Mailing List Archives
Public Access
|
|
![[Computer Systems Lab]](https://www-auth.cs.wisc.edu/pics/csl_logo.gif)
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [HTCondor-users] Condor_master aborting because of FIPS mode
- Date: Thu, 10 Sep 2020 12:33:32 -0500
- From: Tim Theisen <tim@xxxxxxxxxxx>
- Subject: Re: [HTCondor-users] Condor_master aborting because of FIPS mode
Hi Doug,
I think I know what went wrong. I'll build new tarballs for you today.
...Tim
On 9/10/20 11:07 AM, Vechinski, Douglas wrote:
> So after my previous question about the library paths and the related response (in early August), I went off and did more tinkering and seem to have gotten something that works. Was able to get condor_master, etc. started, and was able to submit and run some test jobs on this one machine. I then proceeded to "ignore" the mailing list for the next month and didn't see that Tim mentioned the link below about the FIPS build tarballs until this week. So I thought, great, this would probably be a better/cleaner install of the Condor system than what I hacked together from the FIPS compliant RPMs mentioned earlier in the thread.
>
> So I proceeded to download the FIPS enabled tarball (The location though seems to have changed to https://research.cs.wisc.edu/htcondor/tarball/v8.8/8.8.9/fips however). I used the CentOS7 one for the RHEL 7 system that I was using. I changed my condor link to point to the appropriate location. Copied over my condor_config macro files. I then attempted to start the condor service which failed. The MasterLog was showing a Signal 6 (Abort). When I attempted to start condor_master manually it gave me
>
> md5_dgst.c(82): OpenSSL internal error, assertion failed: Digest MD5 forbidden in FIPS mode.
>
> The same problem that started this whole thread. A day or so later I noticed that there was a 8.8.10/fips tarball also available. I went through the same steps today with that but ended up with the same result. These FIPS compliant tarballs seem to be acting like the normal distribution ones.
>
>> You will find the FIPS compliant tarballs in:
>> https://research.cs.wisc.edu/htcondor/tarball/v8.8/8.8.9-fips/
>
>
>
> _______________________________________________
> HTCondor-users mailing list
> To unsubscribe, send a message to htcondor-users-request@xxxxxxxxxxx with a
> subject: Unsubscribe
> You can also unsubscribe by visiting
> https://lists.cs.wisc.edu/mailman/listinfo/htcondor-users
>
> The archives can be found at:
> https://lists.cs.wisc.edu/archive/htcondor-users/
--
Tim Theisen
Release Manager
HTCondor & Open Science Grid
Center for High Throughput Computing
Department of Computer Sciences
University of Wisconsin - Madison
4261 Computer Sciences and Statistics
1210 W Dayton St
Madison, WI 53706-1685
+1 608 265 5736