# This file is dual licensed under the terms of the Apache License, Version
# 2.0, and the BSD License. See the LICENSE file in the root of this repository
# for complete details.

from __future__ import absolute_import, division, print_function

INCLUDES = """
#ifndef OPENSSL_NO_EC
#include <openssl/ec.h>
#endif

#include <openssl/obj_mac.h>
"""

TYPES = """
static const int Cryptography_HAS_EC;
static const int Cryptography_HAS_EC_1_0_1;
static const int Cryptography_HAS_EC2M;
static const int Cryptography_HAS_EC_1_0_2;

static const int OPENSSL_EC_NAMED_CURVE;

typedef ... EC_KEY;
typedef ... EC_GROUP;
typedef ... EC_POINT;
typedef ... EC_METHOD;
typedef struct {
    int nid;
    const char *comment;
} EC_builtin_curve;
typedef enum {
    POINT_CONVERSION_COMPRESSED,
    POINT_CONVERSION_UNCOMPRESSED,
    POINT_CONVERSION_HYBRID,
    ...
} point_conversion_form_t;
"""

FUNCTIONS = """
"""

MACROS = """
EC_GROUP *EC_GROUP_new(const EC_METHOD *);
void EC_GROUP_free(EC_GROUP *);
void EC_GROUP_clear_free(EC_GROUP *);

EC_GROUP *EC_GROUP_new_curve_GFp(
    const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);
EC_GROUP *EC_GROUP_new_curve_GF2m(
    const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);
EC_GROUP *EC_GROUP_new_by_curve_name(int);

int EC_GROUP_set_curve_GFp(
    EC_GROUP *, const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);
int EC_GROUP_get_curve_GFp(
    const EC_GROUP *, BIGNUM *, BIGNUM *, BIGNUM *, BN_CTX *);
int EC_GROUP_set_curve_GF2m(
    EC_GROUP *, const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);
int EC_GROUP_get_curve_GF2m(
    const EC_GROUP *, BIGNUM *, BIGNUM *, BIGNUM *, BN_CTX *);

int EC_GROUP_get_degree(const EC_GROUP *);
void EC_GROUP_set_asn1_flag(EC_GROUP *, int);
void EC_GROUP_set_point_conversion_form(EC_GROUP *, point_conversion_form_t);

const EC_METHOD *EC_GROUP_method_of(const EC_GROUP *);
const EC_POINT *EC_GROUP_get0_generator(const EC_GROUP *);
int EC_GROUP_get_curve_name(const EC_GROUP *);

size_t EC_get_builtin_curves(EC_builtin_curve *, size_t);

EC_KEY *EC_KEY_new(void);
void EC_KEY_free(EC_KEY *);

int EC_KEY_get_flags(const EC_KEY *);
void EC_KEY_set_flags(EC_KEY *, int);
void EC_KEY_clear_flags(EC_KEY *, int);
EC_KEY *EC_KEY_new_by_curve_name(int);
EC_KEY *EC_KEY_copy(EC_KEY *, EC_KEY *);
EC_KEY *EC_KEY_dup(EC_KEY *);
int EC_KEY_up_ref(EC_KEY *);
const EC_GROUP *EC_KEY_get0_group(const EC_KEY *);
int EC_GROUP_get_order(const EC_GROUP *, BIGNUM *, BN_CTX *);
int EC_KEY_set_group(EC_KEY *, const EC_GROUP *);
const BIGNUM *EC_KEY_get0_private_key(const EC_KEY *);
int EC_KEY_set_private_key(EC_KEY *, const BIGNUM *);
const EC_POINT *EC_KEY_get0_public_key(const EC_KEY *);
int EC_KEY_set_public_key(EC_KEY *, const EC_POINT *);
unsigned int EC_KEY_get_enc_flags(const EC_KEY *);
void EC_KEY_set_enc_flags(EC_KEY *eckey, unsigned int);
point_conversion_form_t EC_KEY_get_conv_form(const EC_KEY *);
void EC_KEY_set_conv_form(EC_KEY *, point_conversion_form_t);
void EC_KEY_set_asn1_flag(EC_KEY *, int);
int EC_KEY_precompute_mult(EC_KEY *, BN_CTX *);
int EC_KEY_generate_key(EC_KEY *);
int EC_KEY_check_key(const EC_KEY *);
int EC_KEY_set_public_key_affine_coordinates(EC_KEY *, BIGNUM *, BIGNUM *);

