[jbosstools-issues] [JBoss JIRA] (JBIDE-20143) use SHA256 instead of SHA1 when digesting zips and jars
Nick Boldt (JIRA)
issues at jboss.org
Tue Jun 23 14:29:03 EDT 2015
[ https://issues.jboss.org/browse/JBIDE-20143?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13083018#comment-13083018 ]
Nick Boldt commented on JBIDE-20143:
------------------------------------
To facilitate verifying the CSP staged bits for JBDS 9 Beta1, I created this file:
http://www.qa.jboss.com/binaries/RHDS/9.0/staging/builds/devstudio-9.0.0.Beta1c-build-product/latest/installer/SHA256.txt
Because the SHA1 files were not the same as the SHA256 digests. So, in future we should produce SHA256 files.
Note that the digests on tools.jboss.org should also be changed from md5 to sha256.
https://github.com/jbosstools/jbosstools-website/blob/master/_config/products.yml#L88
https://github.com/jbosstools/jbosstools-website/blob/master/_config/products.yml#L530
cc: [~xcoulon] [~maxandersen]
> use SHA256 instead of SHA1 when digesting zips and jars
> -------------------------------------------------------
>
> Key: JBIDE-20143
> URL: https://issues.jboss.org/browse/JBIDE-20143
> Project: Tools (JBoss Tools)
> Issue Type: Bug
> Components: build
> Affects Versions: 4.3.0.Beta1
> Reporter: Nick Boldt
> Assignee: Nick Boldt
> Fix For: 4.3.0.Beta2
>
>
> CSP & GoldenGate uses SHA256 digests, so we should use that instead of SHA1.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
More information about the jbosstools-issues
mailing list