Fix #722: don't use a HTTPS package mirror by default (!896) · Merge requests · postmarketOS / pmbootstrap

Administrator requested to merge fix/722-install-fails-on-fedora into master Nov 11, 2017

Created by: ollieparanoid

Using a HTTPS mirror prevents the statically compiled apk from working in Fedora, because the TLS certificates are installed in another location. All packages and package indexes are signed, and apk as well as pmbootstrap check these signatures before accepting any files, so we're fine without using HTTPS here.

How to test

pmbootstrap zap -hc # clear http cache and zap all chroots
rm ~/.config/pmbootstrap.cfg # the HTTPS mirror is in the config
pmbootstrap init # create a new config
pmbootstrap chroot # initialize a new chroot with the HTTP mirror

Fix #722: don't use a HTTPS package mirror by default

How to test

Merge request reports