diff options
| author | Mark Lodato <lodatom@gmail.com> | 2009-05-27 23:16:02 -0400 | 
|---|---|---|
| committer | Junio C Hamano <gitster@pobox.com> | 2009-06-18 10:45:05 -0700 | 
| commit | 30dd916348001e4313708473d91d633d3b14d1b5 (patch) | |
| tree | 74b941711694a3ffd256902642980f18e12aff72 /parse-options.c | |
| parent | cb9d398c3506a6354a1c63d265a4228fcec28fda (diff) | |
| download | git-30dd916348001e4313708473d91d633d3b14d1b5.tar.gz | |
http.c: prompt for SSL client certificate password
If an SSL client certificate is enabled (via http.sslcert or
GIT_SSL_CERT), prompt for the certificate password rather than
defaulting to OpenSSL's password prompt.  This causes the prompt to only
appear once each run.  Previously, OpenSSL prompted the user *many*
times, causing git to be unusable over HTTPS with client-side
certificates.
Note that the password is stored in memory in the clear while the
program is running.  This may be a security problem if git crashes and
core dumps.
The user is always prompted, even if the certificate is not encrypted.
This should be fine; unencrypted certificates are rare and a security
risk anyway.
Signed-off-by: Mark Lodato <lodatom@gmail.com>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to 'parse-options.c')
0 files changed, 0 insertions, 0 deletions
