On Tue, 2021-11-02 at 11:32 +0100, Martin Jansa wrote:
> There is even bigger issue with git repos from github.com now:
>
> https://github.blog/2021-09-01-improving-git-protocol-security-github/#no-more-unauthenticated-git
>
> bitbake git fetcher uses git:// protocol by default and as of today you can
> experience "short brownouts" and on January 11 it will all fail to fetch (and
> only fully populated PREMIRRORS can save you for a while, until SRCREV is
> updated).
>
> Short statistics from current oe-core/master:
> martin@jama:/OE/openembedded-core$ git grep git://github.* | grep -v protocol=
> | wc -l
> 52
> martin@jama:/OE/openembedded-core$ git grep git://github.*protocol=https | wc
> -l
> 20
> martin@jama:/OE/openembedded-core$ git grep git://github.*protocol=git | wc -l
> 2
>
> 54 from 74 recipes will fail to fetch in oe-core only.

Thanks for reporting this, it helps to know this is happening as we'll probably
start seeing odd error reports for the brownouts.

I've updated the conversion script I mentioned earlier in this thread to handle
remapping the github.com urls too and also fixed the few corner cases I found
after the first conversion. I've sent those patches to OE-Core.

For the older releases, rather than trying to rewrite all the urls, I think we
may want to patch bitbake to correctly handle the github urls specifically.