FEDORA-2017-3bb960e4aa created by tmz 4 years ago for Fedora 26
stable

Use default, collision-detecting SHA1 implementation

Upstream changed the default SHA1 implementation in 2.13.0 to one which detects collisions. It may be slightly slower than BLK_SHA1 in some cases, but the added safety it provides in the face of the SHAttered attack should be worth the cost.

We overrode the default SHA1 implementation in b796934 (Update to git-1.6.5.rc2 - Enable Linus' block-sha1 implementation.) The main reason was to avoid linking against openssl's libcrypto for most binaries, which saved a measurable amount of space. Using the new DC_SHA1 default provides the same benefit.

How to install

sudo dnf upgrade --advisory=FEDORA-2017-3bb960e4aa

This update has been submitted for testing by tmz.

4 years ago

This update has been pushed to testing.

4 years ago
User Icon besser82 commented & provided feedback 4 years ago
karma

Works great! LGTM! =)

User Icon rdes commented & provided feedback 4 years ago
karma

LGTM

User Icon sumantrom commented & provided feedback 4 years ago
karma

works fine for me

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
enhancement
Severity
medium
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago

Automated Test Results