Use sha256 instead of sha1 for resource signature
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Heat |
Fix Released
|
Undecided
|
Ethan Lynn | ||
Kilo |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Following codes use sha1 to calculate hash, it's unsafe.
https:/
def implementation_
schema_hash = hashlib.
definition = {'template': self.child_
return (schema_
We use a tool to scan potential security issue, and discover this code.
It's recommended to use sha256 instead of sha1 in codes.
Changed in heat: | |
milestone: | none → liberty-1 |
status: | Fix Committed → Fix Released |
Changed in heat: | |
milestone: | liberty-1 → 5.0.0 |
Fix proposed to branch: master /review. openstack. org/177075
Review: https:/