File openssl-fips_disallow_ENGINE_loading.patch of Package openssl.1633

Index: openssl-1.0.1i/crypto/engine/eng_all.c
===================================================================
--- openssl-1.0.1i.orig/crypto/engine/eng_all.c	2014-09-24 16:41:20.952196293 +0200
+++ openssl-1.0.1i/crypto/engine/eng_all.c	2014-09-25 16:05:02.635720569 +0200
@@ -69,11 +69,6 @@ void ENGINE_load_builtin_engines(void)
 #ifdef OPENSSL_FIPS
 	OPENSSL_init_library();
 	if (FIPS_mode()) {
-		/* We allow loading dynamic engine as a third party
-		   engine might be FIPS validated.
-		   User is disallowed to load non-validated engines
-		   by security policy. */
-		ENGINE_load_dynamic();
 		return;
 	}
 #endif