Update from upstream (:SHA1:NO-ENFORCE-EMS, ECDSAPxxxSHAxxx):

- openssl: fix SHA1 and NO-ENFORCE-EMS interaction
- bind: fix a typo that led to duplication of ECDSAPxxxSHAxxx

Resolves: RHEL-10730
Resolves: RHEL-11346
Resolves: RHEL-11349

crypto-policies.spec

@@ -1,5 +1,5 @@
-%global git_date 20230920
-%global git_commit 8dcf74d6d64184aabebcd93d0520ede6f9382da1
+%global git_date 20231016
+%global git_commit 77ceb0bb0eb3fa0e97865d489b82175bdbce413b
 %{?git_commit:%global git_commit_hash %(c=%{git_commit}; echo ${c:0:7})}
 
 %global _python_bytecompile_extra 0
@@ -31,7 +31,7 @@ Version:        %{git_date}
 Release:        1.git%{git_commit_hash}%{?dist}
 Summary:        System-wide crypto policies
 
-License:        LGPLv2+
+License:        LGPL-2.1-or-later
 URL:            https://gitlab.com/redhat-crypto/fedora-crypto-policies
 # For RHEL-9 we use the upstream branch rhel9.
 Source0:        https://gitlab.com/redhat-crypto/fedora-crypto-policies/-/archive/%{git_commit_hash}/%{name}-git%{git_commit_hash}.tar.gz
@@ -238,6 +238,10 @@ end
 %{_mandir}/man8/fips-finish-install.8*
 
 %changelog
+* Mon Oct 16 2023 Alexander Sosedkin <asosedkin@redhat.com> - 20231016-1.git77ceb0b
+- openssl: fix SHA1 and NO-ENFORCE-EMS interaction
+- bind: fix a typo that led to duplication of ECDSAPxxxSHAxxx
+
 * Wed Sep 20 2023 Alexander Sosedkin <asosedkin@redhat.com> - 20230920-1.git8dcf74d
 - OSPP subpolicy: tighten beyond reason for OSPP 4.3
 - fips-mode-setup: more thorough --disable, still unsupported

sources

@@ -1 +1 @@
-SHA512 (crypto-policies-git8dcf74d.tar.gz) = dde440c60451167655e63cc8f8f6d964ce4a3250b64c1d8634f2be19719a0da6e77a322bd55a71b8d09b72d1052bf80933ecc5511485f7595a15ea1fdd248163
+SHA512 (crypto-policies-git77ceb0b.tar.gz) = d422cd8e4ddc56618c04498060cb2fcf0c624e5bba10cdd349e54f5106e246d287a763764246787ae17aaea359854767eb12df425f51f141b86d35e2a7a95aea