New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
RFE: Support FIPS mode - do not use md5 hash #7335
Comments
@kalefranz Could this be handled by changing to sha256 here, or is there more to it? |
seems like it. This really isn't a cryptographic application of md5, though. It's just a short name. Perhaps we should just base64 encode it instead of md5? |
Hi there, thank you for your contribution to Conda! This issue has been automatically marked as stale because it has not had recent activity. It will be closed automatically if no further activity occurs. If you would like this issue to remain open please:
NOTE: If this issue was closed prematurely, please leave a comment and we will gladly reopen the issue. In case this issue was originally about a project that is covered by the Anaconda issue tracker (e.g. Anaconda, Miniconda, packages built by Anaconda, Inc. like Anaconda Navigator etc), please reopen the issue there again. Thanks! |
Presumably this still needs to get addressed |
@chenghlee and @jezdez, Has this been resolved? I couldn't help but notice the usage of |
This is unresolved so far, we haven't come to a conclusion if we should support running on FIPS enabled system due to a lack of access for testing. @chenghlee Do you know more off the top of your head? |
I had the chance to talk with @chenghlee, and he said that FIPS is something that we still do not officially support, but it is an ongoing discussion. |
I can test on FIPS systems as containers as github actions. Is that something that is needed to support conda in fips mode? |
I'm submitting a...
md5 hashes are unsafe and are disabled in FIPS mode.
See also #5282
Steps to Reproduce
Boot with fips=1
Expected Behavior
conda should work
Environment Information
`conda info`
The text was updated successfully, but these errors were encountered: