Mirror
/
cpython
mirror of https://github.com/python/cpython
4
1
Fork 0
Code Issues Releases Wiki Activity

bpo-43908: Mark ssl, hash, and hmac types as immutable (GH-25792) 

Signed-off-by: Christian Heimes <christian@python.org>
This commit is contained in:
Christian Heimes 2021-05-02 09:47:45 +02:00 committed by GitHub
parent fd0bc7e7f4
commit 91554e4c5c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
13 changed files with 49 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
Lib/test/test_hashlib.py
View File

@ -926,6 +926,15 @@ class HashLibTestCase(unittest.TestCase):
): ):
HASHXOF() HASHXOF()
def test_readonly_types(self):
for algorithm, constructors in self.constructors_to_test.items():
# all other types have DISALLOW_INSTANTIATION
for constructor in constructors:
hash_type = type(constructor())
with self.subTest(hash_type=hash_type):
with self.assertRaisesRegex(TypeError, "immutable type"):
hash_type.value = False
class KDFTests(unittest.TestCase): class KDFTests(unittest.TestCase):

3
Lib/test/test_hmac.py
View File

@ -444,6 +444,9 @@ class ConstructorTestCase(unittest.TestCase):
): ):
C_HMAC() C_HMAC()
with self.assertRaisesRegex(TypeError, "immutable type"):
C_HMAC.value = None
@unittest.skipUnless(sha256_module is not None, 'need _sha256') @unittest.skipUnless(sha256_module is not None, 'need _sha256')
def test_with_sha256_module(self): def test_with_sha256_module(self):
h = hmac.HMAC(b"key", b"hash this!", digestmod=sha256_module.sha256) h = hmac.HMAC(b"key", b"hash this!", digestmod=sha256_module.sha256)

19
Lib/test/test_ssl.py
View File

@ -345,6 +345,25 @@ class BasicSocketTests(unittest.TestCase):
ssl.OP_NO_TLSv1_2 ssl.OP_NO_TLSv1_2
self.assertEqual(ssl.PROTOCOL_TLS, ssl.PROTOCOL_SSLv23) self.assertEqual(ssl.PROTOCOL_TLS, ssl.PROTOCOL_SSLv23)
def test_ssl_types(self):
ssl_types = [
_ssl._SSLContext,
_ssl._SSLSocket,
_ssl.MemoryBIO,
_ssl.Certificate,
_ssl.SSLSession,
_ssl.SSLError,
]
for ssl_type in ssl_types:
with self.subTest(ssl_type=ssl_type):
with self.assertRaisesRegex(TypeError, "immutable type"):
ssl_type.value = None
with self.assertRaisesRegex(
TypeError,
"cannot create '_ssl.Certificate' instances"
):
_ssl.Certificate()
def test_private_init(self): def test_private_init(self):
with self.assertRaisesRegex(TypeError, "public constructor"): with self.assertRaisesRegex(TypeError, "public constructor"):
with socket.socket() as s: with socket.socket() as s:

2
Modules/_blake2/blake2b_impl.c
View File

@ -409,6 +409,6 @@ static PyType_Slot blake2b_type_slots[] = {
PyType_Spec blake2b_type_spec = { PyType_Spec blake2b_type_spec = {
.name = "_blake2.blake2b", .name = "_blake2.blake2b",
.basicsize = sizeof(BLAKE2bObject), .basicsize = sizeof(BLAKE2bObject),
.flags = Py_TPFLAGS_DEFAULT, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_IMMUTABLETYPE,
.slots = blake2b_type_slots .slots = blake2b_type_slots
}; };

2
Modules/_blake2/blake2s_impl.c
View File

@ -408,6 +408,6 @@ static PyType_Slot blake2s_type_slots[] = {
PyType_Spec blake2s_type_spec = { PyType_Spec blake2s_type_spec = {
.name = "_blake2.blake2s", .name = "_blake2.blake2s",
.basicsize = sizeof(BLAKE2sObject), .basicsize = sizeof(BLAKE2sObject),
.flags = Py_TPFLAGS_DEFAULT, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_IMMUTABLETYPE,
.slots = blake2s_type_slots .slots = blake2s_type_slots
}; };

