On 12/07/2016 10:18 PM, Philipp Kern wrote:
> choose-mirror does not ask for the protocol by default, as the question
> is priority medium. I did my installation by passing priority=medium on
> the command-line, but you could as well preseed the protocol to https I
> think. In that case it does not
On 11/20/2016 12:10 PM, Julien Cristau wrote:
> I think until there's a ca-certificates-udeb, adding wget for https in
> all images isn't reasonable, vs google rebuilding d-i with added wget
> and the PEM bits you need. I guess ca-certificates-udeb would need some
> way to preseed a list of truste
Hi,
On Sunday, 20 November 2016 16:49:57 CET Philipp Kern wrote:
> On 2016-11-20 12:10, Julien Cristau wrote:
> > I think until there's a ca-certificates-udeb, adding wget for https in
> > all images isn't reasonable, vs google rebuilding d-i with added wget
> > and the PEM bits you need. I guess
* Rick Thomas [2016-11-24 21:28]:
> >> So how do we move forward here? Exclude wget-udeb from the orion5x-qnap
> >> image and otherwise include it by default?
> >
> > That should work.
>
> Are there other machines that have equally sever size restrictions?
I don't think so.
--
Martin Michlmayr
On Nov 18, 2016, at 10:22 AM, Martin Michlmayr wrote:
> * Philipp Kern [2016-11-18 17:19]:
>>> Thanks for the CC. I just added wget-udeb and it adds 345 KB,
>>> which breaks the orion5x-qnap image. However, this image is really
>>> quite a special case and I don't want to block https support
On 2016-11-20 12:10, Julien Cristau wrote:
I think until there's a ca-certificates-udeb, adding wget for https in
all images isn't reasonable, vs google rebuilding d-i with added wget
and the PEM bits you need. I guess ca-certificates-udeb would need
some
way to preseed a list of trusted CAs.
On Sun, Nov 20, 2016 at 11:52:09 +0100, Philipp Kern wrote:
> On 20.11.2016 11:45, Cyril Brulebois wrote:
> >> But you are absolutely correct in for this to be universally useful,
> >> we'd also need a ca-certificates-udeb. I can take a look at that but I
> >> somewhat fear that it won't be that m
On 20.11.2016 11:45, Cyril Brulebois wrote:
>> But you are absolutely correct in for this to be universally useful,
>> we'd also need a ca-certificates-udeb. I can take a look at that but I
>> somewhat fear that it won't be that much smaller than the regular one
>> (maybe ~150k udeb size).
>
> If
Philipp Kern (2016-11-20):
> On 20.11.2016 05:52, Cyril Brulebois wrote:
> > Well, I think this is a crucial issue: what use case(s) are you trying
> > to fix? “We want https” isn't clear to me.
>
> After d-i has installed the system, we use HTTPS with client
> certificates - using apt-transport-
On 20.11.2016 05:52, Cyril Brulebois wrote:
> Well, I think this is a crucial issue: what use case(s) are you trying
> to fix? “We want https” isn't clear to me.
After d-i has installed the system, we use HTTPS with client
certificates - using apt-transport-https. The use case there is
authenticat
Hi all,
Philipp Kern (2016-10-26):
> Which I guess boils down to adding wget-udeb to the installer's
> pkg-lists/base because I think all flavors and all architectures
> should have the same feature set.
That would seem fair to me.
> I'm not sure how you got this number (from a d-i rebuild?), b
Jose R R (2016-11-18):
> The official Debian maintainer(s) busybox source lacks a directory
> that is upstream in the busybox official source.
I think the main issue here is that busybox in Debian lacks a
maintainer.
The other is that matrixssl isn't packaged in Debian, as already
pointed out.
On Fri, Nov 18, 2016 at 8:18 AM, Philipp Kern wrote:
> On 12.11.2016 18:16, Josh Triplett wrote:
>> On Thu, 10 Nov 2016 01:14:33 -0800 Jose R R wrote:
>>> On Tue, Oct 25, 2016 at 6:17 AM, Marga Manterola wrote:
Package: debian-installer
Severity: normal
The installer currentl
* Philipp Kern [2016-11-18 17:19]:
> > Thanks for the CC. I just added wget-udeb and it adds 345 KB,
> > which breaks the orion5x-qnap image. However, this image is really
> > quite a special case and I don't want to block https support because
> > of it. I can always exclude wget-udeb from thi
On 12.11.2016 18:16, Josh Triplett wrote:
> On Thu, 10 Nov 2016 01:14:33 -0800 Jose R R wrote:
>> On Tue, Oct 25, 2016 at 6:17 AM, Marga Manterola wrote:
>>> Package: debian-installer
>>> Severity: normal
>>>
>>> The installer currently doesn't support downloading packages from https
>>> mirrors,
On 10.11.2016 05:45, Martin Michlmayr wrote:
> * Roger Shimizu [2016-10-26 00:59]:
>>> So, approximately 780k extra for the initrd image (3.5% increase)
>>
>> I'm not sure whether any libs already is included in the d-i image, if
>> not, adding 780k extra would definitely affect armel/orion5x qnap
On Thu, 10 Nov 2016 01:14:33 -0800 Jose R R wrote:
> On Tue, Oct 25, 2016 at 6:17 AM, Marga Manterola wrote:
> > Package: debian-installer
> > Severity: normal
> >
> > The installer currently doesn't support downloading packages from https
> > mirrors, because busybox's wget doesn't support https
Niltze [Hello]!
On Tue, Oct 25, 2016 at 6:17 AM, Marga Manterola wrote:
> Package: debian-installer
> Severity: normal
>
> The installer currently doesn't support downloading packages from https
> mirrors, because busybox's wget doesn't support https.
In order to add SSL support to BusyBox wget,
* Roger Shimizu [2016-10-26 00:59]:
> > So, approximately 780k extra for the initrd image (3.5% increase)
>
> I'm not sure whether any libs already is included in the d-i image, if
> not, adding 780k extra would definitely affect armel/orion5x qnap d-i
> initrd image.
>
> So I append Martin, the
On 10/25/2016 03:17 PM, Marga Manterola wrote:
> The installer currently doesn't support downloading packages from https
> mirrors, because busybox's wget doesn't support https.
>
> The wget package has been changed to provide a udeb, compiled against
> the libssl udeb, so that it provides https s
On Tue, Oct 25, 2016 at 10:17 PM, Marga Manterola wrote:
> Package: debian-installer
> Severity: normal
>
> So, approximately 780k extra for the initrd image (3.5% increase)
I'm not sure whether any libs already is included in the d-i image, if
not, adding 780k extra would definitely affect armel
21 matches
Mail list logo