EC_POINT *EC_POINT_new(const EC_GROUP *);
void EC_POINT_free(EC_POINT *);
void EC_POINT_clear_free(EC_POINT *);
int EC_POINT_copy(EC_POINT *, const EC_POINT *);
EC_POINT *EC_POINT_dup(const EC_POINT *, const EC_GROUP *);
const EC_METHOD *EC_POINT_method_of(const EC_POINT *);

int EC_POINT_set_to_infinity(const EC_GROUP *, EC_POINT *);

int EC_POINT_set_Jprojective_coordinates_GFp(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);

int EC_POINT_get_Jprojective_coordinates_GFp(const EC_GROUP *,
    const EC_POINT *, BIGNUM *, BIGNUM *, BIGNUM *, BN_CTX *);

int EC_POINT_set_affine_coordinates_GFp(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, const BIGNUM *, BN_CTX *);

int EC_POINT_get_affine_coordinates_GFp(const EC_GROUP *,
    const EC_POINT *, BIGNUM *, BIGNUM *, BN_CTX *);

int EC_POINT_set_compressed_coordinates_GFp(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, int, BN_CTX *);

int EC_POINT_set_affine_coordinates_GF2m(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, const BIGNUM *, BN_CTX *);

int EC_POINT_get_affine_coordinates_GF2m(const EC_GROUP *,
    const EC_POINT *, BIGNUM *, BIGNUM *, BN_CTX *);

int EC_POINT_set_compressed_coordinates_GF2m(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, int, BN_CTX *);

size_t EC_POINT_point2oct(const EC_GROUP *, const EC_POINT *,
    point_conversion_form_t,
    unsigned char *, size_t, BN_CTX *);

int EC_POINT_oct2point(const EC_GROUP *, EC_POINT *,
    const unsigned char *, size_t, BN_CTX *);

BIGNUM *EC_POINT_point2bn(const EC_GROUP *, const EC_POINT *,
    point_conversion_form_t form, BIGNUM *, BN_CTX *);

EC_POINT *EC_POINT_bn2point(const EC_GROUP *, const BIGNUM *,
    EC_POINT *, BN_CTX *);

char *EC_POINT_point2hex(const EC_GROUP *, const EC_POINT *,
    point_conversion_form_t form, BN_CTX *);

EC_POINT *EC_POINT_hex2point(const EC_GROUP *, const char *,
    EC_POINT *, BN_CTX *);

int EC_POINT_add(const EC_GROUP *, EC_POINT *, const EC_POINT *,
    const EC_POINT *, BN_CTX *);

int EC_POINT_dbl(const EC_GROUP *, EC_POINT *, const EC_POINT *, BN_CTX *);
int EC_POINT_invert(const EC_GROUP *, EC_POINT *, BN_CTX *);
int EC_POINT_is_at_infinity(const EC_GROUP *, const EC_POINT *);
int EC_POINT_is_on_curve(const EC_GROUP *, const EC_POINT *, BN_CTX *);

int EC_POINT_cmp(
    const EC_GROUP *, const EC_POINT *, const EC_POINT *, BN_CTX *);

int EC_POINT_make_affine(const EC_GROUP *, EC_POINT *, BN_CTX *);
int EC_POINTs_make_affine(const EC_GROUP *, size_t, EC_POINT *[], BN_CTX *);

int EC_POINTs_mul(
    const EC_GROUP *, EC_POINT *, const BIGNUM *,
    size_t, const EC_POINT *[], const BIGNUM *[], BN_CTX *);

int EC_POINT_mul(const EC_GROUP *, EC_POINT *, const BIGNUM *,
    const EC_POINT *, const BIGNUM *, BN_CTX *);

int EC_GROUP_precompute_mult(EC_GROUP *, BN_CTX *);
int EC_GROUP_have_precompute_mult(const EC_GROUP *);

const EC_METHOD *EC_GFp_simple_method();
const EC_METHOD *EC_GFp_mont_method();
const EC_METHOD *EC_GFp_nist_method();

const EC_METHOD *EC_GF2m_simple_method();

int EC_METHOD_get_field_type(const EC_METHOD *);

const char *EC_curve_nid2nist(int);
"""

