kc3-lang/automake/t/tar-override.sh
-
Show log
Commit
-
Hash : 3562e384
Author :
Date : 2017-09-16T13:03:36
Prefer https: URLs In Gnulib, Emacs, etc. we are changing ftp: and http: URLs to use https:, to discourage man-in-the-middle attacks when downloading software. The attached patch propagates these changes upstream to Automake. This patch does not affect files that Automake is downstream of, which I'll patch separately. Althouth the resources are not secret, plain HTTP is vulnerable to malicious routers that tamper with responses from GNU servers, and this sort of thing is all too common when people in some other countries browse US-based websites. See, for example: Aceto G, Botta A, Pescapé A, Awan MF, Ahmad T, Qaisar S. Analyzing internet censorship in Pakistan. RTSI 2016. https://dx.doi.org/10.1109/RTSI.2016.7740626 HTTPS is not a complete solution here, but it can be a significant help. The GNU project regularly serves up code to users, so we should take some care here.
-
t/tar-override.sh
-
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68
#! /bin/sh # Copyright (C) 2011-2017 Free Software Foundation, Inc. # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see <https://www.gnu.org/licenses/>. # Check that the user can override the tar program used by "make dist" # at runtime, by redefining the 'TAR' environment variable. # NOTE: currently this works only when the tar format used is 'v7' # (which is the default one). . test-init.sh cwd=$(pwd) || fatal_ "getting current working directory" echo AC_OUTPUT >> configure.ac cat > am--tar <<'END' #!/bin/sh echo $1 > am--tar-has-run shift exec tar "$@" END chmod a+x am--tar cat > Makefile.am <<'END' check-local: dist ls -l ;: For debugging. test -f am--tar-has-run CLEANFILES = am--tar-has-run END $ACLOCAL $AUTOCONF $AUTOMAKE ./configure clean_temp () { rm -f *.tar.* *has-run*; } $MAKE dist test -f $distdir.tar.gz ls | grep has-run && exit 1 clean_temp TAR="$cwd/am--tar foo" $MAKE distcheck test -f $distdir.tar.gz test "$(cat am--tar-has-run)" = foo clean_temp unset TAR # Creative use of eval to pacify maintainer checks. eval \$'MAKE dist "TAR=./am--tar mu"' test -f $distdir.tar.gz test "$(cat am--tar-has-run)" = mu :