Add patch from upstream PR https://github.com/pyca/cryptography/pull/14819
to fix AESGCM failing when an older FIPS provider (e.g. OpenSSL 3.0.7)
is loaded alongside a newer main OpenSSL library (>= 3.2).
The fix adds a fallback mechanism that re-initializes cipher contexts
from stored parameters when EVP_CIPHER_CTX_copy fails, which can occur
due to version mismatches between the FIPS provider and main library.
Resolves: RHEL-173746
- Resolves: rhbz#2279072
python-cryptography-43.0.0 is available
- Resolves: RHEL-33747
Please stop using OpenSSL ENGINE API in python-cryptography
- RHELMISC-6447
Remove package python-pytest-benchmark from RHEL10-Beta
This builds the package with OPENSSL_NO_ENGINE=1. This drops the
skip-overflow-tests-32bit.patch as its included in v43.0.0. It
picks up the patch in https://github.com/pyca/cryptography/pull/11328
to allow building with OPENSSL_NO_ENGINE=1.
Signed-off-by: Francisco Trivino <ftrivino@redhat.com>