CUSTOMIZATIONS = """
#ifdef OPENSSL_NO_EC
static const long Cryptography_HAS_EC = 0;

typedef void EC_KEY;
typedef void EC_GROUP;
typedef void EC_POINT;
typedef void EC_METHOD;
typedef struct {
    int nid;
    const char *comment;
} EC_builtin_curve;
typedef enum {
    POINT_CONVERSION_COMPRESSED,
    POINT_CONVERSION_UNCOMPRESSED,
    POINT_CONVERSION_HYBRID,
} point_conversion_form_t;

static const int OPENSSL_EC_NAMED_CURVE = 0;

void (*EC_KEY_free)(EC_KEY *) = NULL;
EC_KEY *(*EC_KEY_new)(void) = NULL;
size_t (*EC_get_builtin_curves)(EC_builtin_curve *, size_t) = NULL;
EC_KEY *(*EC_KEY_new_by_curve_name)(int) = NULL;
EC_KEY *(*EC_KEY_copy)(EC_KEY *, const EC_KEY *) = NULL;
EC_KEY *(*EC_KEY_dup)(const EC_KEY *) = NULL;
int (*EC_KEY_up_ref)(EC_KEY *) = NULL;
const EC_GROUP *(*EC_KEY_get0_group)(const EC_KEY *) = NULL;
int (*EC_GROUP_get_order)(const EC_GROUP *, BIGNUM *, BN_CTX *) = NULL;
int (*EC_KEY_set_group)(EC_KEY *, const EC_GROUP *) = NULL;
void (*EC_GROUP_set_asn1_flag)(EC_GROUP *, int) = NULL;
void (*EC_GROUP_set_point_conversion_form)(EC_GROUP *,
                                           point_conversion_form_t) = NULL;
const BIGNUM *(*EC_KEY_get0_private_key)(const EC_KEY *) = NULL;
int (*EC_KEY_set_private_key)(EC_KEY *, const BIGNUM *) = NULL;
const EC_POINT *(*EC_KEY_get0_public_key)(const EC_KEY *) = NULL;
int (*EC_KEY_set_public_key)(EC_KEY *, const EC_POINT *) = NULL;
unsigned int (*EC_KEY_get_enc_flags)(const EC_KEY *) = NULL;
void (*EC_KEY_set_enc_flags)(EC_KEY *eckey, unsigned int) = NULL;
point_conversion_form_t (*EC_KEY_get_conv_form)(const EC_KEY *) = NULL;
void (*EC_KEY_set_conv_form)(EC_KEY *, point_conversion_form_t) = NULL;
void (*EC_KEY_set_asn1_flag)(EC_KEY *, int) = NULL;
int (*EC_KEY_precompute_mult)(EC_KEY *, BN_CTX *) = NULL;
int (*EC_KEY_generate_key)(EC_KEY *) = NULL;
int (*EC_KEY_check_key)(const EC_KEY *) = NULL;

EC_GROUP *(*EC_GROUP_new)(const EC_METHOD *);
void (*EC_GROUP_free)(EC_GROUP *);
void (*EC_GROUP_clear_free)(EC_GROUP *);

EC_GROUP *(*EC_GROUP_new_curve_GFp)(
    const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);

