| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
00146 #
Support OpenSSL FIPS mode (e.g. when OPENSSL_FORCE_FIPS_MODE=1 is set)
- handle failures from OpenSSL (e.g. on attempts to use MD5 in a
FIPS-enforcing environment)
- add a new "usedforsecurity" keyword argument to the various digest
algorithms in hashlib so that you can whitelist a callsite with
"usedforsecurity=False"
(sent upstream for python 3 as http://bugs.python.org/issue9216; this is a
backport to python 2.7; see RHEL6 patch 119)
- enforce usage of the _hashlib implementation: don't fall back to the _md5
and _sha* modules (leading to clearer error messages if fips selftests
fail)
- don't build the _md5 and _sha* modules; rely on the _hashlib implementation
of hashlib (for example, md5.py will use _hashlib's implementation of MD5,
if permitted by the FIPS setting)
(rhbz#563986)
|
| | |
|
| | |
|
| |
|
|
| |
Backport by Alex Gaynor.
|
| |
|
|
| |
regardless of which of the two implementations of new is used.
|
| |
|
|
|
|
|
| |
the expected builtin modules are not present.
This includes a unittest for __get_builtin_constructor() in the face
of such an error.
|
| | |
|
| | |
|
| |
|
|
| |
escaped.
|
| |
|
|
| |
Some people look for them in hashlib.
|
| | |
|
| | |
|
| | |
|
|
|
A new hashlib module to replace the md5 and sha modules. It adds
support for additional secure hashes such as SHA-256 and SHA-512. The
hashlib module uses OpenSSL for fast platform optimized
implementations of algorithms when available. The old md5 and sha
modules still exist as wrappers around hashlib to preserve backwards
compatibility.
|
