l-monninger
commented
3 weeks ago We have changed to blake3 since this was reviewed.
Closed SA124 closed 2 weeks ago
l-monninger
commented
3 weeks ago We have changed to blake3 since this was reviewed.
Severity: Informational Status: Pending Auditor: Movebit Topic:Suzuka-only custom components
PAR-1 Use a Higher Security Level Hash Function Severity: Informational Discovery Methods: Status: Pending Code Location: networks/suzuka/suzuka-full-node/src/partial.rs#199-202 Descriptions: It is recommended to use a higher security level hash function (eg.sha3)The Sha256 algorithm is susceptible to hash length expansion attacks and will require urgent upgrades in the future if security issues arise
Suggestion: It is recommended to use a higher security level hash function (eg.sha3)