[SOLR-14649] Package manager should use SHA512, not SHA1 - ASF JIRA

Attach files

Attach Screenshot

Add vote

Voters

Watch issue

Watchers

Create sub-task

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Critical
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: Plugin system
Labels:
None

Description

Due to a massive oversight, we only support SHA1 based package signing. We should immediately switch to SHA512. Post that, all existing packages must be re-signed with SHA512.

Attachments

Attach one or more files to this issue
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Manage Attachments

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Unassigned

Reporter:: Ishan Chattopadhyaya

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 14/Jul/20 12:49

Updated:: 19/Aug/21 10:26

Agile

View on Board

Package manager should use SHA512, not SHA1

Details

Description

Attachments

Attachments

Activity

People

Dates

Agile

Slack

Issue deployment