New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Listen's use of Digest::MD5 breaks support on FIPS enabled machines #452
Comments
What is the best solution to this problem? |
Replacing Digest::MD5 with a modern hashing algorithm such as Digest::SHA2 is the easy answer. Long term though, its ideal to support configurable algorithms for future proofing. |
Is there a plan in the near future to use Digest::SHA2 and make it FIPS enabled? |
Sure, do you have time to submit a PR? |
Sure. I can give it a try. Looks like I don't have permission to create my feature branch. Can you please grant me permission? |
Please create a fork and submit a PR. If you need more help, please let me know. |
@souravb65 Here's a branch: #541 Tests are green! |
Considering this fixed. |
Awesome @ColinDKelley making these changes. I did the changes but due to my machine issue was not able to test to push those. |
No problem, @souravb65. Thanks for the nudge to get this fixed and closed. |
@ColinDKelley Thanks for your effort maintaining this gem. |
Please review usage of Digest::MD5 and migrate to a different hash algorithm that is not disabled in when FIPS is enabled.
The text was updated successfully, but these errors were encountered: