← Back to team overview

launchpad-reviewers team mailing list archive

Thread
Date

Re: [Merge] ~xnox/launchpad:only-sha256 into launchpad:master

To: Dimitri John Ledkov <dimitri.ledkov+lp@xxxxxxxxxxxxx>
From: Dimitri John Ledkov <mp+452749@xxxxxxxxxxxxxxxxxx>
Date: Wed, 04 Oct 2023 11:52:20 -0000
In-reply-to: <169641443863.1290376.11401050162651515039.launchpad@juju-98d295-prod-launchpad-16>
Reply-to: mp+452749@xxxxxxxxxxxxxxxxxx
Sender: noreply@xxxxxxxxxxxxx

Trusty and up requires SHA512 for signature verification, if that in turn relies on MD5Sums presence it is intentional to break that, as it is vulnerable to MITM.
-- 
https://code.launchpad.net/~xnox/launchpad/+git/launchpad/+merge/452749
Your team Launchpad code reviewers is requested to review the proposed merge of ~xnox/launchpad:only-sha256 into launchpad:master.