From 51badbcdbb3a905b9f79a60fc231ce69ec7e4c4a Mon Sep 17 00:00:00 2001
From: Erich Fussi <fussi@de.ibm.com>
Date: Thu, 7 Jul 2022 21:21:43 +0000
Subject: [PATCH] Add 'usedforsecurity=False' parameter to md5 call

This allows to execute in a restricted environment, like a FIPS-enabled
Kubernetes cluster.
See https://docs.python.org/3/library/hashlib.html#hash-algorithms:
> False indicates that the hashing algorithm is [used] as a
> non-cryptographic one-way compression function.
---
 kubernetes/base/dynamic/discovery.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kubernetes/base/dynamic/discovery.py b/kubernetes/base/dynamic/discovery.py
index dbf94101b..4acf7cf24 100644
--- a/kubernetes/base/dynamic/discovery.py
+++ b/kubernetes/base/dynamic/discovery.py
@@ -45,7 +45,7 @@ class Discoverer(object):
         default_cache_id = self.client.configuration.host
         if six.PY3:
             default_cache_id = default_cache_id.encode('utf-8')
-        default_cachefile_name = 'osrcp-{0}.json'.format(hashlib.md5(default_cache_id).hexdigest())
+        default_cachefile_name = 'osrcp-{0}.json'.format(hashlib.md5(default_cache_id, usedforsecurity=False).hexdigest())
         self.__cache_file = cache_file or os.path.join(tempfile.gettempdir(), default_cachefile_name)
         self.__init_cache()