On Sun, Jul 12, 2020 at 06:30:04AM -0500, Rob Landley wrote: > On 7/12/20 6:11 AM, Alexander A. Klimov wrote: > > Rationale: > > Reduces attack surface on kernel devs opening the links for MITM > > as HTTPS traffic is much harder to manipulate. > > Trimmed just to the one site without the self-signed certficate: check. > > > Deterministic algorithm: > > For each file: > > If not .svg: > > For each line: > > If doesn't contain `\bxmlns\b`: > > For each link, `\bhttp://[^# \t\r\n]*(?:\w|/)`: > > If neither `\bgnu\.org/license`, nor `\bmozilla\.org/MPL\b`: > > If both the HTTP and HTTPS versions > > return 200 OK and serve the same content: > > Replace HTTP with HTTPS. > > > > Signed-off-by: Alexander A. Klimov <grandmas...@al2klimov.de> > > Acked-by: Rob Landley <r...@landley.net>
Acked-by: Rich Felker <dal...@libc.org> I agree about replacing just the one with working https, not the dead self-signed one. Alexander, is this whole set being submitted upstream through a single maintainer, or do you want me to take the arch/sh patch individually? Rich
