Make SQLLiteCodeFirst FIPS compliant

Sergio Martín Fernández · msallin · commit 881965e7e27e · 2024-02-23T12:45:42.000+01:00
This PR makes SQLiteCodeFirst FIPS compliant, needed to operate on US federal or many state government systems as it is a requirement for software vendors, replacing the SHA512Managed class with the SHA512CryptoServiceProvider.

What is FIPS compliance? FIPS stands for Federal Information Processing Standards and are US Government standards that provide a benchmark for implementing cryptographic software

SHA512CryptoServiceProvider uses the FIPS 140-2 validated (FIPS = Federal Information Processing Standards) Crypto Service Provider (CSP) while SHA256Managed does not.
diff --git a/SQLite.CodeFirst/Internal/Utility/HashCreator.cs b/SQLite.CodeFirst/Internal/Utility/HashCreator.cs
@@ -9,7 +9,7 @@ internal static class HashCreator
         public static string CreateHash(string data)
         {
             byte[] dataBytes = Encoding.ASCII.GetBytes(data);
-            using (SHA512 sha512 = new SHA512Managed())
+            using (SHA512 sha512 = new SHA512CryptoServiceProvider())
             {
                 byte[] hashBytes = sha512.ComputeHash(dataBytes);
                 string hash = Convert.ToBase64String(hashBytes);

Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ internal static class HashCreator`
`9`	`9`	`public static string CreateHash(string data)`
`10`	`10`	`{`
`11`	`11`	`byte[] dataBytes = Encoding.ASCII.GetBytes(data);`
`12`		`- using (SHA512 sha512 = new SHA512Managed())`
	`12`	`+ using (SHA512 sha512 = new SHA512CryptoServiceProvider())`
`13`	`13`	`{`
`14`	`14`	`byte[] hashBytes = sha512.ComputeHash(dataBytes);`
`15`	`15`	`string hash = Convert.ToBase64String(hashBytes);`