Make bootstrap.sh safe from bad connection #1366

omeid · 2015-08-04T05:16:20Z

This allows to run the bootstrap.sh directly and "safely" without storing it on disk.

josegonzalez · 2015-08-04T06:20:43Z

This allows to run the bootstrap.sh directly and "safely" without storing it on disk. Signed-off-by: O'meid <public@omeid.me>

michaelshobbs · 2015-08-10T16:13:16Z

my only concern is variable scoping but it's probably ok. @omeid can you test this with different $DOKKU_TAG and $DOKKU_REPO env vars?

omeid · 2015-08-11T09:41:52Z

Works just fine for me.

$ curl https://raw.githubusercontent.com/omeid/dokku/patch-1/bootstrap.sh | DOKKU_TAG=v0.2.0 DOKKU_REPO="https://github.com/omeid/dokku.git" bash
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  2719  100  2719    0     0   5058      0 --:--:-- --:--:-- --:--:--  5053
Preparing to install v0.2.0 from https://github.com/omeid/dokku.git...
Ign http://archive.ubuntu.com trusty InRelease
Ign http://archive.ubuntu.com trusty-updates InRelease
Ign http://archive.ubuntu.com trusty-security InRelease
25% [Working]^C
$
`

michaelshobbs · 2015-08-11T12:18:48Z

👍

omeid · 2015-08-11T13:10:55Z

It would be nice if bootstrap.dokku.io pointed to https://raw.github.com/progrium/dokku/$LATEST/bootstrap.sh

michaelshobbs · 2015-08-11T15:36:13Z

Who owns dokku.io...?

omeid · 2015-08-12T03:31:22Z

$ whois dokku.io
[Querying whois.nic.io]
[whois.nic.io]

Domain : dokku.io
Status : Live
Expiry : 2016-01-04

NS 1   : dns1.registrar-servers.com
NS 2   : dns2.registrar-servers.com
NS 3   : dns3.registrar-servers.com
NS 4   : dns4.registrar-servers.com
NS 5   : dns5.registrar-servers.com

Owner  : Ernst Rijsdijk
Owner  : Noordgouw 28
Owner  : Ursem
Owner  : Noord-Holland
Owner  : NL
`

michaelshobbs · 2015-08-12T03:41:39Z

Yup I did the same thing. No idea who that is.

omeid · 2015-08-12T11:43:15Z

No idea either.

josegonzalez · 2015-08-12T18:16:51Z

I've tried reaching out to that guy, no response. If anyone wants to do that for us, that would be pretty pro.

Make bootstrap.sh safe from bad connection

omeid · 2015-08-13T06:42:32Z

@josegonzalez It is important that the domain ownership is passed on to the owner/maintainer of dokku though. Having two trust points for this sort of "run remote code on the fly" is kinda less than optimal.

josegonzalez · 2015-08-13T15:10:31Z

@omeid we never refer to dokku.io anywhere, and it's not like we're telling people to install code from a domain other than a github-controlled domain.

omeid force-pushed the patch-1 branch from 6b1c183 to ecd04ca Compare August 4, 2015 07:12

Make bootstrap.sh safe from bad connection

777a098

This allows to run the bootstrap.sh directly and "safely" without storing it on disk. Signed-off-by: O'meid <public@omeid.me>

omeid force-pushed the patch-1 branch from ecd04ca to 777a098 Compare August 4, 2015 07:13

show the Tag and Repo used.

9835b5d

josegonzalez added a commit that referenced this pull request Aug 12, 2015

Merge pull request #1366 from omeid/patch-1

5a5e803

Make bootstrap.sh safe from bad connection

josegonzalez merged commit 5a5e803 into dokku:master Aug 12, 2015

Uh oh!

Make bootstrap.sh safe from bad connection #1366

Make bootstrap.sh safe from bad connection #1366

Uh oh!

Conversation

omeid commented Aug 4, 2015

Uh oh!

josegonzalez commented Aug 4, 2015

Uh oh!

michaelshobbs commented Aug 10, 2015

Uh oh!

omeid commented Aug 11, 2015

Uh oh!

michaelshobbs commented Aug 11, 2015

Uh oh!

omeid commented Aug 11, 2015

Uh oh!

michaelshobbs commented Aug 11, 2015

Uh oh!

omeid commented Aug 12, 2015

Uh oh!

michaelshobbs commented Aug 12, 2015

Uh oh!

omeid commented Aug 12, 2015

Uh oh!

josegonzalez commented Aug 12, 2015

Uh oh!

omeid commented Aug 13, 2015

Uh oh!

josegonzalez commented Aug 13, 2015

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants