Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

what is openssl used for? #5011

Open
tmm1 opened this issue Oct 2, 2024 · 2 comments
Open

what is openssl used for? #5011

tmm1 opened this issue Oct 2, 2024 · 2 comments

Comments

@tmm1
Copy link

tmm1 commented Oct 2, 2024

and is there a way to use an alternative like rust-tls?

Screenshot 2024-10-02 at 11 51 04 AM
@tmm1 tmm1 mentioned this issue Oct 9, 2024
Open
@aqrln
Copy link
Member

aqrln commented Oct 10, 2024

Prisma uses TLS by default if it's enabled on the database side. Postgres driver (tokio-postgres) is configured to use the native-tls crate, which uses OpenSSL on Linux and most other systems except macOS and Windows where it uses the platform native Security.framework and SChannel respectively. It's possible to use https://crates.io/crates/tokio-postgres-rustls instead, so feel free to open a PR to add it and put it behind a cargo feature if it's important for you. I'd love if we used rustls by default, but that would certainly be a breaking change, and we'd need to understand how many of the users are relying on TLS versions or cipher suites not supported by rustls if we were to do that. Compatibility was a big problem when we briefly tried using rustls in the SQL Server connector.

@tmm1
Copy link
Author

tmm1 commented Oct 11, 2024

thanks for the pointer to tokio-postgres-rustls. I'll give it a shot and open a PR if it works out for us

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tmm1 @aqrln