bpo-40479: Fix typo, flag must be set for OpenSSL < 3.0.0 (GH-30584)

2022-01-13 22:47:42 +02:00 · 2022-01-13 22:47:42 +02:00 · 276c234ce0
commit 276c234ce0
parent 1a4d1c1c9b
1 changed files with 1 additions and 1 deletions
--- a/Modules/_hashopenssl.c
+++ b/Modules/_hashopenssl.c
@ -883,7 +883,7 @@ py_evp_fromname(PyObject *module, const char *digestname, PyObject *data_obj,
        goto exit;
    }

-#if defined(EVP_MD_CTX_FLAG_NON_FIPS_ALLOW) &&  OPENSSL_VERSION_NUMBER >= 0x30000000L
+#if defined(EVP_MD_CTX_FLAG_NON_FIPS_ALLOW) && OPENSSL_VERSION_NUMBER < 0x30000000L
    // In OpenSSL 1.1.1 the non FIPS allowed flag is context specific while
    // in 3.0.0 it is a different EVP_MD provider.
    if (!usedforsecurity) {