EC_GROUP *(*EC_GROUP_new_by_curve_name)(int);

int (*EC_GROUP_set_curve_GFp)(
    EC_GROUP *, const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);

int (*EC_GROUP_get_curve_GFp)(
    const EC_GROUP *, BIGNUM *, BIGNUM *, BIGNUM *, BN_CTX *);

int (*EC_GROUP_get_degree)(const EC_GROUP *) = NULL;

const EC_METHOD *(*EC_GROUP_method_of)(const EC_GROUP *) = NULL;
const EC_POINT *(*EC_GROUP_get0_generator)(const EC_GROUP *) = NULL;
int (*EC_GROUP_get_curve_name)(const EC_GROUP *) = NULL;

EC_POINT *(*EC_POINT_new)(const EC_GROUP *) = NULL;
void (*EC_POINT_free)(EC_POINT *) = NULL;
void (*EC_POINT_clear_free)(EC_POINT *) = NULL;
int (*EC_POINT_copy)(EC_POINT *, const EC_POINT *) = NULL;
EC_POINT *(*EC_POINT_dup)(const EC_POINT *, const EC_GROUP *) = NULL;
const EC_METHOD *(*EC_POINT_method_of)(const EC_POINT *) = NULL;
int (*EC_POINT_set_to_infinity)(const EC_GROUP *, EC_POINT *) = NULL;
int (*EC_POINT_set_Jprojective_coordinates_GFp)(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *) = NULL;

int (*EC_POINT_get_Jprojective_coordinates_GFp)(const EC_GROUP *,
    const EC_POINT *, BIGNUM *, BIGNUM *, BIGNUM *, BN_CTX *) = NULL;

int (*EC_POINT_set_affine_coordinates_GFp)(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, const BIGNUM *, BN_CTX *) = NULL;

int (*EC_POINT_get_affine_coordinates_GFp)(const EC_GROUP *,
    const EC_POINT *, BIGNUM *, BIGNUM *, BN_CTX *) = NULL;

int (*EC_POINT_set_compressed_coordinates_GFp)(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, int, BN_CTX *) = NULL;

size_t (*EC_POINT_point2oct)(const EC_GROUP *, const EC_POINT *,
    point_conversion_form_t,
    unsigned char *, size_t, BN_CTX *) = NULL;

int (*EC_POINT_oct2point)(const EC_GROUP *, EC_POINT *,
    const unsigned char *, size_t, BN_CTX *) = NULL;

BIGNUM *(*EC_POINT_point2bn)(const EC_GROUP *, const EC_POINT *,
    point_conversion_form_t form, BIGNUM *, BN_CTX *) = NULL;

EC_POINT *(*EC_POINT_bn2point)(const EC_GROUP *, const BIGNUM *,
    EC_POINT *, BN_CTX *) = NULL;

char *(*EC_POINT_point2hex)(const EC_GROUP *, const EC_POINT *,
    point_conversion_form_t form, BN_CTX *) = NULL;

EC_POINT *(*EC_POINT_hex2point)(const EC_GROUP *, const char *,
    EC_POINT *, BN_CTX *) = NULL;

int (*EC_POINT_add)(const EC_GROUP *, EC_POINT *, const EC_POINT *,
    const EC_POINT *, BN_CTX *) = NULL;

int (*EC_POINT_dbl)(const EC_GROUP *, EC_POINT *, const EC_POINT *,
    BN_CTX *) = NULL;

int (*EC_POINT_invert)(const EC_GROUP *, EC_POINT *, BN_CTX *) = NULL;
int (*EC_POINT_is_at_infinity)(const EC_GROUP *, const EC_POINT *) = NULL;

int (*EC_POINT_is_on_curve)(const EC_GROUP *, const EC_POINT *,
    BN_CTX *) = NULL;

int (*EC_POINT_cmp)(
    const EC_GROUP *, const EC_POINT *, const EC_POINT *, BN_CTX *) = NULL;

int (*EC_POINT_make_affine)(const EC_GROUP *, EC_POINT *, BN_CTX *) = NULL;

int (*EC_POINTs_make_affine)(const EC_GROUP *, size_t, EC_POINT *[],
    BN_CTX *) = NULL;

int (*EC_POINTs_mul)(
    const EC_GROUP *, EC_POINT *, const BIGNUM *,
    size_t, const EC_POINT *[], const BIGNUM *[], BN_CTX *) = NULL;

int (*EC_POINT_mul)(const EC_GROUP *, EC_POINT *, const BIGNUM *,
    const EC_POINT *, const BIGNUM *, BN_CTX *) = NULL;

int (*EC_GROUP_precompute_mult)(EC_GROUP *, BN_CTX *) = NULL;
int (*EC_GROUP_have_precompute_mult)(const EC_GROUP *) = NULL;

const EC_METHOD *(*EC_GFp_simple_method)() = NULL;
const EC_METHOD *(*EC_GFp_mont_method)() = NULL;
const EC_METHOD *(*EC_GFp_nist_method)() = NULL;

int (*EC_METHOD_get_field_type)(const EC_METHOD *) = NULL;

#else
static const long Cryptography_HAS_EC = 1;
#endif

#if defined(OPENSSL_NO_EC) || OPENSSL_VERSION_NUMBER < 0x1000100f
static const long Cryptography_HAS_EC_1_0_1 = 0;

int (*EC_KEY_get_flags)(const EC_KEY *) = NULL;
void (*EC_KEY_set_flags)(EC_KEY *, int) = NULL;
void (*EC_KEY_clear_flags)(EC_KEY *, int) = NULL;

int (*EC_KEY_set_public_key_affine_coordinates)(
    EC_KEY *, BIGNUM *, BIGNUM *) = NULL;
#else
static const long Cryptography_HAS_EC_1_0_1 = 1;
#endif


#if defined(OPENSSL_NO_EC) || defined(OPENSSL_NO_EC2M)
static const long Cryptography_HAS_EC2M = 0;

const EC_METHOD *(*EC_GF2m_simple_method)() = NULL;

int (*EC_POINT_set_affine_coordinates_GF2m)(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, const BIGNUM *, BN_CTX *) = NULL;

int (*EC_POINT_get_affine_coordinates_GF2m)(const EC_GROUP *,
    const EC_POINT *, BIGNUM *, BIGNUM *, BN_CTX *) = NULL;

int (*EC_POINT_set_compressed_coordinates_GF2m)(const EC_GROUP *, EC_POINT *,
    const BIGNUM *, int, BN_CTX *) = NULL;

int (*EC_GROUP_set_curve_GF2m)(
    EC_GROUP *, const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);

int (*EC_GROUP_get_curve_GF2m)(
    const EC_GROUP *, BIGNUM *, BIGNUM *, BIGNUM *, BN_CTX *);

EC_GROUP *(*EC_GROUP_new_curve_GF2m)(
    const BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *);
#else
static const long Cryptography_HAS_EC2M = 1;
#endif

