librsync does not use FIPS 140-2 compliant hashing methods

Status: Beta

Brought to you by: abo, bescoto, mbp, wayned

#21 librsync does not use FIPS 140-2 compliant hashing methods

Milestone: v1.0 (example)

Status: open

Owner: nobody

Labels: FIPS (1)

Priority: 5

Updated: 2013-08-21

Created: 2013-08-21

Creator: ACiD GRiM

Private: No

Description of problem:
librsync seems to use MD5 which is unavailable in a FIPS environment. I am currently attempting to use duplicity (which uses librsync) which fails under FIPS.

Version-Release number of selected component (if applicable):
librsync-0.9.7-18

How reproducible:
Every time

Steps to Reproduce:
1.Enable FIPS in kernel
2.Run librsync dependant program such as duplicity
3.ValueError: error:060800A3:digital envelope routines:EVP_DigestInit_ex:disabled for fips

Actual results:
ValueError: error:060800A3:digital envelope routines:EVP_DigestInit_ex:disabled for fips

Expected results:
librsync detects FIPS environment or by default selects at least SHA-1, preferably SHA256

librsync does not use FIPS 140-2 compliant hashing methods

Group

Searches

Help

#21 librsync does not use FIPS 140-2 compliant hashing methods

Discussion