test: add a comment indication that a bad MAC is intentional

This permits negative testing of FIPS module load failure.

Also changed the MAC to all zeros to make it even clearer.

Reviewed-by: Tim Hudson <tjh@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/16168)

diff --git a/test/recipes/30-test_defltfips/fipsmodule.cnf b/test/recipes/30-test_defltfips/fipsmodule.cnf
index d359c78e079bec63337c36d108dea9a4cd2ae99b..14d26d8e56dc4562dd5a1fde4d0dd945d1e3ab7c 100644 (file)
--- a/test/recipes/30-test_defltfips/fipsmodule.cnf
+++ b/test/recipes/30-test_defltfips/fipsmodule.cnf
@@ -1,5 +1,7 @@
+#The MAC here is meant to be incorrect, do not modify it
+
 [fips_sect]
 activate = 1
 conditional-errors = 1
 security-checks = 1
-module-mac = B9:C9:E1:F5:B7:49:18:1B:BF:63:68:DF:1A:66:40:2E:04:2A:8F:E2:B1:D9:F7:7C:08:6F:80:A0:1D:47:F2:00
+module-mac = 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00