#if defined(OPENSSL_NO_EC) || OPENSSL_VERSION_NUMBER < 0x1000200f || \
    defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20020002L
static const long Cryptography_HAS_EC_1_0_2 = 0;
const char *(*EC_curve_nid2nist)(int) = NULL;
#else
static const long Cryptography_HAS_EC_1_0_2 = 1;
#endif
"""
>307</a>
<a id='n308' href='#n308'>308</a>
<a id='n309' href='#n309'>309</a>
<a id='n310' href='#n310'>310</a>
<a id='n311' href='#n311'>311</a>
<a id='n312' href='#n312'>312</a>
<a id='n313' href='#n313'>313</a>
<a id='n314' href='#n314'>314</a>
<a id='n315' href='#n315'>315</a>
<a id='n316' href='#n316'>316</a>
<a id='n317' href='#n317'>317</a>
<a id='n318' href='#n318'>318</a>
<a id='n319' href='#n319'>319</a>
<a id='n320' href='#n320'>320</a>
<a id='n321' href='#n321'>321</a>
<a id='n322' href='#n322'>322</a>
<a id='n323' href='#n323'>323</a>
<a id='n324' href='#n324'>324</a>
<a id='n325' href='#n325'>325</a>
<a id='n326' href='#n326'>326</a>
<a id='n327' href='#n327'>327</a>
<a id='n328' href='#n328'>328</a>
<a id='n329' href='#n329'>329</a>
<a id='n330' href='#n330'>330</a>
<a id='n331' href='#n331'>331</a>
<a id='n332' href='#n332'>332</a>
<a id='n333' href='#n333'>333</a>
<a id='n334' href='#n334'>334</a>
<a id='n335' href='#n335'>335</a>
<a id='n336' href='#n336'>336</a>
<a id='n337' href='#n337'>337</a>
<a id='n338' href='#n338'>338</a>
<a id='n339' href='#n339'>339</a>
<a id='n340' href='#n340'>340</a>
<a id='n341' href='#n341'>341</a>
<a id='n342' href='#n342'>342</a>
<a id='n343' href='#n343'>343</a>
<a id='n344' href='#n344'>344</a>
<a id='n345' href='#n345'>345</a>
<a id='n346' href='#n346'>346</a>
<a id='n347' href='#n347'>347</a>
<a id='n348' href='#n348'>348</a>
<a id='n349' href='#n349'>349</a>
<a id='n350' href='#n350'>350</a>
<a id='n351' href='#n351'>351</a>
<a id='n352' href='#n352'>352</a>
<a id='n353' href='#n353'>353</a>
<a id='n354' href='#n354'>354</a>
<a id='n355' href='#n355'>355</a>
<a id='n356' href='#n356'>356</a>
<a id='n357' href='#n357'>357</a>
<a id='n358' href='#n358'>358</a>
<a id='n359' href='#n359'>359</a>
<a id='n360' href='#n360'>360</a>
<a id='n361' href='#n361'>361</a>
<a id='n362' href='#n362'>362</a>
<a id='n363' href='#n363'>363</a>
<a id='n364' href='#n364'>364</a>
<a id='n365' href='#n365'>365</a>
<a id='n366' href='#n366'>366</a>
<a id='n367' href='#n367'>367</a>
<a id='n368' href='#n368'>368</a>
<a id='n369' href='#n369'>369</a>
<a id='n370' href='#n370'>370</a>
<a id='n371' href='#n371'>371</a>
<a id='n372' href='#n372'>372</a>
<a id='n373' href='#n373'>373</a>
<a id='n374' href='#n374'>374</a>
<a id='n375' href='#n375'>375</a>
<a id='n376' href='#n376'>376</a>
<a id='n377' href='#n377'>377</a>
<a id='n378' href='#n378'>378</a>
<a id='n379' href='#n379'>379</a>
<a id='n380' href='#n380'>380</a>
<a id='n381' href='#n381'>381</a>
<a id='n382' href='#n382'>382</a>
<a id='n383' href='#n383'>383</a>
<a id='n384' href='#n384'>384</a>
<a id='n385' href='#n385'>385</a>
<a id='n386' href='#n386'>386</a>
<a id='n387' href='#n387'>387</a>
<a id='n388' href='#n388'>388</a>
<a id='n389' href='#n389'>389</a>
<a id='n390' href='#n390'>390</a>
<a id='n391' href='#n391'>391</a>
<a id='n392' href='#n392'>392</a>
<a id='n393' href='#n393'>393</a>
<a id='n394' href='#n394'>394</a>
<a id='n395' href='#n395'>395</a>
<a id='n396' href='#n396'>396</a>
