All of lore.kernel.org
 help / color / mirror / Atom feed
From: Johannes Schindelin <Johannes.Schindelin@gmx.de>
To: Jeffrey Walton <noloader@gmail.com>
Cc: "Michal Suchánek" <msuchanek@suse.de>, "Git List" <git@vger.kernel.org>
Subject: Re: SHA-accelerated Git
Date: Mon, 3 Jun 2019 12:14:18 +0200 (CEST)	[thread overview]
Message-ID: <nycvar.QRO.7.76.6.1906031211470.48@tvgsbejvaqbjf.bet> (raw)
In-Reply-To: <CAH8yC8n8XN1wKiF4FgTm6xfnRHUDi+1=iuWXE8F91P=7mLNsLg@mail.gmail.com>

[-- Attachment #1: Type: text/plain, Size: 1281 bytes --]

Hi Jeffrey,

On Sun, 2 Jun 2019, Jeffrey Walton wrote:

> On Sun, Jun 2, 2019 at 7:21 AM Michal Suchánek <msuchanek@suse.de> wrote:
> >
> > On Sun, 2 Jun 2019 06:43:07 -0400
> > Jeffrey Walton <noloader@gmail.com> wrote:
> >
> > > I have a lot of experience with cutting in SHA acceleration. I have
> > > no experience with Git.
> >
> > sha1 is dead. Git is planning to move away from it. It will not happen
> > overnight but it probably does not make sense to accelerate it at this
> > point.
> >
> > https://github.com/git/git/blob/next/Documentation/technical/hash-function-transition.txt
>
> SHA-1 has been dead for years. That has not stopped Git yet :)

Even worse. Git has changed from an OpenSSL accelerated SHA-1 to a
collision-detecting SHA-1 (sha1dc).

As long as your accelerated SHA-1 cannot guarantee the same level of
safeguards as sha1dc, there is a negligible likelihood that your patches
will be accepted.

> Comparing against a standard C/C++ implementation, Git will see a 3x to
> 6x speedup depending on the platform and algorithm.

Indeed, this reflects my findings.

It's just that we struck the balance on the other side of performance, in
favor of preventing possible attack vectors as best as we can.

Ciao,
Johannes

      reply	other threads:[~2019-06-03 10:14 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2019-06-02 10:43 SHA-accelerated Git Jeffrey Walton
2019-06-02 11:21 ` Michal Suchánek
2019-06-02 11:34   ` Jeffrey Walton
2019-06-03 10:14     ` Johannes Schindelin [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=nycvar.QRO.7.76.6.1906031211470.48@tvgsbejvaqbjf.bet \
    --to=johannes.schindelin@gmx.de \
    --cc=git@vger.kernel.org \
    --cc=msuchanek@suse.de \
    --cc=noloader@gmail.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.