Re: [PATCH] Replace HTTP links with HTTPS ones: security

From: James Morris
Date: Tue Jul 07 2020 - 16:28:53 EST

Next message: Sowjanya Komatineni: "Re: [RFC PATCH v2 11/18] media: tegra-video: Add support for external sensor capture"
Previous message: Cyrill Gorcunov: "Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe"
In reply to: John Johansen: "Re: [PATCH] Replace HTTP links with HTTPS ones: security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 5 Jul 2020, Alexander A. Klimov wrote:

> Rationale:
> Reduces attack surface on kernel devs opening the links for MITM
> as HTTPS traffic is much harder to manipulate.
>
> Deterministic algorithm:
> For each file:
> If not .svg:
> For each line:
> If doesn't contain `\bxmlns\b`:
> For each link, `\bhttp://[^# \t\r\n]*(?:\w|/)`:
> If both the HTTP and HTTPS versions
> return 200 OK and serve the same content:
> Replace HTTP with HTTPS.
>
> Signed-off-by: Alexander A. Klimov <grandmaster@xxxxxxxxxxxx>

Thanks.

Applied to
git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security.git next-general

--
James Morris
<jmorris@xxxxxxxxx>

Next message: Sowjanya Komatineni: "Re: [RFC PATCH v2 11/18] media: tegra-video: Add support for external sensor capture"
Previous message: Cyrill Gorcunov: "Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe"
In reply to: John Johansen: "Re: [PATCH] Replace HTTP links with HTTPS ones: security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]