python-cryptography

rpms/python-cryptography

Fork 0

Commit Graph

Author	SHA1	Message	Date
Fraser Tweedale	520cea6ec9	Fix AES-GCM with FIPS provider version mismatch Add patch from upstream PR https://github.com/pyca/cryptography/pull/14819 to fix AESGCM failing when an older FIPS provider (e.g. OpenSSL 3.0.7) is loaded alongside a newer main OpenSSL library (>= 3.2). The fix adds a fallback mechanism that re-initializes cipher contexts from stored parameters when EVP_CIPHER_CTX_copy fails, which can occur due to version mismatches between the FIPS provider and main library. Resolves: RHEL-173746	2026-05-16 15:31:32 +10:00

Author

SHA1

Message

Date

Fraser Tweedale

520cea6ec9

Fix AES-GCM with FIPS provider version mismatch

Add patch from upstream PR https://github.com/pyca/cryptography/pull/14819
to fix AESGCM failing when an older FIPS provider (e.g. OpenSSL 3.0.7)
is loaded alongside a newer main OpenSSL library (>= 3.2).

The fix adds a fallback mechanism that re-initializes cipher contexts
from stored parameters when EVP_CIPHER_CTX_copy fails, which can occur
due to version mismatches between the FIPS provider and main library.

Resolves: RHEL-173746

2026-05-16 15:31:32 +10:00

1 Commits