[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH v3 0/4] Stop using insecure transports

To: xen-devel@xxxxxxxxxxxxxxxxxxxx
From: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 17 Feb 2023 16:35:23 -0500
Cc: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, Ross Lagerwall <ross.lagerwall@xxxxxxxxxx>, Samuel Thibault <samuel.thibault@xxxxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Doug Goldstein <cardoe@xxxxxxxxxx>
Delivery-date: Fri, 17 Feb 2023 21:36:13 +0000
Feedback-id: iac594737:Fastmail
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Obtaining code over an insecure transport is a terrible idea for
blatently obvious reasons.  Even for non-executable data, insecure
transports are considered deprecated.

Changes since v2:

- Drop patches 5 and 6, which changed links not used by automated tools.
  These patches are the least urgent and hardest to review.

- Ensure that no links are broken, and fail with an error instead of
  trying to use links that *are* broken.

Demi Marie Obenour (4):
  Use HTTPS for all xenbits.xen.org Git repos
  Build system: Replace git:// and http:// with https://
  Automation and CI: Replace git:// and http:// with https://
  Rip out HyperTransport

 Config.mk                                    | 20 ++++-------
 README                                       |  4 +--
 automation/build/centos/CentOS-7.2.repo      |  8 ++---
 automation/build/debian/stretch-llvm-8.list  |  4 +--
 automation/build/debian/unstable-llvm-8.list |  4 +--
 automation/scripts/qemu-smoke-dom0-arm32.sh  |  2 +-
 docs/misc/livepatch.pandoc                   |  2 +-
 docs/process/xen-release-management.pandoc   |  2 +-
 scripts/get_maintainer.pl                    |  2 +-
 stubdom/configure                            | 24 ++++++++-----
 stubdom/configure.ac                         | 24 ++++++++-----
 tools/firmware/etherboot/Makefile            |  6 +---
 xen/include/xen/pci_regs.h                   | 37 --------------------
 13 files changed, 51 insertions(+), 88 deletions(-)

-- 
Sincerely,
Demi Marie Obenour (she/her/hers)
Invisible Things Lab

Follow-Ups:
- [PATCH v4 0/3] Stop using insecure transports
  - From: Demi Marie Obenour
- [PATCH v3 4/4] Rip out HyperTransport
  - From: Demi Marie Obenour
- [PATCH v3 3/4] Automation and CI: Replace git:// and http:// with https://
  - From: Demi Marie Obenour
- [PATCH v3 2/4] Build system: Replace git:// and http:// with https://
  - From: Demi Marie Obenour
- [PATCH v3 1/4] Use HTTPS for all xenbits.xen.org Git repos
  - From: Demi Marie Obenour

References:
- [PATCH v2 0/4] Stop using insecure transports
  - From: Demi Marie Obenour

Prev by Date: Re: [PATCH v2 03/13] tools/xenstore: introduce accounting data array for per-domain values
Next by Date: [PATCH v3 1/4] Use HTTPS for all xenbits.xen.org Git repos
Previous by thread: Re: [PATCH v2 0/4] Stop using insecure transports
Next by thread: [PATCH v3 1/4] Use HTTPS for all xenbits.xen.org Git repos
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.