selftests: net: Explicitly enable CONFIG_CRYPTO_SHA1 for IPsec

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

xfrm_policy.sh, nft_flowtable.sh, and vrf-xfrm-tests.sh use 'ip xfrm'
with SHA-1, either 'auth sha1' or 'auth-trunc hmac(sha1)'. That
requires CONFIG_CRYPTO_SHA1, which CONFIG_INET_ESP intentionally doesn't
select (as per its help text). Previously, the config for these tests
relied on CONFIG_CRYPTO_SHA1 being selected by the unrelated option
CONFIG_IP_SCTP. Since CONFIG_IP_SCTP is being changed to no longer do
that, instead add CONFIG_CRYPTO_SHA1 to the configs explicitly.

Reported-by: Paolo Abeni <pabeni@redhat.com>
Closes: https://lore.kernel.org/r/766e4508-aaba-4cdc-92b4-e116e52ae13b@redhat.com
Suggested-by: Florian Westphal <fw@strlen.de>
Acked-by: Xin Long <lucien.xin@gmail.com>
Signed-off-by: Eric Biggers <ebiggers@kernel.org>
Link: https://patch.msgid.link/20250818205426.30222-2-ebiggers@kernel.org
Signed-off-by: Jakub Kicinski <kuba@kernel.org>

authored by

Eric Biggers and committed by

Jakub Kicinski 7 months ago 490a9591 f9ca2820

2 changed files

expand all

tools

testing

selftests

net

config

netfilter

config

tools/testing/selftests/net/config

··· 26 26 CONFIG_INET_DIAG=y 27 27 CONFIG_INET_ESP=y 28 28 CONFIG_INET_ESP_OFFLOAD=y 29 + CONFIG_CRYPTO_SHA1=y 29 30 CONFIG_NET_FOU=y 30 31 CONFIG_NET_FOU_IP_TUNNELS=y 31 32 CONFIG_NETFILTER=y

tools/testing/selftests/net/netfilter/config

··· 13 13 CONFIG_CGROUP_BPF=y 14 14 CONFIG_DUMMY=m 15 15 CONFIG_INET_ESP=m 16 + CONFIG_CRYPTO_SHA1=m 16 17 CONFIG_IP_NF_MATCH_RPFILTER=m 17 18 CONFIG_IP6_NF_MATCH_RPFILTER=m 18 19 CONFIG_IP_NF_IPTABLES=m