Red Hat Bugzilla – Bug 488726
fips kernel crypto testing requires libnl 1.1+
Last modified: 2009-06-10 10:43:13 EDT
Description of problem:
For FIPS CAVS kernel crypto testing and certification, we've developed a test harness in-house for processing test vectors, and the userspace makes use of libnl to send the test vectors to the kernel and receive the results back. However, features in libnl 1.1 are necessary. We'd like to see libnl 1.1 added to RHEL5.4 so that certification testing can be done on 100% stock RHEL5.4.
Version-Release number of selected component (if applicable):
libnl-1.0-0.10.pre5.5 vs. libnl-1.1-5.el5
libnl-1.1-5.el5 is a local rebuild of a recent Fedora libnl 1.1 plus a post-1.1 patch from upstream to enable libnl 1.1 to work with older (i.e. 2.6.18) kernels.
Note that libnl 1.1 is an API/ABI break from libnl-1.0. We were going to rebase libnl to 1.1 for RHEL 5.3 to support NetworkManager, but discovered the ABI breakage. We would need to explore other solutions like -compat packages to preserve the older libnl-1.0 headers and libraries while also updating to libnl-1.1.
looks like these changes are only needed by Jarod's testsuites.
Hence we can just built a test rpm to accompany his testsuites
since we are not shipping his testsuites with RHEL.
We can go ahead and close this, the updated libnl is indeed only needed for the test infrastructure, we don't actually need to ship it.