Commit 919fd9db25 for openssl.org

commit 919fd9db2514e97f02b31acc910858281e830a26
Author: Stefan Berger <stefanb@linux.ibm.com>
Date:   Sun Mar 8 18:11:02 2026 -0500

    cms: Make sha512 the required hash for CMS with signedAttributes

    RFC 8419 requires that, when using an Ed25519 key for CMS signed-data with
    signed attributes, SHA512 must be used. Modify the entry in the key2data
    table to reflect this giving the user not other choice for a hash.

    Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>

    Reviewed-by: Tomas Mraz <tomas@openssl.org>
    Reviewed-by: Paul Dale <paul.dale@oracle.com>
    Reviewed-by: Neil Horman <nhorman@openssl.org>
    MergeDate: Tue Mar 17 16:20:24 2026
    (Merged from https://github.com/openssl/openssl/pull/30312)

diff --git a/crypto/cms/cms_sd.c b/crypto/cms/cms_sd.c
index 60628cb939..6466aacec1 100644
--- a/crypto/cms/cms_sd.c
+++ b/crypto/cms/cms_sd.c
@@ -372,7 +372,7 @@ static const struct {
     {
         "ED25519",
         NID_sha512,
-        0,
+        1,
         NID_sha512,
         1,
     }, /* RFC 8419 */