Clona um repositório do github no RHEL 5

1

Estou usando o RedHat 5.2 e preciso clonar um repositório do Github. Infelizmente, desde 1º de fevereiro deste ano, eles desabilitaram TLSv1 e TLSv1.1

Unfortunately, Red Hat 5 does not have a point release that supports TLSv1.2. We advise that users of Red Hat 5 upgrade to a newer version of the operating system.

fonte aqui

Consegui obter as origens de OpenSSL 1.0.2a 19 Mar 2015 , compilá-las e compilar curl-7.58.0 com o novo OpenSSL. Eu também compilei um novo git com o novo OpenSSL e curvei

$ curl --version
curl 7.58.0 (i686-pc-linux-gnu) libcurl/7.58.0 OpenSSL/1.0.2a zlib/1.2.3
Release-Date: 2018-01-24
Protocols: dict file ftp ftps gopher http https imap imaps pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: AsynchDNS IPv6 Largefile NTLM NTLM_WB SSL libz TLS-SRP UnixSockets HTTPS-proxy
$git --version
git version 2.16.2

Eu sou capaz de curl Github

# curl -Ivvv -k https://github.com
* Rebuilt URL to: https://github.com/
*   Trying 192.30.253.113...
* TCP_NODELAY set
* Connected to github.com (192.30.253.113) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Client hello (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
* ALPN, server accepted to use http/1.1
* Server certificate:
*  subject: businessCategory=Private Organization; jurisdictionC=US; jurisdictionST=Delaware; serialNumber=5157550; street=88 Colin P Kelly, Jr Street; postalCode=94107; C=US; ST=California; L=San Francisco; O=GitHub, Inc.; CN=github.com
*  start date: Mar 10 00:00:00 2016 GMT
*  expire date: May 17 12:00:00 2018 GMT
*  issuer: C=US; O=DigiCert Inc; OU=www.digicert.com; CN=DigiCert SHA2 Extended Validation Server CA
*  SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.

Mas não consigo clonar a partir dele

$ env GIT_TRACE=2 git clone --verbose https://github.com/torvalds/linux.git
12:02:58.696627 git.c:344               trace: built-in: git 'clone' '--verbose' 'https://github.com/torvalds/linux.git'
Cloning into 'linux'...
12:02:58.697620 run-command.c:627       trace: run_command: 'git-remote-https' 'origin' 'https://github.com/torvalds/linux.git'

Eu também tentei iniciar um novo repositório e definir o link do Github como origem, mas também não está funcionando.

Eu estou perdendo uma configuração ou uma bandeira em algum lugar?

Obrigado

    
por deepsquid 27.02.2018 / 18:08

1 resposta

2

No RHEL 5, estou usando o git-1.8.2.3-1.el5 da Epel 5:

# rpm -qi git
Name        : git                          Relocations: (not relocatable)
Version     : 1.8.2.3                           Vendor: Fedora Project
Release     : 1.el5                         Build Date: Di 26 Apr 2016 19:30:16 CEST

Parece requerer o OpenSSL 1:

# ldd /usr/bin/git-remote-https
    libssl.so.10 => /lib/libssl.so.10 (0x00b2a000)
    libcrypto.so.10 => /lib/libcrypto.so.10 (0x00595000)

No meu sistema, isso é resolvido por:

# rpm -qf /lib/libssl.so.10
openssl1-1.0.1e-57.el5_11

E este vem de "tuxad repo": link

Não tenho problemas em clonar a partir do github.

    
por 29.07.2018 / 18:34