set line length to 120 #1735

oroulet · 2024-10-26T10:08:13Z

No description provided.

asyncua/common/connection.py

@@ -173,7 +183,9 @@
            if security_policy.host_certificate:
                chunk.SecurityHeader.SenderCertificate = security_policy.host_certificate
            if security_policy.peer_certificate:
-                chunk.SecurityHeader.ReceiverCertificateThumbPrint = hashlib.sha1(security_policy.peer_certificate).digest()
+                chunk.SecurityHeader.ReceiverCertificateThumbPrint = hashlib.sha1(
+                    security_policy.peer_certificate


To fix the problem, we need to replace the use of the SHA-1 hashing algorithm with a stronger algorithm, such as SHA-256. This change will ensure that the certificate's hash is more secure against collision attacks.

General Fix: Replace the hashlib.sha1 function with hashlib.sha256.

Detailed Fix: Specifically, change the line where hashlib.sha1 is used to hashlib.sha256 in the message_to_chunks method.

Files/Regions/Lines to Change: The change will be made in the file asyncua/common/connection.py on line 187.

Requirements: Ensure that the hashlib module is imported (already present in the code).

rth · 2024-10-27T09:31:50Z

.github/workflows/python-package.yml

@@ -31,6 +31,7 @@ jobs:
          uv tool install pre-commit
      - name: Lint with ruff
        run: |
+          uvx ruff format --diff


It might be better to include formatting in pre-commit, so it would also run it locally when comitting which is more convenient see https://github.com/astral-sh/ruff-pre-commit?tab=readme-ov-file#using-ruff-with-pre-commit

I have 0 ideas how to add that to pre-commit. So you can do it.
But I feel it is a bit strange to use pre-commit to do linting. Isnt't much clearer to have the check we do in plain test here?

oroulet force-pushed the 3.13 branch from 0f25864 to 6a8449d Compare October 26, 2024 10:11

github-advanced-security bot found potential problems Oct 26, 2024

View reviewed changes

oroulet force-pushed the 3.13 branch 2 times, most recently from cec8ec7 to 139a04f Compare October 26, 2024 19:58

Olivier added 2 commits October 26, 2024 22:00

ruff format with line length 120

4575051

add format check to CI (might already have there but..)

594e73d

oroulet force-pushed the 3.13 branch from 139a04f to 594e73d Compare October 26, 2024 20:01

rth reviewed Oct 27, 2024

View reviewed changes

oroulet merged commit 54895d2 into master Oct 27, 2024
5 of 6 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

set line length to 120 #1735

set line length to 120 #1735

oroulet commented Oct 26, 2024

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.

rth Oct 27, 2024 •

edited

Loading

oroulet Oct 27, 2024

set line length to 120 #1735

set line length to 120 #1735

Conversation

oroulet commented Oct 26, 2024

rth Oct 27, 2024 • edited Loading

Choose a reason for hiding this comment

oroulet Oct 27, 2024

Choose a reason for hiding this comment

rth Oct 27, 2024 •

edited

Loading