Uploaded image for project: 'Jackrabbit Oak'
  1. Jackrabbit Oak
  2. OAK-5827

Don't use SHA-1 for new DataStore binaries

    XMLWordPrintableJSON

    Details

      Description

      A collision for SHA-1 has been published. We still use SHA-1 for the FileDataStore, and I believe the S3 DataStore right now. Given there is a collision, we should switch to a stronger algorithm, for example SHA-256, for new binaries.

        Attachments

        1. OAK-5827.patch
          3 kB
          Thomas Mueller
        2. OAK-5827b.patch
          6 kB
          Amit Jain

          Issue Links

          is blocked by

          Improvement - An improvement or enhancement to an existing feature or task. JCR-4115 Don't use SHA-1 for new DataStore binaries (Jackrabbit)

          • Major - Major loss of function.
          • Closed

          Task - A task that needs to be done. OAK-5883 Update Oak trunk to Jackrabbit 2.15.1

          • Blocker - Blocks development and/or testing work, production could not run
          • Closed
          is related to

          New Feature - A new feature of the product, which has yet to be developed. OAK-4810 FileDataStore: support SHA-2

          • Major - Major loss of function.
          • Resolved
          relates to

          Bug - A problem which impairs or prevents the functions of the product. OAK-6442 Update Oak 1.6 to Jackrabbit 2.14.2

          • Trivial - Cosmetic problem like misspelt words or misaligned text.
          • Closed

            Activity

              People

              • Assignee:
                amitjain Amit Jain
                Reporter:
                thomasm Thomas Mueller
              • Votes:
                0 Vote for this issue
                Watchers:
                7 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: