From: Thomas Gummerer <t.gummerer@gmail.com>
To: Christoph Egger <christoph@christoph-egger.org>
Cc: Daniel Stenberg <daniel@haxx.se>, git@vger.kernel.org
Subject: Re: [PATCH] Implement https public key pinning
Date: Fri, 12 Feb 2016 11:02:26 +0100 [thread overview]
Message-ID: <20160212100226.GB13775@hank> (raw)
In-Reply-To: <87oabmg24u.fsf@mitoraj.siccegge.de>
On 02/12, Christoph Egger wrote:
> Daniel Stenberg <daniel@haxx.se> writes:
> > On Thu, 11 Feb 2016, Christoph Egger wrote:
> >> +#if LIBCURL_VERSION_NUM >= 0x074400
> >
> > That should probably be 0x072c00 ...
>
> This is, of course, right.
>
> I used 7.44 / 0x072c00 as base because it has robust support for this
> feature (including the sha256// variant). One could lower that depending
> on the compromises one is willing to take FWIW
>
> Added in 7.39.0 for OpenSSL, GnuTLS and GSKit. Added in 7.43.0 for NSS
> and wolfSSL/CyaSSL. Added for mbedtls in 7.47.0, sha256 support added
> in 7.44.0 for OpenSSL, GnuTLS, NSS and wolfSSL/CyaSSL. Other SSL
> backends not supported.
>
> Also some people suggested that git should fail if this option is
> requested in the config but not supported by the libcurl version instead
> of falling back to just not pin the key. I'm undecided about that.
This seems to have been suggested off list (or at least I can't find
the message). FWIW I do agree with failing or as a bare minimum
warning the user if the config option is set, but not supported by the
libcurl version. Otherwise we risk giving the user a false sense of
security when the option is set, which is arguably worse than not
having the security option at all.
> Christoph
next prev parent reply other threads:[~2016-02-12 10:02 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-02-11 22:54 [PATCH] Implement https public key pinning Christoph Egger
2016-02-11 23:30 ` Daniel Stenberg
2016-02-12 1:15 ` Christoph Egger
2016-02-12 1:18 ` [PATCH v2] " Christoph Egger
2016-02-12 10:02 ` Thomas Gummerer [this message]
2016-02-12 18:37 ` [PATCH] " Jeff King
2016-02-15 13:58 ` Christoph Egger
2016-02-15 14:04 ` [PATCH +warn] " Christoph Egger
2016-02-15 23:25 ` Junio C Hamano
2016-02-16 1:22 ` Jeff King
2016-02-16 3:19 ` Junio C Hamano
2016-02-16 3:28 ` Jeff King
2016-02-16 11:19 ` [PATCH +warn2] " Christoph Egger
2016-02-16 21:20 ` [PATCH +warn] " Junio C Hamano
2016-02-17 21:05 ` Junio C Hamano
2016-02-22 15:41 ` Christoph Egger
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20160212100226.GB13775@hank \
--to=t.gummerer@gmail.com \
--cc=christoph@christoph-egger.org \
--cc=daniel@haxx.se \
--cc=git@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).