[Python-checkins] bpo-40479: Fix typo, flag must be set for OpenSSL < 3.0.0 (GH-30584)
tiran
webhook-mailer at python.org
Thu Jan 13 15:48:13 EST 2022
https://github.com/python/cpython/commit/276c234ce0fa6732237f1b187989837324d9dea3
commit: 276c234ce0fa6732237f1b187989837324d9dea3
branch: main
author: Christian Heimes <christian at python.org>
committer: tiran <christian at python.org>
date: 2022-01-13T21:47:42+01:00
summary:
bpo-40479: Fix typo, flag must be set for OpenSSL < 3.0.0 (GH-30584)
files:
M Modules/_hashopenssl.c
diff --git a/Modules/_hashopenssl.c b/Modules/_hashopenssl.c
index eeea61aeceb54..fb155b2e62253 100644
--- a/Modules/_hashopenssl.c
+++ b/Modules/_hashopenssl.c
@@ -883,7 +883,7 @@ py_evp_fromname(PyObject *module, const char *digestname, PyObject *data_obj,
goto exit;
}
-#if defined(EVP_MD_CTX_FLAG_NON_FIPS_ALLOW) && OPENSSL_VERSION_NUMBER >= 0x30000000L
+#if defined(EVP_MD_CTX_FLAG_NON_FIPS_ALLOW) && OPENSSL_VERSION_NUMBER < 0x30000000L
// In OpenSSL 1.1.1 the non FIPS allowed flag is context specific while
// in 3.0.0 it is a different EVP_MD provider.
if (!usedforsecurity) {
More information about the Python-checkins
mailing list