File openssl-1_1-ossl-sli-011-SSHKDF.patch of Package openssl-1_1.37526

Index: openssl-1.1.1w/crypto/fips/fips_sli.c
===================================================================
--- openssl-1.1.1w.orig/crypto/fips/fips_sli.c
+++ openssl-1.1.1w/crypto/fips/fips_sli.c
@@ -158,7 +158,6 @@ static FIPS_STATUS get_fips_hash_status(
             return FIPS_NONAPPROVED;
         }
     case HASH_KDF_PBKDF2:
-    case HASH_KDF_SSHKDF:
     case HASH_MAC:
         switch (EVP_MD_type(md)) {
         case NID_sha1:
@@ -177,6 +176,17 @@ static FIPS_STATUS get_fips_hash_status(
             return FIPS_APPROVED;
         default:
             return FIPS_NONAPPROVED;
+        }
+    case HASH_KDF_SSHKDF:
+        switch (EVP_MD_type(md)) {
+        case NID_sha1:
+        case NID_sha224:
+        case NID_sha256:
+        case NID_sha384:
+        case NID_sha512:
+            return FIPS_APPROVED;
+        default:
+            return FIPS_NONAPPROVED;
         }
     case HASH_RNG:
     case HASH_SIGGEN:

Places

File openssl-1_1-ossl-sli-011-SSHKDF.patch of Package openssl-1_1.37526

Places