Fix security weakness for compilation in .NET 7 #765
Conversation
….NET 7, because it’s insecure to use defaults for the number of iterations and hashing algorithm. The fix is to pass those (secure) values in the versions of .NET that support it.
|
"The default hash algorithm and iteration counts in Rfc2898DeriveBytes constructors are outdated and insecure. Use a constructor that accepts the hash algorithm and the number of iterations.", DiagnosticId="SYSLIB0041", UrlFormat="https://aka.ms/dotnet-warnings/{0}" |
|
Well, the "insecure default" value for HashAlgorithmName is SHA1, which is what we have to use for the format. So, this would not increase security in any way, but it would replace a deprecated version with a current one. And also, it's generally better to be explicit rather than relying on defaults. |
|
Exactly. The intent here is to be explicit, which is a better approach, but also satisfies .NET 7 compilation requirements :-) If in the future there's interest to upgrade the hashing algorithm, this change should make that a tiny bit easier. |
Codecov Report
@@ Coverage Diff @@
## master #765 +/- ##
=======================================
Coverage 74.10% 74.10%
=======================================
Files 71 71
Lines 8441 8441
=======================================
Hits 6255 6255
Misses 2186 2186
Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. |
2 participants
The Rfc2898DeriveBytes constructor used is called out as insecure in NET 7, because it’s insecure to use defaults for the number of iterations and hashing algorithm. The fix is to pass those (secure) values in the versions of .NET that support it.
I certify that I own, and have sufficient rights to contribute, all source code and related material intended to be compiled or integrated with the source code for the SharpZipLib open source product (the "Contribution"). My Contribution is licensed under the MIT License.