[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v5 1/5] Use HTTPS for all xenbits.xen.org Git repos

To: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>
From: Marek Marczykowski-Górecki <marmarek@xxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 25 Feb 2023 23:34:32 +0100
Cc: xen-devel@xxxxxxxxxxxxxxxxxxxx, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, Ross Lagerwall <ross.lagerwall@xxxxxxxxxx>
Delivery-date: Sat, 25 Feb 2023 22:34:55 +0000
Feedback-id: i1568416f:Fastmail
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On Sat, Feb 25, 2023 at 03:37:11PM -0500, Demi Marie Obenour wrote:
> Obtaining code over an insecure transport is a terrible idea for
> blatently obvious reasons.  Even for non-executable data, insecure
> transports are considered deprecated.
> 
> This patch enforces the use of secure transports for all xenbits.xen.org
> Git repositories.  It was generated with the following shell script:
> 
>     git ls-files -z |
>     xargs -0 -- sed -Ei -- 
> 's@(git://xenbits\.xen\.org|http://xenbits\.xen\.org/git-http)/@https://xenbits.xen.org/git-http/@g'
> 
> All altered links have been tested and are known to work.
> 
> Signed-off-by: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>

It seems expired Lets Encrypt root issue applies to few other containers
too:
- archlinux:current: 
https://gitlab.com/xen-project/patchew/xen/-/jobs/3834739751
- debian:stretch-i386: 
https://gitlab.com/xen-project/patchew/xen/-/jobs/3834739762
- debian:unstable-i386: 
https://gitlab.com/xen-project/patchew/xen/-/jobs/3834739771

-- 
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab

Attachment: signature.asc
Description: PGP signature

Follow-Ups:
- Re: [PATCH v5 1/5] Use HTTPS for all xenbits.xen.org Git repos
  - From: Anthony PERARD

References:
- [PATCH v5 0/5] Stop using insecure transports
  - From: Demi Marie Obenour
- [PATCH v5 1/5] Use HTTPS for all xenbits.xen.org Git repos
  - From: Demi Marie Obenour

Prev by Date: [xen-4.16-testing test] 178448: tolerable trouble: fail/pass/starved - PUSHED
Next by Date: [PATCH] Drop ELF notes from non-EFI binary too
Previous by thread: [PATCH v5 1/5] Use HTTPS for all xenbits.xen.org Git repos
Next by thread: Re: [PATCH v5 1/5] Use HTTPS for all xenbits.xen.org Git repos
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.