<a id='n397' href='#n397'>397</a>
<a id='n398' href='#n398'>398</a>
<a id='n399' href='#n399'>399</a>
<a id='n400' href='#n400'>400</a>
<a id='n401' href='#n401'>401</a>
<a id='n402' href='#n402'>402</a>
<a id='n403' href='#n403'>403</a>
<a id='n404' href='#n404'>404</a>
<a id='n405' href='#n405'>405</a>
<a id='n406' href='#n406'>406</a>
<a id='n407' href='#n407'>407</a>
<a id='n408' href='#n408'>408</a>
<a id='n409' href='#n409'>409</a>
<a id='n410' href='#n410'>410</a>
<a id='n411' href='#n411'>411</a>
<a id='n412' href='#n412'>412</a>
<a id='n413' href='#n413'>413</a>
<a id='n414' href='#n414'>414</a>
<a id='n415' href='#n415'>415</a>
<a id='n416' href='#n416'>416</a>
<a id='n417' href='#n417'>417</a>
<a id='n418' href='#n418'>418</a>
<a id='n419' href='#n419'>419</a>
<a id='n420' href='#n420'>420</a>
<a id='n421' href='#n421'>421</a>
<a id='n422' href='#n422'>422</a>
<a id='n423' href='#n423'>423</a>
<a id='n424' href='#n424'>424</a>
<a id='n425' href='#n425'>425</a>
<a id='n426' href='#n426'>426</a>
<a id='n427' href='#n427'>427</a>
<a id='n428' href='#n428'>428</a>
<a id='n429' href='#n429'>429</a>
<a id='n430' href='#n430'>430</a>
<a id='n431' href='#n431'>431</a>
<a id='n432' href='#n432'>432</a>
<a id='n433' href='#n433'>433</a>
<a id='n434' href='#n434'>434</a>
<a id='n435' href='#n435'>435</a>
<a id='n436' href='#n436'>436</a>
<a id='n437' href='#n437'>437</a>
<a id='n438' href='#n438'>438</a>
<a id='n439' href='#n439'>439</a>
<a id='n440' href='#n440'>440</a>
<a id='n441' href='#n441'>441</a>
<a id='n442' href='#n442'>442</a>
<a id='n443' href='#n443'>443</a>
<a id='n444' href='#n444'>444</a>
<a id='n445' href='#n445'>445</a>
<a id='n446' href='#n446'>446</a>
<a id='n447' href='#n447'>447</a>
<a id='n448' href='#n448'>448</a>
<a id='n449' href='#n449'>449</a>
<a id='n450' href='#n450'>450</a>
<a id='n451' href='#n451'>451</a>
<a id='n452' href='#n452'>452</a>
<a id='n453' href='#n453'>453</a>
<a id='n454' href='#n454'>454</a>
<a id='n455' href='#n455'>455</a>
<a id='n456' href='#n456'>456</a>
<a id='n457' href='#n457'>457</a>
<a id='n458' href='#n458'>458</a>
<a id='n459' href='#n459'>459</a>
<a id='n460' href='#n460'>460</a>
<a id='n461' href='#n461'>461</a>
<a id='n462' href='#n462'>462</a>
<a id='n463' href='#n463'>463</a>
<a id='n464' href='#n464'>464</a>
<a id='n465' href='#n465'>465</a>
<a id='n466' href='#n466'>466</a>
<a id='n467' href='#n467'>467</a>
<a id='n468' href='#n468'>468</a>
<a id='n469' href='#n469'>469</a>
<a id='n470' href='#n470'>470</a>
<a id='n471' href='#n471'>471</a>
<a id='n472' href='#n472'>472</a>
<a id='n473' href='#n473'>473</a>
<a id='n474' href='#n474'>474</a>
<a id='n475' href='#n475'>475</a>
<a id='n476' href='#n476'>476</a>
<a id='n477' href='#n477'>477</a>
<a id='n478' href='#n478'>478</a>
<a id='n479' href='#n479'>479</a>
<a id='n480' href='#n480'>480</a>
<a id='n481' href='#n481'>481</a>
<a id='n482' href='#n482'>482</a>
<a id='n483' href='#n483'>483</a>
<a id='n484' href='#n484'>484</a>
<a id='n485' href='#n485'>485</a>
<a id='n486' href='#n486'>486</a>
<a id='n487' href='#n487'>487</a>
<a id='n488' href='#n488'>488</a>
<a id='n489' href='#n489'>489</a>
<a id='n490' href='#n490'>490</a>
<a id='n491' href='#n491'>491</a>
<a id='n492' href='#n492'>492</a>
<a id='n493' href='#n493'>493</a>
<a id='n494' href='#n494'>494</a>
<a id='n495' href='#n495'>495</a>
