Re: [PATCH] Replace HTTP links with HTTPS ones: Documentation/translations/it_IT

From: Alexander A. Klimov
Date: Thu Jun 11 2020 - 12:05:48 EST

Next message: Eric Biggers: "[PATCH v2] vfs: don't unnecessarily clone write access for writable fds"
Previous message: Kamal Dasu: "Re: [PATCH 2/2] mtd: rawnand: brcmnand: Ecc error handling on EDU transfers"
In reply to: Jonathan Corbet: "Re: [PATCH] Replace HTTP links with HTTPS ones: Documentation/translations/it_IT"
Next in thread: Jonathan Corbet: "Re: [PATCH] Replace HTTP links with HTTPS ones: Documentation/translations/it_IT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am 11.06.20 um 09:01 schrieb Alexander A. Klimov:

Am 11.06.20 um 05:12 schrieb Kees Cook:

On Wed, Jun 10, 2020 at 08:11:39PM +0200, Alexander A. Klimov wrote:

Am 10.06.20 um 10:57 schrieb Federico Vaga:

On Tuesday, June 9, 2020 10:12:41 PM CEST Alexander A. Klimov wrote:

Rationale:
Reduces attack surface on kernel devs opening the links for MITM
as HTTPS traffic is much harder to manipulate.

Deterministic algorithm:
For each file:
ÂÂÂ For each line:
ÂÂÂÂÂ If doesn't contain `\bxmlns\b`:
ÂÂÂÂÂÂÂ For each link, `\bhttp://[^# \t\r\n]*(?:\w|/)`:
ÂÂÂÂÂÂÂÂÂ If both the HTTP and HTTPS versions
ÂÂÂÂÂÂÂÂÂ return 200 OK and serve the same content:
ÂÂÂÂÂÂÂÂÂÂÂ Replace HTTP with HTTPS.

Is this script somewhere we can read it? (It's easier usually to review
the code for bulk changes than the bulk changes themselves.)

Is any of you familiar with Golang?

@Maintainers Would any of you actually review like this? If yes, is the pseudo-code not enough?

Signed-off-by: Alexander A. Klimov <grandmaster@xxxxxxxxxxxx>
---
ÂÂ .../translations/it_IT/admin-guide/README.rstÂÂÂÂÂ |Â 2 +-
ÂÂ .../translations/it_IT/doc-guide/parse-headers.rst |Â 2 +-
ÂÂ .../translations/it_IT/doc-guide/sphinx.rstÂÂÂÂÂÂÂ | 10 +++++-----
ÂÂ .../translations/it_IT/process/2.Process.rstÂÂÂÂÂÂ | 12 ++++++------
ÂÂ .../translations/it_IT/process/3.Early-stage.rstÂÂ |Â 2 +-
ÂÂ .../translations/it_IT/process/4.Coding.rstÂÂÂÂÂÂÂ |Â 4 ++--
ÂÂ .../it_IT/process/7.AdvancedTopics.rstÂÂÂÂÂÂÂÂÂÂÂÂ |Â 8 ++++----
ÂÂ .../translations/it_IT/process/8.Conclusion.rstÂÂÂ | 14 +++++++-------
ÂÂ .../translations/it_IT/process/adding-syscalls.rst |Â 4 ++--
ÂÂ .../translations/it_IT/process/changes.rstÂÂÂÂÂÂÂÂ |Â 6 +++---
ÂÂ .../translations/it_IT/process/clang-format.rstÂÂÂ |Â 2 +-
ÂÂ .../translations/it_IT/process/coding-style.rstÂÂÂ |Â 2 +-
ÂÂ Documentation/translations/it_IT/process/howto.rst |Â 2 +-
ÂÂ .../it_IT/process/maintainer-pgp-guide.rstÂÂÂÂÂÂÂÂ |Â 2 +-
ÂÂ .../it_IT/process/submitting-patches.rstÂÂÂÂÂÂÂÂÂÂ |Â 4 ++--
ÂÂ .../it_IT/process/volatile-considered-harmful.rstÂ |Â 4 ++--
ÂÂ 16 files changed, 40 insertions(+), 40 deletions(-)

diff --git a/Documentation/translations/it_IT/doc-guide/sphinx.rst
b/Documentation/translations/it_IT/doc-guide/sphinx.rst index
f1ad4504b734..0aaeb0297661 100644
--- a/Documentation/translations/it_IT/doc-guide/sphinx.rst
+++ b/Documentation/translations/it_IT/doc-guide/sphinx.rst
@@ -14,7 +14,7 @@ Per generare la documentazione in HTML o PDF, usate
comandi ``make htmldocs`` o ``make pdfdocs``. La documentazione cosÃ
generata sarÃ disponibile nella cartella ``Documentation/output``.

-.. _Sphinx: http://www.sphinx-doc.org/
+.. _Sphinx: https://www.sphinx-doc.org/
ÂÂ .. _reStructuredText: http://docutils.sourceforge.net/rst.html

It is not part of the deterministic algorithm but you may consider this as
well

Why did it not match?

I didn't log that link-by-link. Maybe because I also didn't follow plain HTTP redirects while opening HTTPS links. Maybe it even matched, but was added after I made the changes.

Anyway, I'll maybe cover it in round II.

-.. _reStructuredText: http://docutils.sourceforge.net/rst.html
+.. _reStructuredText: https://docutils.sourceforge.io/rst.html

I'll think about analyzing such almost-matches, extending the algo and
supplying a second round of patches once all [1] of this round arrive in
torvalds/master.

[1]:

âÂ linux git:(feature/https-links-3) â git diff --shortstat
Â 1963 files changed, 2882 insertions(+), 2882 deletions(-)
âÂ linux git:(feature/https-links-3) â

Is there a reason to do this one language at a time instead of just
doing everything in one go?

And yes, *at the moment* I'm patching one subsystem at a time. And the discussion around 93431e0607e5 and all of its prototypes shown that it was smarter than supplying thousands of patches at once.

Now I've (hopefully) made and corrected all possible mistakes in two patches and clearly know how to continue with the next thousands so the maintainers won't have anything to comply about.

Once the doc subsystems patches get applied (or even reach torvalds/master) I'll submit maybe ten patches at once. And the more maintainers apply them...

There are two reasons:

* Jonathan said like theoretically you could give it all at once to Linus, but practically I'd not do that, please split by subsystem
* Linus *didn't even respond* (at least I didn't receive anything) to my catch-them-all patch at all, not even like please not as .gz attachment or please split by subsystem >

Next message: Eric Biggers: "[PATCH v2] vfs: don't unnecessarily clone write access for writable fds"
Previous message: Kamal Dasu: "Re: [PATCH 2/2] mtd: rawnand: brcmnand: Ecc error handling on EDU transfers"
In reply to: Jonathan Corbet: "Re: [PATCH] Replace HTTP links with HTTPS ones: Documentation/translations/it_IT"
Next in thread: Jonathan Corbet: "Re: [PATCH] Replace HTTP links with HTTPS ones: Documentation/translations/it_IT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]