[release/6.0] Use SHA256 for RPM digest #53158
Conversation
ghost
added
the
area-infrastructure
|
Hi @NikolaMilosavljevic. If this is not a tell-mode PR, please make sure to follow the instructions laid out in the servicing process document. |
|
Hey @dotnet/aspnet-build, looks like this PR is something you want to take a look at. |
NikolaMilosavljevic
added
the
Servicing-consider
|
Hi @NikolaMilosavljevic. Please make sure you've updated the PR description to use the Shiproom Template. Also, make sure this PR is not marked as a draft and is ready-to-merge. To learn more about how to prepare a servicing PR click here. |
NikolaMilosavljevic
added
Servicing-approved
|
Hi @NikolaMilosavljevic. This PR was just approved to be included in the upcoming servicing release. Somebody from the @dotnet/aspnet-build team will get it merged when the branches are open. Until then, please make sure all the CI checks pass and the PR is reviewed. |
|
This was approved for servicing. |
NikolaMilosavljevic
added
the
* NO MERGE *
|
Not merging to minimize risk for .NET 6 customers. |
|
Hi @NikolaMilosavljevic. It looks like you just commented on a closed PR. The team will most probably miss it. If you'd like to bring something important up to their attention, consider filing a new issue and add enough details to build context. |
wtgodbe
removed
the
* NO MERGE *
|
@NikolaMilosavljevic do we want to take this for April? |
|
/azp run |
|
Azure Pipelines successfully started running 2 pipeline(s). |
That's the plan, but we're circling back with Tactics tomorrow, before merging the PRs. |
|
@wtgodbe this can be merged now. I don't have permissions. |
Backport of #52664
FIPS compliance blocks installation of RPM packages that use MD5 digest algorithm. We use
fpmtool which defaults to MD5 digests. The fix is to specify SHA256 instead.The fix was made in
arcadewith dotnet/arcade#14269,installerfix is in dotnet/installer#17933This is the same fix that was made by many other RPM package owners, for instance: https://github.com/influxdata/telegraf