- fix openssl dgst -dss1 (#520152)

openssl-1.0.0-beta3-dss1.patch

@@ -0,0 +1,11 @@
+diff -up openssl-1.0.0-beta3/crypto/dsa/dsa_pmeth.c.dss1 openssl-1.0.0-beta3/crypto/dsa/dsa_pmeth.c
+--- openssl-1.0.0-beta3/crypto/dsa/dsa_pmeth.c.dss1	2008-11-05 19:38:56.000000000 +0100
++++ openssl-1.0.0-beta3/crypto/dsa/dsa_pmeth.c	2009-08-31 12:53:47.000000000 +0200
+@@ -186,6 +186,7 @@ static int pkey_dsa_ctrl(EVP_PKEY_CTX *c
+ 
+ 		case EVP_PKEY_CTRL_MD:
+ 		if (EVP_MD_type((const EVP_MD *)p2) != NID_sha1   &&
++		    EVP_MD_type((const EVP_MD *)p2) != NID_dsa    &&
+ 		    EVP_MD_type((const EVP_MD *)p2) != NID_sha224 &&
+ 		    EVP_MD_type((const EVP_MD *)p2) != NID_sha256)
+ 			{

openssl.spec

@@ -23,7 +23,7 @@
 Summary: A general purpose cryptography library with TLS implementation
 Name: openssl
 Version: 1.0.0
-Release: 0.5.%{beta}%{?dist}
+Release: 0.6.%{beta}%{?dist}
 # We remove certain patented algorithms from the openssl source tarball
 # with the hobble-openssl script which is included below.
 Source: openssl-%{version}-%{beta}-usa.tar.bz2
@@ -62,6 +62,7 @@ Patch48: openssl-0.9.8j-bad-mime.patch
 Patch49: openssl-0.9.8k-algo-doc.patch
 Patch50: openssl-1.0.0-beta3-curl.patch
 Patch51: openssl-1.0.0-beta3-const.patch
+Patch52: openssl-1.0.0-beta3-dss1.patch
 # Backported fixes including security fixes
 Patch60: openssl-1.0.0-beta3-namingstr.patch
 Patch61: openssl-1.0.0-beta3-namingblk.patch
@@ -145,6 +146,7 @@ from other formats to the formats used by the OpenSSL toolkit.
 %patch49 -p1 -b .algo-doc
 %patch50 -p1 -b .curl
 %patch51 -p1 -b .const
+%patch52 -p1 -b .dss1
 %patch60 -p1 -b .namingstr
 %patch61 -p1 -b .namingblk
 
@@ -395,6 +397,9 @@ rm -rf $RPM_BUILD_ROOT/%{_libdir}/fipscanister.*
 %postun -p /sbin/ldconfig
 
 %changelog
+* Mon Aug 31 2009 Tomas Mraz <tmraz@redhat.com> 1.0.0-0.6.beta3
+- fix openssl dgst -dss1 (#520152)
+
 * Wed Aug 26 2009 Tomas Mraz <tmraz@redhat.com> 1.0.0-0.5.beta3
 - drop the compat symlink hacks