Skip to content

use SHA256 digest

Peter Bolingrequested to merge
github/fork/akostadinov/sha256 into 1-4-stable

Created by: akostadinov

This patch is for the 1.4 stable branch because it is used in production.

It updates usage of MD5 to SHA256 as a FIPS approved algorythm.

I understand that MD5 usage is fine in general for this use case. The problem is that on a FIPS configured system, trying to generate MD5 with openssl fails.

To enable usage on such systems, any other digest algorythm can be used. SHA256 seems to be the default choice in the community. For example Rails 7.

Merge request reports