Comment 8 for bug 1883271

Correct presence does not matter. Apt however checks everything that is present. And uses libraries in FIPS mode, and crashes if libgnutls30 doesn't implement or refuses to provide MD5.

This hasn't blocked FIPS submission for Jammy, but made it harder to do so. As we had rebuild gnutls, add md5, add custom code to add FIPS indicator that md5 usage taints APT. Add policy documents explaining that MD5 is available but should not be used, blah blah blah.

Waste of time, engineering, Atsec certification, delaying submission of FIPS, etc.

Also every single FIPS sales is confusing, as they keep looking at our policy documents and questioning why we offer MD5, and have it available at runtime and it is excluded, when it would make this more simple for it to not exist at all.