[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 1/4] Build system: Replace git:// and http:// with https://

To: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>
From: George Dunlap <george.dunlap@xxxxxxxxx>
Date: Thu, 9 Feb 2023 14:01:52 +0000
Cc: xen-devel@xxxxxxxxxxxxxxxxxxxx, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Samuel Thibault <samuel.thibault@xxxxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>
Delivery-date: Thu, 09 Feb 2023 14:02:12 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Wed, Feb 8, 2023 at 8:58 PM Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx> wrote:

Obtaining code over an insecure transport is a terrible idea for
blatently obvious reasons. Even for non-executable data, insecure
transports are considered deprecated.

This patch enforces the use of secure transports in the build system.

Signed-off-by: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>

Hey Demi,

Thanks for this series -- we definitely want the build system to use secure transports when available. Can you confirm that you've tested the "+s" versions of all the URLs in this patch, and verified that they actually work?

If you haven't, I realize that may be somewhat tedious, but I think it's pretty important. You should be able to automate a lot of it using `curl --head --fail`. [1]

-George

[1] https://stackoverflow.com/questions/12199059/how-to-check-if-an-url-exists-with-the-shell-and-probably-curl

Follow-Ups:
- Re: [PATCH v2 1/4] Build system: Replace git:// and http:// with https://
  - From: Demi Marie Obenour
- Re: [PATCH v2 1/4] Build system: Replace git:// and http:// with https://
  - From: Anthony PERARD

References:
- [PATCH v2 0/4] Stop using insecure transports
  - From: Demi Marie Obenour
- [PATCH v2 1/4] Build system: Replace git:// and http:// with https://
  - From: Demi Marie Obenour

Prev by Date: Re: [XEN PATCH] libs/util: Remove unused headers in libxlu_pci.c
Next by Date: Re: [XEN PATCH] libs/util: Fix parallel build between flex/bison and CC rules
Previous by thread: [PATCH v2 1/4] Build system: Replace git:// and http:// with https://
Next by thread: Re: [PATCH v2 1/4] Build system: Replace git:// and http:// with https://
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.