Closed
Bug 1080335
Opened 10 years ago
Closed 10 years ago
[EME] Hash device id with SHA256
Categories
(Core :: Audio/Video, defect)
Tracking
()
RESOLVED
FIXED
People
(Reporter: cpearce, Assigned: cpearce)
References
(Blocks 1 open bug)
Details
We should hash the node id added in bug 1060179 with SHA256 instead of SHA1, since SHA1 is considered not so great anymore.
I suggest using SHA-256 code from NaCl (http://nacl.cr.yp.to/). It's in the Public Domain and is pure C without external dependencies, so it should be easier to use statically in the CDM host executable than code entangled in NSS's internals/dependencies. (NaCl's build system might not be a good match for ours, so copying and pasting just the SHA-256 code as preprocessed by NaCl's build system is probably the way to go.)
Comment 2•10 years ago
|
||
There's no reason we can't use NSS's code like it was done in bug 1060179. In fact, I don't understand the comments about freebl. Did the reviewer miss the fact that the freebl code was being statically linked, and thus was not really freebl anymore?
Assignee | ||
Updated•10 years ago
|
Assignee: nobody → cpearce
Comment 3•10 years ago
|
||
These bugs are necessary for vouching and sandboxing a third-party CDM.
Blocks: eme-m2
Assignee | ||
Comment 4•10 years ago
|
||
Fixed by bug 1088488.
Assignee | ||
Updated•10 years ago
|
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
Assignee | ||
Comment 5•10 years ago
|
||
Mass update firefox-status to track EME uplift.
You need to log in
before you can comment on or make changes to this bug.
Description
•