Hello, I was recently trying to build version 1.39 of the qpid messaging API on RHEL8 with FIPS mode enabled and was running into build issues. I unfortunately cannot change the security policy to anything else due to company constraints. Since MD5 is no longer a valid cryptographic hash function (not that isn't being used this way here), the script "schema.py" in the managementgen module was failing. To get around this, I changed the python script to use SHA256 instead and then updated all the references of MD5_LEN and accompanying arrays from 16 bytes to 32 bytes since the SHA256 digest length is twice as long. This worked, but I'd like to contribute the change upstream since I'm sure other will run into this problem. My proposals:
1. Add a cmake configuration flag to specify the hash digest to use with a default of MD5 which will configure the script "schema.py" 2. change all references of "MD5_LEN" and accompanying arrays to "DIGEST_LEN" Any thoughts? Also, what's the contribution policy? I found https://github.com/apache/qpid-cpp, but are PRs accepted here? Thanks, Colin
