Skip to content

fix: swap MD5 with SHA256 for TLS to work with FIPS operator image #1710

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

fix: swap MD5 with SHA256 for TLS to work with FIPS operator image #1710

wants to merge 1 commit into from

Conversation

@tip226
Copy link

@tip226 tip226 commented Apr 16, 2025

Summary:

This PR updates the MongoDB Kubernetes Operator to support FIPS-compliant environments by replacing the MD5 hash algorithm with SHA-256 during SCRAM credential generation.

The motivation behind this change is a runtime panic triggered by OpenSSL when MD5 is used in environments with FIPS mode enabled. The crash occurs specifically during SCRAM credential creation, with errors like:

panic: EVP_DigestInit_ex
openssl error(s):
error:0308010C:digital envelope routines::unsupported
error:03000086:digital envelope routines::initialization error

goroutine 242 [running]:
...
github.com/mongodb/mongodb-kubernetes-operator/pkg/authentication/scramcredentials.md5Hex

To address this, the patch swaps MD5 with SHA-256, a FIPS-approved algorithm that works seamlessly in the same context.

I validated this by deploying a TLS-secured MongoDBCommunity ReplicaSet using a patched FIPS-compatible MongoDB image and a Helm-based setup that includes cert-manager for issuing certs. The change allows the operator to successfully create SCRAM credentials without triggering FIPS-related crashes.

All Submissions:

  • Have you opened an Issue before filing this PR?
  • Have you signed our CLA?
  • Have you checked to ensure there aren't other open Pull Requests for the same update/change?
  • Put closes #XXXX in your comment to auto-close the issue that your PR fixes (if such).

@tip226
Copy link
Author

tip226 commented Apr 16, 2025
edited
Loading

Closes #1709

@github-actions
Copy link
Contributor

This PR is being marked stale because it has been open for 60 days with no activity. Please update the PR or ask for a fresh review.

@github-actions github-actions bot added the stale label Jun 18, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mircea-cosbuc mircea-cosbuc Awaiting requested review from mircea-cosbuc mircea-cosbuc is a code owner

@lsierant lsierant Awaiting requested review from lsierant lsierant is a code owner

@nammn nammn Awaiting requested review from nammn nammn is a code owner

@Julien-Ben Julien-Ben Awaiting requested review from Julien-Ben Julien-Ben is a code owner

@MaciejKaras MaciejKaras Awaiting requested review from MaciejKaras MaciejKaras is a code owner

@lucian-tosa lucian-tosa Awaiting requested review from lucian-tosa lucian-tosa is a code owner

@fealebenpae fealebenpae Awaiting requested review from fealebenpae fealebenpae is a code owner

@m1kola m1kola Awaiting requested review from m1kola m1kola is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

stale

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tip226