amol-
commented
1 month ago I think we can just switch to any other hash, probably using uuid.uuid1 would work perfectly well, as the only purpose is to get a host unique identifier for distributed locks.
The Federal Information Processing Standards (FIPS) do not allow using the md5 algorithm for encryption since it is considered too weak. The hashlib implementation of md5 provided a workaround permitting continued use of the fast md5 algorithm by explicitly noting the use was not for security purposes. The changes here try using that workaround, and fall back to failing on systems enforcing FIPS.