You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Which service(blob, file) does this issue concern?
uploading to blob storage
Which version of the SDK was used?
2.0.1.0.1
On which platform were you using? (.Net Framework version or .Net Core version, and OS version)
.Net Framework 4.6.1
How can the problem be reproduced? It'd be better if the code caused the problem can be shared.
Just enable FIPS mode on your Windows and you won't be able to upload anything
await TransferManager.UploadAsync(filepath, blob, null, transferContext, cancellationSource.Token);
What problem was encountered?
When FIPS is enabled (at the OS level) the MD5 algorithm fails and no file is uploaded.
error message:
"This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.
at System.Security.Cryptography.MD5CryptoServiceProvider..ctor()
at Microsoft.Azure.Storage.DataMovement.MD5Wrapper..ctor() in d:\repo\DM\azure-storage-net-data-movement\lib\MD5Wrapper.cs:line 40
at Microsoft.Azure.Storage.DataMovement.MD5HashStream..ctor(Stream stream, Int64 lastTransferOffset, Boolean md5hashCheck) in d:\repo\DM\azure-storage-net-data-movement\lib\MD5HashStream.cs:line 82
at Microsoft.Azure.Storage.DataMovement.TransferControllers.StreamedReader.d__19.MoveNext() in d:\repo\DM\azure-storage-net-data-movement\lib\TransferControllers\TransferReaders\StreamedReader.cs:line 263
Have you found a mitigation/solution?
The mitigation is disabling FIPS mode at the OS but some public sectors are required to have it enabled.
The text was updated successfully, but these errors were encountered:
Hi @wleme, I found a workaround for that.
There is no way to disable MD5 on DMLib but this calculation is rather transparent to Azure storage SDK where MD5 is the only supported algorithm, used to ensure data integrity.
Good news is that you can force Azure SDK to use native implementation by setting
Which service(blob, file) does this issue concern?
uploading to blob storage
Which version of the SDK was used?
2.0.1.0.1
On which platform were you using? (.Net Framework version or .Net Core version, and OS version)
.Net Framework 4.6.1
How can the problem be reproduced? It'd be better if the code caused the problem can be shared.
Just enable FIPS mode on your Windows and you won't be able to upload anything
await TransferManager.UploadAsync(filepath, blob, null, transferContext, cancellationSource.Token);
What problem was encountered?
When FIPS is enabled (at the OS level) the MD5 algorithm fails and no file is uploaded.
error message:
"This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.
at System.Security.Cryptography.MD5CryptoServiceProvider..ctor()
at Microsoft.Azure.Storage.DataMovement.MD5Wrapper..ctor() in d:\repo\DM\azure-storage-net-data-movement\lib\MD5Wrapper.cs:line 40
at Microsoft.Azure.Storage.DataMovement.MD5HashStream..ctor(Stream stream, Int64 lastTransferOffset, Boolean md5hashCheck) in d:\repo\DM\azure-storage-net-data-movement\lib\MD5HashStream.cs:line 82
at Microsoft.Azure.Storage.DataMovement.TransferControllers.StreamedReader.d__19.MoveNext() in d:\repo\DM\azure-storage-net-data-movement\lib\TransferControllers\TransferReaders\StreamedReader.cs:line 263
Have you found a mitigation/solution?
The mitigation is disabling FIPS mode at the OS but some public sectors are required to have it enabled.
The text was updated successfully, but these errors were encountered: