[Top] [All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports

To: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>
From: George Dunlap <george.dunlap@xxxxxxxxx>
Date: Fri, 10 Feb 2023 10:02:23 +0000
Cc: xen-devel@xxxxxxxxxxxxxxxxxxxx, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, Ross Lagerwall <ross.lagerwall@xxxxxxxxxx>, "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>, Quan Xu <quan.xu0@xxxxxxxxx>, Samuel Thibault <samuel.thibault@xxxxxxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, Christian Lindig <christian.lindig@xxxxxxxxxx>, David Scott <dave@xxxxxxxxxx>, Paul Durrant <paul@xxxxxxx>
Delivery-date: Fri, 10 Feb 2023 10:02:55 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Thu, Feb 9, 2023 at 5:51 PM Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx> wrote:

On Thu, Feb 09, 2023 at 02:25:07PM +0000, George Dunlap wrote:
> On Wed, Feb 8, 2023 at 8:59 PM Demi Marie Obenour <
> demi@xxxxxxxxxxxxxxxxxxxxxx> wrote:
>
> > Obtaining code over an insecure transport is a terrible idea for
> > blatently obvious reasons. Even for non-executable data, insecure
> > transports are considered deprecated.
> >
> > This patch changes miscellaneous links that are not used by any
> > automated tool. Some of these links are dead anyway.
> >
>
> As I said in response to patch 4, I appreciate the goal and the effort
> here. But I'd rather not replace a working link with a broken link, or a
> broken link with another broken link.
>
> If we want to make this change, I think we're going to have to be creative
> with how the link replacement is done, as well as in how it's demonstrated
> to reviewers that the new URLs are valid.
>
> One option, for instance, could be writing a small script that would check
> the link validity first and only make the change if the link was valid; and
> then including that script in the commit message. The reviewer could then
> convince themselves that the script was correct, and give an Ack or R-b on
> that basis. There are probably other ideas as well.
>
> Any thoughts?
>
> -George

What about breaking the patch up into smaller ones? One could change
all of the xenbits.xen.org links in one patch, since those are known to
support HTTPS. Then keep going for other domains.

That would work for me.

-George

References:
- [PATCH v2 0/4] Stop using insecure transports
  - From: Demi Marie Obenour
- [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports
  - From: Demi Marie Obenour
- Re: [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports
  - From: George Dunlap
- Re: [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports
  - From: Demi Marie Obenour

Prev by Date: Re: [PATCH v3 09/14] xen/riscv: introduce decode_cause() stuff
Next by Date: [xen-4.17-testing test] 176804: tolerable trouble: fail/pass/starved - PUSHED
Previous by thread: Re: [PATCH v2 3/4] Miscellaneous and documentation: Only use TLS-protected transports
Next by thread: [PATCH v2 4/4] GPL License Boilerplate: Switch from HTTP to HTTPS
Index(es):
- Date
- Thread

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.