Share via

Postgres Flexible Server 15.8 No Longer Supports ANY md5 Functionality

David Carson 0 Reputation points
Oct 16, 2024, 7:27 PM

The 15.8 version of the server no longer supports md5 hashing. The 15.7 version allows us to call the MD5() function within the server. We DO NOT use this function for passwords or other security mechanisms. It is purely used to create a unique, repeatable value based on the text it is fed.

Eg: *SELECT MD5('This is some data')::UUID; returns '*ERROR: could not compute MD5 hash: disabled for FIPS'

In an attempt to support some current FIPS requirement, Azure disabled MD5 login support as of 15.8.

All well and good, but they seemed to have used a big hammer, and stopped ALL use of an MD5 hash on the server. We added the pgcrypto extension, hoping that perhaps we could bypass the issue by calling an external extension.

SELECT SUBSTRING(digest('the ' || 'big ' || 'thing' , 'md5')::TEXT, 3)::UUID AS key; returns 'ERROR: Cannot use "md5": Cipher cannot be initialized

Any suggestion to get around this issue? We have customer who are running into severe issues because of this bad behaviour.

We have opened a priority support case, but have not heard from them as yet.

Any thoughts would be a appeached.

Cheers

D

Azure Database for PostgreSQL
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.