awslabs
Mountpoint RPM cannot be installed on FIPS enabled systems
Mountpoint for Amazon S3 version
All
Describe the running environment
Running in a FIPS enabled EC2 instance
fips-mode-setup --enable
reboot
fips-mode-setup --check
FIPS mode is enabled. Initramfs fips module is enabled. The current crypto policy (FIPS) is based on the FIPS policy.
What happened?
Mountpoint fails to install when using the recommended installation approach
sudo yum install https://s3.amazonaws.com/mountpoint-s3-release/latest/x86_64/mount-s3.rpm -y
Relevant log output
...
Error: Transaction test error:
package mount-s3-1.15.0-1.x86_64 does not verify: no digest
As a short-term workaround, you can disable FIPS mode and install Mountpoint before re-enabling it:
fips-mode-setup --disable
reboot
fips-mode-setup --check
sudo yum install https://s3.amazonaws.com/mountpoint-s3-release/latest/x86_64/mount-s3.rpm -y
fips-mode-setup --enable
reboot
fips-mode-setup --check
doesn't fully work in AML2023 (trying in version - Amazon Linux 2023.7.20250609)- need --nogpgcheck
Package mount-s3.rpm is not signed
Error: GPG check FAILED
sh-5.2$ sudo yum install https://s3.amazonaws.com/mountpoint-s3-release/latest/x86_64/mount-s3.rpm -y --nogpgcheck
Hey @ejoliet! The --nogpgcheck flag is currently required. The package uses a detached signature, so you can verify it separately using the following command:
gpg --verify mount-s3.rpm.asc mount-s3.rpm
Please follow the steps outlined in the official documentation. Let us know if this resolves your issue!
