Duplicity

Duplicity fails with FIPS enabled

Bug #1866504 reported by Kenneth Loafman
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Duplicity
Invalid
Undecided
Unassigned

Bug Description

From the discussion at https://answers.launchpad.net/duplicity/+question/689178

When trying to use the application for backups (via Deja Dup) the process fails:

Traceback (innermost last):
  File "/usr/bin/duplicity", line 1581, in <module>
    with_tempdir(main)
  File "/usr/bin/duplicity", line 1567, in with_tempdir
    fn()
  File "/usr/bin/duplicity", line 1406, in main
    action = commandline.ProcessCommandLine(sys.argv[1:])
  File "/usr/lib64/python2.7/site-packages/duplicity/commandline.py", line 1096, in ProcessCommandLine
    args = parse_cmdline_options(cmdline_list)
  File "/usr/lib64/python2.7/site-packages/duplicity/commandline.py", line 730, in parse_cmdline_options
    globals.backup_name = generate_default_backup_name(backend_url)
  File "/usr/lib64/python2.7/site-packages/duplicity/commandline.py", line 125, in generate_default_backup_name
    burlhash = md5()
 ValueError: error:060800A3:digital envelope routines:EVP_DigestInit_ex:disabled for fips

From what I have learned, the issue lies with Duplicity using md5 instead of SHA256 (or other FIPS compliant)
Is there an option to enable something other than md5?

Thanks

See original description
Kenneth Loafman (kenneth-loafman)
description: updated
Changed in duplicity:
status: New → Triaged
assignee: nobody → Kenneth Loafman (kenneth-loafman)
Revision history for this message
Kenneth Loafman (kenneth-loafman) wrote :

If you use the --name option in the duplicity command line the md5 hash will not be used to generate the name of the cache directory. I'm not sure what the Deja Dup equivalent is.

Changed in duplicity:
importance: Undecided → Medium
Revision history for this message
Dustin Todd (dtoddtrc) wrote :

Thanks for your follow up. I'll ask the Deja Dup group if I can pipe the --name.

Kenneth Loafman (kenneth-loafman)
Changed in duplicity:
status: Triaged → Invalid
importance: Medium → Undecided
assignee: Kenneth Loafman (kenneth-loafman) → nobody
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Related questions

Remote bug watches

Bug watches keep track of this bug in other bug trackers.