6
Modules/_hashopenssl.c
View File

@ -588,7 +588,7 @@ static PyType_Spec EVPtype_spec = {
"_hashlib.HASH", /*tp_name*/ "_hashlib.HASH", /*tp_name*/
sizeof(EVPobject), /*tp_basicsize*/ sizeof(EVPobject), /*tp_basicsize*/
0, /*tp_itemsize*/ 0, /*tp_itemsize*/
Py_TPFLAGS_DEFAULT | Py_TPFLAGS_BASETYPE | Py_TPFLAGS_DISALLOW_INSTANTIATION, Py_TPFLAGS_DEFAULT | Py_TPFLAGS_BASETYPE | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
EVPtype_slots EVPtype_slots
}; };
@ -737,7 +737,7 @@ static PyType_Spec EVPXOFtype_spec = {
"_hashlib.HASHXOF", /*tp_name*/ "_hashlib.HASHXOF", /*tp_name*/
sizeof(EVPobject), /*tp_basicsize*/ sizeof(EVPobject), /*tp_basicsize*/
0, /*tp_itemsize*/ 0, /*tp_itemsize*/
Py_TPFLAGS_DEFAULT | Py_TPFLAGS_BASETYPE | Py_TPFLAGS_DISALLOW_INSTANTIATION, Py_TPFLAGS_DEFAULT | Py_TPFLAGS_BASETYPE | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
EVPXOFtype_slots EVPXOFtype_slots
}; };
@ -1729,7 +1729,7 @@ static PyType_Slot HMACtype_slots[] = {
PyType_Spec HMACtype_spec = { PyType_Spec HMACtype_spec = {
"_hashlib.HMAC", /* name */ "_hashlib.HMAC", /* name */
sizeof(HMACobject), /* basicsize */ sizeof(HMACobject), /* basicsize */
.flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
.slots = HMACtype_slots, .slots = HMACtype_slots,
}; };

2
Modules/_sha3/sha3module.c
View File

@ -525,7 +525,7 @@ static PyGetSetDef SHA3_getseters[] = {
static PyType_Spec type_spec_obj = { \ static PyType_Spec type_spec_obj = { \
.name = "_sha3." type_name, \ .name = "_sha3." type_name, \
.basicsize = sizeof(SHA3object), \ .basicsize = sizeof(SHA3object), \
.flags = Py_TPFLAGS_DEFAULT, \ .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_IMMUTABLETYPE, \
.slots = type_slots \ .slots = type_slots \
} }

10
Modules/_ssl.c
View File

@ -437,7 +437,7 @@ static PyType_Spec sslerror_type_spec = {
"ssl.SSLError", "ssl.SSLError",
sizeof(PyOSErrorObject), sizeof(PyOSErrorObject),
0, 0,
Py_TPFLAGS_DEFAULT | Py_TPFLAGS_BASETYPE, Py_TPFLAGS_DEFAULT | Py_TPFLAGS_BASETYPE | Py_TPFLAGS_IMMUTABLETYPE,
sslerror_type_slots sslerror_type_slots
}; };
@ -2906,7 +2906,7 @@ static PyType_Spec PySSLSocket_spec = {
"_ssl._SSLSocket", "_ssl._SSLSocket",
sizeof(PySSLSocket), sizeof(PySSLSocket),
0, 0,
Py_TPFLAGS_DEFAULT, Py_TPFLAGS_DEFAULT | Py_TPFLAGS_IMMUTABLETYPE,
PySSLSocket_slots, PySSLSocket_slots,
}; };
@ -4644,7 +4644,7 @@ static PyType_Spec PySSLContext_spec = {
"_ssl._SSLContext", "_ssl._SSLContext",
sizeof(PySSLContext), sizeof(PySSLContext),
0, 0,
Py_TPFLAGS_DEFAULT | Py_TPFLAGS_BASETYPE | Py_TPFLAGS_HAVE_GC, Py_TPFLAGS_DEFAULT | Py_TPFLAGS_BASETYPE | Py_TPFLAGS_HAVE_GC | Py_TPFLAGS_IMMUTABLETYPE,
PySSLContext_slots, PySSLContext_slots,
}; };
@ -4850,7 +4850,7 @@ static PyType_Spec PySSLMemoryBIO_spec = {
"_ssl.MemoryBIO", "_ssl.MemoryBIO",
sizeof(PySSLMemoryBIO), sizeof(PySSLMemoryBIO),
0, 0,
Py_TPFLAGS_DEFAULT, Py_TPFLAGS_DEFAULT | Py_TPFLAGS_IMMUTABLETYPE,
PySSLMemoryBIO_slots, PySSLMemoryBIO_slots,
}; };
@ -5025,7 +5025,7 @@ static PyType_Spec PySSLSession_spec = {
"_ssl.SSLSession", "_ssl.SSLSession",
sizeof(PySSLSession), sizeof(PySSLSession),
0, 0,
Py_TPFLAGS_DEFAULT | Py_TPFLAGS_HAVE_GC, Py_TPFLAGS_DEFAULT | Py_TPFLAGS_HAVE_GC | Py_TPFLAGS_IMMUTABLETYPE,
PySSLSession_slots, PySSLSession_slots,
}; };

2
Modules/_ssl/cert.c
View File

@ -240,6 +240,6 @@ static PyType_Spec PySSLCertificate_spec = {
"_ssl.Certificate", "_ssl.Certificate",
sizeof(PySSLCertificate), sizeof(PySSLCertificate),
0, 0,
Py_TPFLAGS_DEFAULT, Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
PySSLCertificate_slots, PySSLCertificate_slots,
}; };

2
Modules/md5module.c
View File

@ -484,7 +484,7 @@ static PyType_Slot md5_type_slots[] = {
static PyType_Spec md5_type_spec = { static PyType_Spec md5_type_spec = {
.name = "_md5.md5", .name = "_md5.md5",
.basicsize = sizeof(MD5object), .basicsize = sizeof(MD5object),
.flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
.slots = md5_type_slots .slots = md5_type_slots
}; };

2
Modules/sha1module.c
View File

@ -462,7 +462,7 @@ static PyType_Slot sha1_type_slots[] = {
static PyType_Spec sha1_type_spec = { static PyType_Spec sha1_type_spec = {
.name = "_sha1.sha1", .name = "_sha1.sha1",
.basicsize = sizeof(SHA1object), .basicsize = sizeof(SHA1object),
.flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
.slots = sha1_type_slots .slots = sha1_type_slots
}; };

4
Modules/sha256module.c
View File

@ -544,14 +544,14 @@ static PyType_Slot sha256_types_slots[] = {
static PyType_Spec sha224_type_spec = { static PyType_Spec sha224_type_spec = {
.name = "_sha256.sha224", .name = "_sha256.sha224",
.basicsize = sizeof(SHAobject), .basicsize = sizeof(SHAobject),
.flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
.slots = sha256_types_slots .slots = sha256_types_slots
}; };
static PyType_Spec sha256_type_spec = { static PyType_Spec sha256_type_spec = {
.name = "_sha256.sha256", .name = "_sha256.sha256",
.basicsize = sizeof(SHAobject), .basicsize = sizeof(SHAobject),
.flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
.slots = sha256_types_slots .slots = sha256_types_slots
}; };

4
Modules/sha512module.c
View File

@ -602,7 +602,7 @@ static PyType_Slot sha512_sha384_type_slots[] = {
static PyType_Spec sha512_sha384_type_spec = { static PyType_Spec sha512_sha384_type_spec = {
.name = "_sha512.sha384", .name = "_sha512.sha384",
.basicsize = sizeof(SHAobject), .basicsize = sizeof(SHAobject),
.flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
.slots = sha512_sha384_type_slots .slots = sha512_sha384_type_slots
}; };
@ -619,7 +619,7 @@ static PyType_Slot sha512_sha512_type_slots[] = {
static PyType_Spec sha512_sha512_type_spec = { static PyType_Spec sha512_sha512_type_spec = {
.name = "_sha512.sha512", .name = "_sha512.sha512",
.basicsize = sizeof(SHAobject), .basicsize = sizeof(SHAobject),
.flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION, .flags = Py_TPFLAGS_DEFAULT | Py_TPFLAGS_DISALLOW_INSTANTIATION | Py_TPFLAGS_IMMUTABLETYPE,
.slots = sha512_sha512_type_slots .slots = sha512_sha512_type_slots
}; };