Re: [PATCH] kernel:gen_kheaders:Replace md5sum to sha256sum

From: Daniel Mentz
Date: Fri Sep 23 2022 - 14:13:00 EST

Next message: Jason Gunthorpe: "Re: [PATCH v10 1/8] mm: introduce FOLL_PCI_P2PDMA to gate getting PCI P2PDMA pages"
Previous message: Krzysztof Kozlowski: "Re: [PATCH v5 2/4] dt-bindings: net: snps,dwmac: add clk_csr property"
In reply to: Bhaskar Chowdhury: "[PATCH] kernel:gen_kheaders:Replace md5sum to sha256sum"
Next in thread: Bhaskar Chowdhury: "Re: [PATCH] kernel:gen_kheaders:Replace md5sum to sha256sum"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Sep 23, 2022 at 4:06 AM Bhaskar Chowdhury <unixbhaskar@xxxxxxxxx> wrote:
> Thought to apply a better encryption mechanism.

MD5 and SHA256 are secure (or, in the case of MD5, not so secure) hash
algorithms, not encryption mechanisms.

> Replace all occurance of md5sum to sha256sum .

Looking at this script, I'm not convinced that it relies on MD5 being
a cryptophically secure hash function. It appears to me as if this
script uses MD5 to simply detect innocent changes to a set of files as
opposed to guarding against malicious attacks. I also found that
sha256sum takes almost three times longer than md5sum. So, in the
absence of security requirements, md5sum might actually be the better
choice because it's faster.

Next message: Jason Gunthorpe: "Re: [PATCH v10 1/8] mm: introduce FOLL_PCI_P2PDMA to gate getting PCI P2PDMA pages"
Previous message: Krzysztof Kozlowski: "Re: [PATCH v5 2/4] dt-bindings: net: snps,dwmac: add clk_csr property"
In reply to: Bhaskar Chowdhury: "[PATCH] kernel:gen_kheaders:Replace md5sum to sha256sum"
Next in thread: Bhaskar Chowdhury: "Re: [PATCH] kernel:gen_kheaders:Replace md5sum to sha256sum"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]