[Top] [All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports

To: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>
From: George Dunlap <george.dunlap@xxxxxxxxx>
Date: Thu, 9 Feb 2023 14:25:07 +0000
Cc: xen-devel@xxxxxxxxxxxxxxxxxxxx, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, Ross Lagerwall <ross.lagerwall@xxxxxxxxxx>, "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>, Quan Xu <quan.xu0@xxxxxxxxx>, Samuel Thibault <samuel.thibault@xxxxxxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, Christian Lindig <christian.lindig@xxxxxxxxxx>, David Scott <dave@xxxxxxxxxx>, Paul Durrant <paul@xxxxxxx>
Delivery-date: Thu, 09 Feb 2023 14:25:22 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Wed, Feb 8, 2023 at 8:59 PM Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx> wrote:

Obtaining code over an insecure transport is a terrible idea for
blatently obvious reasons. Even for non-executable data, insecure
transports are considered deprecated.

This patch changes miscellaneous links that are not used by any
automated tool. Some of these links are dead anyway.

As I said in response to patch 4, I appreciate the goal and the effort here. But I'd rather not replace a working link with a broken link, or a broken link with another broken link.

If we want to make this change, I think we're going to have to be creative with how the link replacement is done, as well as in how it's demonstrated to reviewers that the new URLs are valid.

One option, for instance, could be writing a small script that would check the link validity first and only make the change if the link was valid; and then including that script in the commit message. The reviewer could then convince themselves that the script was correct, and give an Ack or R-b on that basis. There are probably other ideas as well.

Any thoughts?

-George

Follow-Ups:
- Re: [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports
  - From: Demi Marie Obenour

References:
- [PATCH v2 0/4] Stop using insecure transports
  - From: Demi Marie Obenour
- [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports
  - From: Demi Marie Obenour

Prev by Date: [PATCH] SUPPORT.md: update version to 4.18-unstable
Next by Date: Re: [PATCH] SUPPORT.md: update version to 4.18-unstable
Previous by thread: [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports
Next by thread: Re: [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports
Index(es):
- Date
- Thread

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.