Google Git
Sign in
android / platform / external / python / cryptography / 5b3e735253d4cc1c7f51dedc11c9ca5eeb6f451f^! / .
commit5b3e735253d4cc1c7f51dedc11c9ca5eeb6f451f[log] [tgz]
authorPaul Kehrer <[email protected]>Mon Jan 21 21:17:19 2019 -0600
committerAlex Gaynor <[email protected]>Mon Jan 21 22:17:19 2019 -0500
tree7cd2194ca80e8e748b983260b322c281f1c03f70
parent7a127a5d0a5c6018affc9c4bdf03f4be7e6e25f8 [diff]
bind EVP_R_MEMORY_LIMIT_EXCEEDED and update a test (#4726)

* bind EVP_R_MEMORY_LIMIT_EXCEEDED and update a test

This will allow OpenSSL 1.1.1 on 32-bit (including our Windows 32-bit
builders) to fail as expected. Technically this isn't a malloc error,
but rather failing because the allocation requested is larger than
32-bits, but raising a MemoryError still seems appropriate

* what you want an endif too?

diff --git a/src/_cffi_src/openssl/err.py b/src/_cffi_src/openssl/err.py
index b4d053c..d4033f5 100644
--- a/src/_cffi_src/openssl/err.py
+++ b/src/_cffi_src/openssl/err.py

@@ -11,6 +11,7 @@
 TYPES = """
 static const int Cryptography_HAS_EC_CODES;
 static const int Cryptography_HAS_RSA_R_PKCS_DECODING_ERROR;
+static const int Cryptography_HAS_EVP_R_MEMORY_LIMIT_EXCEEDED;
 
 static const int ERR_LIB_DH;
 static const int ERR_LIB_EVP;
@@ -23,6 +24,7 @@
 static const int ERR_LIB_X509;
 
 static const int ERR_R_MALLOC_FAILURE;
+static const int EVP_R_MEMORY_LIMIT_EXCEEDED;
 
 static const int ASN1_R_BOOLEAN_IS_WRONG_LENGTH;
 static const int ASN1_R_BUFFER_TOO_SMALL;
@@ -170,4 +172,11 @@
 static const long Cryptography_HAS_RSA_R_PKCS_DECODING_ERROR = 0;
 static const long RSA_R_PKCS_DECODING_ERROR = 0;
 #endif
+
+#ifdef EVP_R_MEMORY_LIMIT_EXCEEDED
+static const long Cryptography_HAS_EVP_R_MEMORY_LIMIT_EXCEEDED = 1;
+#else
+static const long EVP_R_MEMORY_LIMIT_EXCEEDED = 0;
+static const long Cryptography_HAS_EVP_R_MEMORY_LIMIT_EXCEEDED = 0;
+#endif
 """

diff --git a/src/cryptography/hazmat/backends/openssl/backend.py b/src/cryptography/hazmat/backends/openssl/backend.py
index 64a91f0..1d1e044 100644
--- a/src/cryptography/hazmat/backends/openssl/backend.py
+++ b/src/cryptography/hazmat/backends/openssl/backend.py

@@ -2210,6 +2210,10 @@
                     errors[0]._lib_reason_match(
                         self._lib.ERR_LIB_EVP,
                         self._lib.ERR_R_MALLOC_FAILURE
+                    ) or
+                    errors[0]._lib_reason_match(
+                        self._lib.ERR_LIB_EVP,
+                        self._lib.EVP_R_MEMORY_LIMIT_EXCEEDED
                     )
                 )
 

diff --git a/src/cryptography/hazmat/bindings/openssl/_conditional.py b/src/cryptography/hazmat/bindings/openssl/_conditional.py
index 7641793..c0238dc 100644
--- a/src/cryptography/hazmat/bindings/openssl/_conditional.py
+++ b/src/cryptography/hazmat/bindings/openssl/_conditional.py

@@ -335,6 +335,12 @@
     ]
 
 
+def cryptography_has_evp_r_memory_limit_exceeded():
+    return [
+        "EVP_R_MEMORY_LIMIT_EXCEEDED",
+    ]
+
+
 # This is a mapping of
 # {condition: function-returning-names-dependent-on-that-condition} so we can
 # loop over them and delete unsupported names at runtime. It will be removed
@@ -403,4 +409,7 @@
     "Cryptography_HAS_EVP_DIGESTFINAL_XOF": (
         cryptography_has_evp_digestfinal_xof
     ),
+    "Cryptography_HAS_EVP_R_MEMORY_LIMIT_EXCEEDED": (
+        cryptography_has_evp_r_memory_limit_exceeded
+    ),
 }