Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Memory safe TLS in git #6

Open
kevinburke1 opened this issue Feb 12, 2021 · 1 comment
Open

Memory safe TLS in git #6

kevinburke1 opened this issue Feb 12, 2021 · 1 comment

Comments

@kevinburke1
Copy link

Git uses libcurl for http:// and https:// fetches. If you are using a curl older than 7.34, then git will use OpenSSL to do IMAP fetches.

The recent change to add a rustls backend for curl - documented here: https://daniel.haxx.se/blog/2021/02/09/curl-supports-rustls/ - means that Git should use Rust for TLS as long as you are compiling in a libcurl that has been compiled with TLS, which should be possible on tip, or in version 7.76.0.

To do SSH transfers Git executes the "ssh" binary - it doesn't compile SSH in. The ssh binary on most machines is typically OpenSSH. I'm not sure if there is a Rust replacement for everything OpenSSH does.
@kevinburke1
Copy link
Author

Maybe if you enabled the wiki I could start adding these there? Basically I'd like to track the progress of memory safe TLS in different popular pieces of software.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@kevinburke1