ie. this works (in file /var/db/repos/gentoo/sys-libs/glibc/glibc-9999.ebuild): EGIT_REPO_URI="https://sourceware.org/git/glibc.git" currently it's: # sourceware.org does not have https:// today. EGIT_REPO_URI="git://sourceware.org/git/glibc.git" or this, also works (in /etc/portage/make.conf): EGIT_OVERRIDE_REPO_GLIBC="https://sourceware.org/git/glibc.git" Reproducible: Always
there are 115 more packages which use git:// $ grep -nrIF 'git://' |sed -e 's/\/[^/]*:.*//'|sort -u app-admin/salt app-admin/webapp-config app-arch/wimlib app-backup/btrbk app-crypt/ima-evm-utils app-editors/nano app-emacs/lyskom-elisp-client app-emulation/ganeti app-emulation/ganeti-instance-image app-emulation/xen app-emulation/xen-tools app-eselect/eselect-python app-misc/dvtm app-misc/livecd-tools app-misc/screen app-misc/tmux-mem-cpu-load app-mobilephone/dfu-util app-mobilephone/gnokii app-portage/g-sorcery app-portage/layman app-portage/metagen app-portage/mirrorselect app-text/coolreader dev-db/mariadb dev-db/mysql-cluster dev-embedded/libftdi dev-embedded/urjtag dev-games/simgear dev-libs/cloog dev-libs/librevenge dev-libs/libserialport dev-php/libvirt-php dev-util/quilt dev-util/valgrind dev-vcs/git dev-vcs/git-merge-changelog dev-vcs/gitolite-gentoo dev-vcs/hg-git/files dev-vcs/mr dev-vcs/pwclient eclass eclass/tests games-simulation/flightgear games-simulation/flightgear-data mail-client/claws-mail media-gfx/freewrl media-libs/libpagemaker media-libs/libzmf media-plugins/kodi-vfs-sftp media-sound/dcaenc media-sound/lilypond media-video/ffmpeg media-video/libav media-video/mplayer/files media-video/v4l2loopback net-analyzer/gr-fosphor net-libs/libisds net-libs/libmirisdr net-libs/libosmo-abis net-libs/libosmocore net-libs/libosmo-dsp net-libs/libosmo-netif net-misc/clusterssh net-misc/lcr net-misc/mikutter net-misc/netifrc net-nds/rpcbind net-p2p/deluge net-p2p/ncdc net-wireless/gr-osmosdr net-wireless/openbsc net-wireless/openggsn net-wireless/osmobts net-wireless/osmocom-bb sci-chemistry/gromacs sci-electronics/pulseview sci-electronics/sigrok-cli sci-geosciences/gpsd sci-libs/libsigrok sci-libs/libsigrokdecode sci-libs/nanoflann sci-mathematics/petsc/files sys-apps/dtc sys-apps/iproute2 sys-apps/pmount-gui sys-boot/grub sys-boot/plymouth sys-cluster/legion sys-cluster/lustre sys-devel/binutils sys-devel/crossdev sys-devel/gdb sys-devel/smatch sys-firmware/seabios sys-firmware/sigrok-firmware-fx2lafw sys-fs/aufs-headers sys-fs/aufs-util sys-fs/btrfs-progs sys-fs/mtd-utils sys-fs/udev-init-scripts sys-fs/zfs sys-kernel/aufs-sources sys-kernel/genkernel sys-libs/cygwin-crypt sys-libs/fortify-headers sys-libs/musl sys-libs/newlib sys-libs/uclibc-ng www-apps/cgit/files www-client/luakit www-client/uget x11-misc/obconf x11-misc/pcmanfm x11-wm/awesome/files x11-wm/openbox of these, at least "salt" uses git://github.com :)) well, here's more: $ grep -nrIF 'git://github.com' |sed -e 's/\/[^/]*:.*//'|sort -u app-admin/salt app-misc/tmux-mem-cpu-load dev-vcs/hg-git/files media-plugins/kodi-vfs-sftp media-video/v4l2loopback sci-libs/nanoflann sys-fs/zfs www-client/luakit x11-wm/awesome/files
Several qa tools already detect this automatically. So most developers are aware. However the effort of https for signed source packages is limited. I think we should not open a bug ticket at this time to change http to https. Hence I close it as wontfix. See also #626758.
(In reply to Jonas Stein from comment #2) > Several qa tools already detect this automatically. So most developers are > aware. However the effort of https for signed source packages is limited. I > think we should not open a bug ticket at this time to change http to https. > Hence I close it as wontfix. > See also #626758. Isn't this an issue for 9999 packages in particular though? git:// doesn't verify anything AFAIK. By the way, regarding original bug, this did get fixed: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=2dcabf30efc3ee268c2a90a73eca0bc6d378bced
