[Core] MD5 not supported as is for FIPS enabled machines #40534
Labels
core
Issues that should be addressed in Ray Core
core-runtime-env
Issues related to Ray environment dependencies
enhancement
Request for new feature and/or capability
P1.5
Issues that will be fixed in a couple releases. It will be bumped once all P1s are cleared
Description
FIPS (Federal Information Processing Standards) is a series of security standards required for most government workflows. FIPS compliance requires packages to adhere to a certain level of security and comes with requirements for cryptographic libraries. One of my coworkers (@jbusche) was running into issues on a FIPS enabled machine when trying to submit jobs to a Ray Cluster. The key part of the linked issue is this:
MD5 is not supported for security related applications on a FIPS enabled machine
If the community is open to addressing this issue I see two options:
hashlib.md5(...)
tohashlib.md5(..., usedforsecurity=False)
because, everywhere in the Ray library that I've found md5 being used it is being used only for calculating file hashes and not for security purposesI'm happy to open a PR to solve this issue.
Use case
Using Ray in a FIPS enabled OpenShift cluster
The text was updated successfully, but these errors were encountered: