[MDEV-25372] Deprecate SHA-1 algorithm from mariadb-server - Jira

XML

Word

Printable

Details

Type: New Feature
Status: Open (View Workflow)
Priority: Major
Resolution: Unresolved
Fix Version/s: None
Component/s: Authentication and Privilege System
Labels:
None

Description

This ticket is an RFE to remove usage of SHA1 in MariaDB components if possible.

The SHA-1 algorithm is weakening over time and it is not considered secure anymore for cryptography use cases.

We are packaging MariaDB as part of the RHEL-9 and it is going to be supported for 10 years at least and during that time we need to make sure all components still comply with security standards.
That is why we want to avoid using weak cryptographic algorithms (SHA-1 in this case).

We realize this might require a substantial amount of work, but we would like to know your perspective on this.

Attachments

Issue Links

includes

CONC-542 Deprecate SHA-1 algorithm from mariadb-connector-c

Open

MDEV-31669 performance_schema to use sha2-256 as a digest instead of md5

Open

MDEV-34712 Implement SHA2 support for file_key_management.so plugin (TDE)

Closed

relates to

MDEV-25262 include modern checksum in VIEW frm defination (not md5)

Open

Activity

People

Assignee:: Unassigned

Reporter:: Lukas Javorsky

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 2021-04-08 10:38

Updated:: 4 days ago 05:56

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.