[Python-checkins] gh-134696: fix `hashlib` tests for FIPS-only BLAKE-2 buildbot (#134968)

Sat, 31 May 2025 03:49:06 -0700 

https://github.com/python/cpython/commit/379d0bc95646dfe923e7ea05fb7f1befbd85572d
commit: 379d0bc95646dfe923e7ea05fb7f1befbd85572d
branch: main
author: Bénédikt Tran <10796600+picn...@users.noreply.github.com>
committer: picnixz <10796600+picn...@users.noreply.github.com>
date: 2025-05-31T12:48:34+02:00
summary:

gh-134696: fix `hashlib` tests for FIPS-only BLAKE-2 buildbot  (#134968)

files:
M Lib/test/test_hashlib.py

diff --git a/Lib/test/test_hashlib.py b/Lib/test/test_hashlib.py
index 51b82fe3b516b5..8244f7c7553a37 100644
--- a/Lib/test/test_hashlib.py
+++ b/Lib/test/test_hashlib.py
@@ -249,6 +249,7 @@ def test_usedforsecurity_false(self):
             self._hashlib.new("md5", usedforsecurity=False)
             self._hashlib.openssl_md5(usedforsecurity=False)
 
+    @unittest.skipIf(get_fips_mode(), "skip in FIPS mode")
     def test_clinic_signature(self):
         for constructor in self.hash_constructors:
             with self.subTest(constructor.__name__):
@@ -256,6 +257,17 @@ def test_clinic_signature(self):
                 constructor(data=b'')
                 constructor(string=b'')  # should be deprecated in the future
 
+            digest_name = constructor(b'').name
+            with self.subTest(digest_name):
+                hashlib.new(digest_name, b'')
+                hashlib.new(digest_name, data=b'')
+                hashlib.new(digest_name, string=b'')
+                if self._hashlib:
+                    self._hashlib.new(digest_name, b'')
+                    self._hashlib.new(digest_name, data=b'')
+                    self._hashlib.new(digest_name, string=b'')
+
+    @unittest.skipIf(get_fips_mode(), "skip in FIPS mode")
     def test_clinic_signature_errors(self):
         nomsg = b''
         mymsg = b'msg'
@@ -295,9 +307,16 @@ def test_clinic_signature_errors(self):
             [(), dict(data=nomsg, string=nomsg), conflicting_call],
         ]:
             for constructor in self.hash_constructors:
+                digest_name = constructor(b'').name
                 with self.subTest(constructor.__name__, args=args, kwds=kwds):
                     with self.assertRaisesRegex(TypeError, errmsg):
                         constructor(*args, **kwds)
+                with self.subTest(digest_name, args=args, kwds=kwds):
+                    with self.assertRaisesRegex(TypeError, errmsg):
+                        hashlib.new(digest_name, *args, **kwds)
+                    if self._hashlib:
+                        with self.assertRaisesRegex(TypeError, errmsg):
+                            self._hashlib.new(digest_name, *args, **kwds)
 
     def test_unknown_hash(self):
         self.assertRaises(ValueError, hashlib.new, 'spam spam spam spam spam')

_______________________________________________
Python-checkins mailing list -- python-checkins@python.org
To unsubscribe send an email to python-checkins-le...@python.org
https://mail.python.org/mailman3//lists/python-checkins.python.org
Member address: arch...@mail-archive.com

Reply via email to