Open edmocosta opened 3 days ago
github-actions[bot]
commented
3 days ago Pinging code owners:
pkg/ottl: @TylerHelmuth @kentquirk @bogdandrutu @evan-bradley
See Adding Labels via Comments if you do not have permissions to add labels yourself.
MovieStoreGuy
commented
1 day ago Hey @edmocosta,
it is still required for compatibility purposes
Do you mind explaining what specifically you need to support for compatibility purposes?
My preference is to keep this as unsupported/deprecated and use more secure hashing algorithms.
edmocosta
commented
5 hours ago Hi @MovieStoreGuy!
I completely agree with you regarding using a more secure/non-colliding hashing algorithm, especially for encryption. But MD5 was widely used for fingerprinting/checksum files for example, and forcing users to change their systems to use a more secure/non-colliding hashing would requires re-hashing and/or performing some kind of migration, which depending on the case, might not be feasible in the short term.
IMO, adding the MD5 function has similar purposes as adding SHA1, and although both are considered unsafe (being MD5 unsafer), they're still in use - unfortunately.
Component(s)
pkg/ottl
Is your feature request related to a problem? Please describe.
Although MD5 is no longer a recommended/safe hashing algorithm, it is still required for compatibility purposes. OTTL currently does not support it.
Describe the solution you'd like
A new OTTL converter/function
MD5(attributes), which when invoked would transform the underlying string data into a MD5 hash value.Describe alternatives you've considered
No response
Additional context
No response