Skip to content

[release/6.0-staging] Permit MD5 regardless of FIPS configuration for Linux#95090

Merged
carlossanlop merged 1 commit intodotnet:release/6.0-stagingfrom
vcsjones:backport-94934
Nov 23, 2023
Merged

[release/6.0-staging] Permit MD5 regardless of FIPS configuration for Linux#95090
carlossanlop merged 1 commit intodotnet:release/6.0-stagingfrom
vcsjones:backport-94934

Conversation

@vcsjones
Copy link
Member

@vcsjones vcsjones commented Nov 21, 2023

Backport of #94934 to release/6.0-staging

/cc @bartonjs

Customer Impact

Customers legitimately using the MD5 algorithm for non-cryptographic purposes get a CryptographicException on certain Linux configurations; including RHEL (with an opt-in) and Mariner (the new default?).

The main known purpose for continuing to use MD5 is to set the Content-MD5 header required on uploading to Azure Blob Storage.

Testing

Verified by running the MD5 tests on a machine in this configuration. CI does not currently have such a configuration.

Risk

Low.

Customers not using MD5 are entirely unaffected. Customers using MD5 on a system without a FIPS lockout are verified by CI. Customers using MD5 on a system with a FIPS lockout are already broken, and have been manually verified as being unbroken.

The affected codepaths are initialization, they do not process arguments, so there are no argument-based edge cases.

@ghost ghost assigned vcsjones Nov 21, 2023
@ghost ghost added the area-System.Security label Nov 21, 2023
@ghost
Copy link

ghost commented Nov 21, 2023

Tagging subscribers to this area: @dotnet/area-system-security, @bartonjs, @vcsjones
See info in area-owners.md if you want to be subscribed.

Issue Details

Backport of #94934 to release/6.0-staging

/cc @bartonjs

Customer Impact

Customers legitimately using the MD5 algorithm for non-cryptographic purposes get a CryptographicException on certain Linux configurations; including RHEL (with an opt-in) and Mariner (the new default?).

The main known purpose for continuing to use MD5 is to set the Content-MD5 header required on uploading to Azure Blob Storage.

Testing

Verified by running the MD5 tests on a machine in this configuration. CI does not currently have such a configuration.

Risk

Low.

Customers not using MD5 are entirely unaffected. Customers using MD5 on a system without a FIPS lockout are verified by CI. Customers using MD5 on a system with a FIPS lockout are already broken, and have been manually verified as being unbroken.

The affected codepaths are initialization, they do not process arguments, so there are no argument-based edge cases.

Author: vcsjones
Assignees: vcsjones
Labels:

area-System.Security
Milestone: -

@jeffhandley jeffhandley added the Servicing-consider Issue for next servicing release review label Nov 21, 2023
@carlossanlop carlossanlop added Servicing-approved Approved for servicing release and removed Servicing-consider Issue for next servicing release review labels Nov 23, 2023
@carlossanlop
Copy link
Contributor

carlossanlop commented Nov 23, 2023

Approved by Tactics via email.

@carlossanlop carlossanlop merged commit 45380a5 into dotnet:release/6.0-staging Nov 23, 2023
@vcsjones vcsjones deleted the backport-94934 branch November 23, 2023 02:44
@github-actions github-actions bot locked and limited conversation to collaborators Dec 23, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@jeffhandley jeffhandley jeffhandley approved these changes

@bartonjs bartonjs bartonjs approved these changes

Assignees

@vcsjones vcsjones

Labels

area-System.Security Servicing-approved Approved for servicing release

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@vcsjones @carlossanlop @jeffhandley @bartonjs