Revert "Pairwise check for DH keys import as part of FIPS"

Not needed anymore. It's handled in the 'ec (fips): add PCT for key import'

This reverts commit e08b83cbb3b853ae9dc364c32d927405172918ac.

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28122)

diff --git a/crypto/dh/dh_backend.c b/crypto/dh/dh_backend.c
index d4f907723ae62eec640ef78d28e9a47c291667db..1aaa88dacae111e1d37db702a560e597282dc6a7 100644 (file)
--- a/crypto/dh/dh_backend.c
+++ b/crypto/dh/dh_backend.c
@@ -80,12 +80,6 @@ int ossl_dh_key_fromdata(DH *dh, const OSSL_PARAM params[], int include_private)
     if (!DH_set0_key(dh, pub_key, priv_key))
         goto err;
 
-#ifdef FIPS_MODULE
-    if (pub_key != NULL && priv_key != NULL)
-        if (ossl_dh_check_pairwise(dh, 0) == 0)
-            return 0;
-#endif
-
     return 1;
 
  err: