wip: crypto: Keep FIPS provided loaded

Loading the FIPS provider presumably disables lot of non-FIPS compliant algorithms; disabling it right afterwards may leave the OpenSSL in non-usable state (i.e. no RNG algorithm available).
nodejs · Jul 28, 2023 · 03d3ccf · 03d3ccf
1 parent 75efb42
commit 03d3ccf
Showing 1 changed file with 0 additions and 1 deletion.
diff --git a/src/crypto/crypto_util.cc b/src/crypto/crypto_util.cc
@@ -125,7 +125,6 @@ bool ProcessFipsOptions() {
     OSSL_PROVIDER* fips_provider = OSSL_PROVIDER_load(nullptr, "fips");
     if (fips_provider == nullptr)
       return false;
-    OSSL_PROVIDER_unload(fips_provider);
 
     return EVP_default_properties_enable_fips(nullptr, 1) &&
            EVP_default_properties_is_fips_enabled(nullptr);