Closed Bug 1073302 Opened 10 years ago Closed 10 years ago

Add mfbt/SHA2

Categories

(Core :: MFBT, defect)

Product:
Core
Component:
MFBT
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 830880

People

(Reporter: rillian, Unassigned)

Details

mfbt implements SHA-1, which is increasingly considered too weak for security purposes, like hashing user data. It would be nice to have a implementation of SHA-2 available, e.g. SHA-256.
History suggests this can be done by porting security/nss/lib/freebl/sha512.c as like was done for sha_fash.c.
SHA-1 is not meant to be used as a replacement for crypto-secure hashes. We have NSS for that.
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.