profile/files/mirrorbrain/sync.sh http://jenkins-ci.org/commit/jenkins-infra/139223102666651effce749bd5221b086b5eec9b Log: Avoid pkg.jenkins.io staging => production rsync overwrites of Puppet managed files These files (like .htaccess) have been removed (jenkinsci/packaging#81) but seem to keep cropping up. This makes sure they're not rsynced into production. Fixes INFRA-985 , INFRA-989

              People

              • Assignee:
                rtyler R. Tyler Croy
                Reporter:
                kad Alexander Kanevskiy
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: