1380865 – RFE : RHEL6 update for Net:SSL or perl-Crypt-SSLeay.x86_64

Bug 1380865 - RFE : RHEL6 update for Net:SSL or perl-Crypt-SSLeay.x86_64

Summary: RFE : RHEL6 update for Net:SSL or perl-Crypt-SSLeay.x86_64

Keywords:
Status:	CLOSED NEXTRELEASE
Alias:	None
Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	perl-Crypt-SSLeay
Sub Component:
Version:	6.8
Hardware:	All
OS:	Linux
Priority:	unspecified
Severity:	high
Target Milestone:	rc
Target Release:	---
Assignee:	perl-maint-list
QA Contact:	BaseOS QE Security Team
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2016-09-30 20:31 UTC by BHUSHANGDANGRE
Modified:	2019-12-16 06:57 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2016-10-11 07:29:56 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description BHUSHANGDANGRE 2016-09-30 20:31:28 UTC

1. Proposed title of this feature request    
    RHEL6 update for Net:SSL or perl-Crypt-SSLeay.x86_64

2. What is the nature and description of the request?  
   Application upgrade requirement
   
3. Why do you need this - specific/brief business justification  ?   
   Our client needs to update their application before December. The            application    vendor requires Net:SSL version 2.85 or higher.
  
4. Is there already an existing RFE upstream or in Red Hat Bugzilla?  
   Unknown - not found.
   
5. Do you have any specific timeline dependencies and which release would they  like to target (i.e. RHEL5, RHEL6)?  
   12/1/2016 for RHEL6
   
6. Is the sales team involved in this request and do they have any additional input?  
   No
   
7. List any affected packages or components.  
   Net:SSL which is integrated within perl-Crypt-SSLeay.x86_64
   
8. Will you be assist in testing this functionality if implemented?  
    We have a test environment.  Once we have Net:SSL version 2.85 on our Satellite, we will provide it for our client's test servers and they can upgrade the application in Dev/Test and begin verification.

Comment 2 Petr Pisar 2016-10-03 08:20:48 UTC

Could you explain what specific feature the custom is missing in the Net::SSL module?

I have problem with this request for upgrade for these reasons:

(1) RHEL does not upgrade packages just only because of "old version".

(2) RHEL-6 reached a life-cycle phase in which no new features are allowed.

The Net:SSL 2.85 first appear in Crypt-SSLeay-0.58. There are many changes between current RHEL's Crypt-SSLeay-0.57 and the requested 0.58 <http://cpansearch.perl.org/src/NANIS/Crypt-SSLeay-0.72/Changes>. Could you please quote what's the desired item by the customer?

The change log contains mostly bug fixes and build script refactoring. So upgrading could be safe. But still I would prefer back-porting a fix.

Comment 3 BHUSHANGDANGRE 2016-10-10 21:08:35 UTC

The desired item is Net:SSL version 2.85 or higher for RHEL6.

Comment 4 Petr Pisar 2016-10-11 07:29:56 UTC

I'm sorry, RHEL-6 is now in production phase 2 where no new features are added into the product <https://access.redhat.com/support/policy/updates/errata/>. 

If you want new features, you can migrate to RHEL-7 where you can find perl-Crypt-SSLeay-0.64-5.el7 that provides Net::SSL 2.85.

Note You need to log in before you can comment on or make changes to this bug.