Uploaded image for project: 'Jackrabbit Oak'
  1. Jackrabbit Oak
  2. OAK-5827

Don't use SHA-1 for new DataStore binaries

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 1.7.0, 1.6.4, 1.8.0
    • None
    • None

    Description

      A collision for SHA-1 has been published. We still use SHA-1 for the FileDataStore, and I believe the S3 DataStore right now. Given there is a collision, we should switch to a stronger algorithm, for example SHA-256, for new binaries.

      Attachments

        1. OAK-5827.patch
          3 kB
          Thomas Mueller
        2. OAK-5827b.patch
          6 kB
          Amit Jain

        Issue Links

          Activity

            People

              amitjain Amit Jain
              thomasm Thomas Mueller
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: