[#MDEV-25372] Deprecate SHA-1 algorithm from mariadb-server

[MDEV-25372] Deprecate SHA-1 algorithm from mariadb-server Created: 2021-04-08 Updated: 2023-11-30
Status:	Open
Project:	MariaDB Server
Component/s:	Authentication and Privilege System
Fix Version/s:	None

Type:

New Feature

Priority:

Major

Reporter:

Lukas Javorsky

Assignee:

Unassigned

Resolution:

Unresolved

Votes:

Labels:

None

Issue Links:

PartOf
includes	CONC-542	Deprecate SHA-1 algorithm from mariad...	Open
Relates
relates to	MDEV-25262	include modern checksum in VIEW frm d...	Open

Description

This ticket is an RFE to remove usage of SHA1 in MariaDB components if possible.

The SHA-1 algorithm is weakening over time and it is not considered secure anymore for cryptography use cases.

We are packaging MariaDB as part of the RHEL-9 and it is going to be supported for 10 years at least and during that time we need to make sure all components still comply with security standards.
That is why we want to avoid using weak cryptographic algorithms (SHA-1 in this case).

We realize this might require a substantial amount of work, but we would like to know your perspective on this.

Generated at Thu Feb 08 09:37:12 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.

[MDEV-25372] Deprecate SHA-1 algorithm from mariadb-server Created: 2021-04-08 Updated: 2023-11-30