Linus on Git and SHA-1

by
corbet
from LWN.net on (#2DYED)
Linus Torvalds has posted a lengthyexplanation of why the recently created SHA-1 collision is not anemergency for Git users. "In the pdf examples, the pdf format actedas the 'black box', and what you see is the printout which has only a veryindirect relationship to the pdf encoding. But if you use git for source control like in the kernel, the stuff youreally care about is source code, which is very much a transparentmedium. If somebody inserts random odd generated crud in the middle of yoursource code, you will absolutely notice." That said, he notes thatthere is work in progress to move away from SHA-1.

[It seems that subversion users have an additional set of concerns; see this bug reportconversation for the scary story.]

External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments