Patch #935454 is a module implementing SHA-256, a variant of the 160-bit SHA algorithm supported in Python's existing sha module. Though it's more recent than the original SHA-160, SHA-256 is just as "standard"; both algorithms are specified by a NIST document. The submitter comments: The difference is that it produces a 256 bit hash value, instead of a 160 bit hash value. SHA-256 thus has 128 bits of resistance against birthday attacks, which makes it secure in certain protocols where SHA-1 is questionable (e.g. digital signatures; or RNGs or Key-Derivation Functions where you want to produce keys for 256-bit ciphers). A quick skim over the code doesn't turn up any issues, and the patch includes a test suite but no documentation. I don't want to do a detailed code review or require docs from the submitter if the module isn't likely to be included, so do we want to add this module? There are a bunch of other variants with different bit sizes such as 512, 384, and 224 bits. The only one likely to matter is SHA-512, so adding sha256 might mean that down the road we need to add a sha512 module, too, but that seems unlikely. --amk
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4