crypto: use rsa pub version for sha2 to avoid version conflict

Xynnn007 · Xynnn007 · commit 1c23b8cc4264 · 2026-04-28T23:50:54.000+08:00
Signed-off-by: Xynnn007 &lt;xynnn@linux.alibaba.com&gt;
diff --git a/attestation-agent/deps/crypto/Cargo.toml b/attestation-agent/deps/crypto/Cargo.toml
@@ -21,7 +21,7 @@ rand.workspace = true
 
 # This is for API compability of p256 who is using the old version of `rand`
 rand_08 = { package = "rand", version = "0.8", optional = true }
-rsa = { workspace = true, optional = true }
+rsa = { workspace = true, optional = true, features = ["sha2"] }
 serde.workspace = true
 serde_json.workspace = true
 sha2.workspace = true
diff --git a/attestation-agent/deps/crypto/src/rust/rsa.rs b/attestation-agent/deps/crypto/src/rust/rsa.rs
@@ -39,7 +39,7 @@ impl RSAKeyPair {
         match mode {
             PaddingMode::OAEP => self
                 .private_key
-                .decrypt(Oaep::new::<sha2::Sha256>(), &cipher_text)
+                .decrypt(Oaep::new::<rsa::sha2::Sha256>(), &cipher_text)
                 .map_err(|e| anyhow!("RSA key decrypt OAEP failed: {:?}", e)),
             #[allow(deprecated)]
             PaddingMode::PKCS1v15 => self
