Re: RFC v3: Another proposed hash function transition plan

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: RFC v3: Another proposed hash function transition plan
From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Date: Wed, 13 Sep 2017 16:30:07 -0700
Cc: Johannes Schindelin <Johannes.Schindelin@xxxxxx>, Brandon Williams <bmwill@xxxxxxxxxx>, Junio C Hamano <gitster@xxxxxxxxx>, Jonathan Nieder <jrnieder@xxxxxxxxx>, Git Mailing List <git@xxxxxxxxxxxxxxx>, Stefan Beller <sbeller@xxxxxxxxxx>, Jonathan Tan <jonathantanmy@xxxxxxxxxx>, Jeff King <peff@xxxxxxxx>, David Lang <david@xxxxxxx>, "brian m. carlson" <sandals@xxxxxxxxxxxxxxxxxxxx>
In-reply-to: <CANgJU+Wv1nx79DJTDmYE=O7LUNA3LuRTJhXJn+y0L0C3R+YDEA@mail.gmail.com>
References: <20170304011251.GA26789@aiede.mtv.corp.google.com> <CA+55aFz+gkAsDZ24zmePQuEs1XPS9BP_s8O7Q4wQ7LV7X5-oDA@mail.gmail.com> <20170307001709.GC26789@aiede.mtv.corp.google.com> <xmqqa828733s.fsf@gitster.mtv.corp.google.com> <xmqq1snh29re.fsf@gitster.mtv.corp.google.com> <20170911185913.GA5869@google.com> <alpine.DEB.2.21.1.1709131340030.4132@virtualbox> <CANgJU+Wv1nx79DJTDmYE=O7LUNA3LuRTJhXJn+y0L0C3R+YDEA@mail.gmail.com>

On Wed, Sep 13, 2017 at 6:43 AM, demerphq <demerphq@xxxxxxxxx> wrote:
>
> SHA3 however uses a completely different design where it mixes a 1088
> bit block into a 1600 bit state, for a leverage of 2:3, and the excess
> is *preserved between each block*.

Yes. And considering that the SHA1 attack was actually predicated on
the fact that each block was independent (no extra state between), I
do think SHA3 is a better model.

So I'd rather see SHA3-256 than SHA256.

              Linus

Follow-Ups:
- Re: RFC v3: Another proposed hash function transition plan
  - From: Johannes Schindelin

References:
- RFC: Another proposed hash function transition plan
  - From: Jonathan Nieder
- Re: RFC: Another proposed hash function transition plan
  - From: Linus Torvalds
- RFC v3: Another proposed hash function transition plan
  - From: Jonathan Nieder
- Re: RFC v3: Another proposed hash function transition plan
  - From: Junio C Hamano
- Re: RFC v3: Another proposed hash function transition plan
  - From: Junio C Hamano
- Re: RFC v3: Another proposed hash function transition plan
  - From: Brandon Williams
- Re: RFC v3: Another proposed hash function transition plan
  - From: Johannes Schindelin
- Re: RFC v3: Another proposed hash function transition plan
  - From: demerphq

Prev by Date: Re: [PATCH 20/20] packed-backend.c: rename a bunch of things and update comments
Next by Date: Re: [PATCH v2] config: avoid "write_in_full(fd, buf, len) < len" pattern
Previous by thread: Re: RFC v3: Another proposed hash function transition plan
Next by thread: Re: RFC v3: Another proposed hash function transition plan
Index(es):
- Date
- Thread

[Index of Archives] [Linux Kernel Development] [Gcc Help] [IETF Annouce] [DCCP] [Netdev] [Networking] [Security] [V4L] [Bugtraq] [Yosemite] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Linux SCSI] [Fedora Users]