Red Hat Bugzilla – Bug 604563
metalink do not work in yum when in FIPS mode
Last modified: 2014-01-21 01:18:02 EST
Description of problem:
When I configured repository with baseurl= being an metalink in RHEL6 in FIPS mode, yum fails to download it.
Version-Release number of selected component (if applicable):
always (tested on 1 i386 RHEL6 system)
Steps to Reproduce:
1. # vim /etc/yum.repos.d/fedora-meta.repo
name=Fedora 12 i386
2. # yum repolist
Loaded plugins: aliases, changelog, downloadonly, presto, protect-packages, refresh-packagekit, rhnplugin, security, tmprepo,
: verify, versionlock
This system is not registered with RHN.
RHN support will be disabled.
fedora-meta/metalink | 20 kB 00:00
fips.c(152): OpenSSL internal error, assertion failed: FATAL FIPS SELFTEST FAILURE
Aborted (core dumped)
yum fails to download metalink
This was mentioned in:
This request was evaluated by Red Hat Product Management for inclusion in a Red
Hat Enterprise Linux major release. Product Management has requested further
review of this request by Red Hat Engineering, for potential inclusion in a Red
Hat Enterprise Linux Major release. This request is not yet committed for
Can we get a backtrace ... or access to a fips machine, as I can't see where we are accessing md5.
you are right. I have re-checked with these versions:
and I do not see the problem any more. Maybe before I have forgot to run `prelink -u -a; rpm -e prelink` before switching to FIPS?
Thank you and sorry for a mess,