Puppet Version: All Puppet Server Version: All OS Name/Version: CentOS and RHEL 8.3+ in FIPS mode CentOS and RHEL 8.3+, when running in FIPS mode, require SHA-256 signatures on both repository metadata and RPMs. StarLab has a good summary of the issue and I can confirm that resigning the RPMs using a CentOS 8.3+ base container/image will allow for correct installation. Desired Behavior: Ability to install puppet RPMs on an EL8 system in FIPS mode. Actual Behavior: RPMs fail to install. An example of the failure can be found in the pupmod-simp-pupmod beaker tests. |