From c66230af317d28fca45ff2e6723479d58d787bed Mon Sep 17 00:00:00 2001
From: Tomas Mraz <tmraz@fedoraproject.org>
Date: Fri, 4 Jul 2014 17:08:44 +0200
Subject: [PATCH] Sign the test string in the pairwise check instead of empty
 data.

Author: Marcus Meissner <meissner@suse.de>
---
 openssl-1.0.1e-fips-ec.patch | 2 +-
 openssl-1.0.1g-fips.patch    | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/openssl-1.0.1e-fips-ec.patch b/openssl-1.0.1e-fips-ec.patch
index 7287dae..e1f648c 100644
--- a/openssl-1.0.1e-fips-ec.patch
+++ b/openssl-1.0.1e-fips-ec.patch
@@ -241,7 +241,7 @@ diff -up openssl-1.0.1e/crypto/ec/ec_key.c.fips-ec openssl-1.0.1e/crypto/ec/ec_k
 +
 +	EVP_PKEY_set1_EC_KEY(pk, key);
 +
-+	if (fips_pkey_signature_test(pk, tbs, 0, NULL, 0, NULL, 0, NULL))
++	if (fips_pkey_signature_test(pk, tbs, -1, NULL, 0, NULL, 0, NULL))
 +		ret = 1;
 +
 +	err:
diff --git a/openssl-1.0.1g-fips.patch b/openssl-1.0.1g-fips.patch
index 26b1e86..e51e126 100644
--- a/openssl-1.0.1g-fips.patch
+++ b/openssl-1.0.1g-fips.patch
@@ -983,7 +983,7 @@ diff -up openssl-1.0.1g/crypto/dsa/dsa_key.c.fips openssl-1.0.1g/crypto/dsa/dsa_
 +
 +	EVP_PKEY_set1_DSA(pk, dsa);
 +
-+	if (fips_pkey_signature_test(pk, tbs, 0, NULL, 0, NULL, 0, NULL))
++	if (fips_pkey_signature_test(pk, tbs, -1, NULL, 0, NULL, 0, NULL))
 +		ret = 1;
 +
 +	err: