All users were logged out of Bugzilla on October 13th, 2018

Make post-mozilla-rel.pl use a stronger crypto hash when creating update.snippet

RESOLVED WORKSFORME

Status

()

RESOLVED WORKSFORME
13 years ago
10 years ago

People

(Reporter: darin.moz, Unassigned)

Tracking

Trunk
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

(URL)

(Reporter)

Description

13 years ago
Make post-mozilla-rel.pl use a stronger crypto hash when creating update.snippet

Currently, it is using MD5, and we should instead leverage a perl crypto module
to use a stronger hash.  MD5 is probably fine in practice, but for good measure,
we probably ought to use something stronger (because we can).

Comment 1

13 years ago
does the perl install use the DIGEST package?  I think that comes with sha1.
(Reporter)

Comment 3

13 years ago
Oops, I forgot to mention that the version of post-mozilla-rel.pl that is
actually in production has been modified to select md5 instead of sha1 because
some of the tinderboxen do not have the sha1sum program installed.

Comment 4

13 years ago
I think the resolution to this bug is to install sha1sum on all tinderboxen, and
modify the script. Isn't it a really minor change to install sha1sum ?

Should this be assigned to chase ?
(Assignee)

Updated

10 years ago
Product: Firefox → Toolkit
We are using SHA1 now on the tinderboxen... resolving wfm since I don't know the bug that changed this.
Status: NEW → RESOLVED
Last Resolved: 10 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.