Removing md5 usage from ntpsec
James Browning
jamesb192 at jamesb192.com
Wed Apr 17 16:25:44 UTC 2024
> On 04/16/2024 2:34 AM PDT Shreenidhi Shedi via devel <devel at ntpsec.org> wrote:
>
> Hi All,
>
> Currently ntpsec systemd service doesn't start if openssl fips is enabled.
> The same issue was there in ntp as well.
>
> Looks like ntp is ready with the fix. More info at:
> https://bugs.ntp.org/show_bug.cgi?id=3753
>
> It would be great if ntpsec can provide a fix as well; many mainstream distros are already providing the ntpsec package, so it's better to have it working in fips mode.
They appear to be using a modified version of the in tree copy of
MD5 they already have. We could drag the one we inherited out of
mothballs, but we have chosen not to do so at this time.
JamesB
-30-
More information about the devel
mailing list