Blame SOURCES/openssl-1.0.2k-rsa-check.patch

450916
diff -up openssl-1.0.2k/crypto/rsa/rsa_gen.c.rsa-check openssl-1.0.2k/crypto/rsa/rsa_gen.c
450916
--- openssl-1.0.2k/crypto/rsa/rsa_gen.c.rsa-check	2019-02-06 12:58:50.570844207 +0100
450916
+++ openssl-1.0.2k/crypto/rsa/rsa_gen.c	2019-02-06 13:10:57.058468214 +0100
450916
@@ -94,11 +94,11 @@ int fips_check_rsa(RSA *rsa)
450916
 
450916
     /* Perform pairwise consistency signature test */
450916
     if (!fips_pkey_signature_test(pk, tbs, -1,
450916
-                                  NULL, 0, EVP_sha1(),
450916
+                                  NULL, 0, EVP_sha256(),
450916
                                   EVP_MD_CTX_FLAG_PAD_PKCS1, NULL)
450916
-        || !fips_pkey_signature_test(pk, tbs, -1, NULL, 0, EVP_sha1(),
450916
+        || !fips_pkey_signature_test(pk, tbs, -1, NULL, 0, EVP_sha256(),
450916
                                      EVP_MD_CTX_FLAG_PAD_X931, NULL)
450916
-        || !fips_pkey_signature_test(pk, tbs, -1, NULL, 0, EVP_sha1(),
450916
+        || !fips_pkey_signature_test(pk, tbs, -1, NULL, 0, EVP_sha256(),
450916
                                      EVP_MD_CTX_FLAG_PAD_PSS, NULL))
450916
         goto err;
450916
     /* Now perform pairwise consistency encrypt/decrypt test */