<a id='n496' href='#n496'>496</a>
<a id='n497' href='#n497'>497</a>
<a id='n498' href='#n498'>498</a>
<a id='n499' href='#n499'>499</a>
<a id='n500' href='#n500'>500</a>
<a id='n501' href='#n501'>501</a>
<a id='n502' href='#n502'>502</a>
<a id='n503' href='#n503'>503</a>
<a id='n504' href='#n504'>504</a>
<a id='n505' href='#n505'>505</a>
<a id='n506' href='#n506'>506</a>
<a id='n507' href='#n507'>507</a>
<a id='n508' href='#n508'>508</a>
<a id='n509' href='#n509'>509</a>
<a id='n510' href='#n510'>510</a>
<a id='n511' href='#n511'>511</a>
<a id='n512' href='#n512'>512</a>
<a id='n513' href='#n513'>513</a>
<a id='n514' href='#n514'>514</a>
<a id='n515' href='#n515'>515</a>
<a id='n516' href='#n516'>516</a>
<a id='n517' href='#n517'>517</a>
<a id='n518' href='#n518'>518</a>
</pre></td>
<td class='lines'><pre><code><style>pre { line-height: 125%; margin: 0; }
td.linenos pre { color: #000000; background-color: #f0f0f0; padding: 0 5px 0 5px; }
span.linenos { color: #000000; background-color: #f0f0f0; padding: 0 5px 0 5px; }
td.linenos pre.special { color: #000000; background-color: #ffffc0; padding: 0 5px 0 5px; }
span.linenos.special { color: #000000; background-color: #ffffc0; padding: 0 5px 0 5px; }
.highlight .hll { background-color: #ffffcc }
.highlight { background: #ffffff; }
.highlight .c { color: #888888 } /* Comment */
.highlight .err { color: #a61717; background-color: #e3d2d2 } /* Error */
.highlight .k { color: #008800; font-weight: bold } /* Keyword */
.highlight .ch { color: #888888 } /* Comment.Hashbang */
.highlight .cm { color: #888888 } /* Comment.Multiline */
.highlight .cp { color: #cc0000; font-weight: bold } /* Comment.Preproc */
.highlight .cpf { color: #888888 } /* Comment.PreprocFile */
.highlight .c1 { color: #888888 } /* Comment.Single */
.highlight .cs { color: #cc0000; font-weight: bold; background-color: #fff0f0 } /* Comment.Special */
.highlight .gd { color: #000000; background-color: #ffdddd } /* Generic.Deleted */
.highlight .ge { font-style: italic } /* Generic.Emph */
.highlight .gr { color: #aa0000 } /* Generic.Error */
.highlight .gh { color: #333333 } /* Generic.Heading */
.highlight .gi { color: #000000; background-color: #ddffdd } /* Generic.Inserted */
.highlight .go { color: #888888 } /* Generic.Output */
.highlight .gp { color: #555555 } /* Generic.Prompt */
.highlight .gs { font-weight: bold } /* Generic.Strong */
.highlight .gu { color: #666666 } /* Generic.Subheading */
.highlight .gt { color: #aa0000 } /* Generic.Traceback */
.highlight .kc { color: #008800; font-weight: bold } /* Keyword.Constant */
.highlight .kd { color: #008800; font-weight: bold } /* Keyword.Declaration */
.highlight .kn { color: #008800; font-weight: bold } /* Keyword.Namespace */
.highlight .kp { color: #008800 } /* Keyword.Pseudo */
.highlight .kr { color: #008800; font-weight: bold } /* Keyword.Reserved */
.highlight .kt { color: #888888; font-weight: bold } /* Keyword.Type */
.highlight .m { color: #0000DD; font-weight: bold } /* Literal.Number */
.highlight .s { color: #dd2200; background-color: #fff0f0 } /* Literal.String */
.highlight .na { color: #336699 } /* Name.Attribute */
.highlight .nb { color: #003388 } /* Name.Builtin */
.highlight .nc { color: #bb0066; font-weight: bold } /* Name.Class */
.highlight .no { color: #003366; font-weight: bold } /* Name.Constant */
.highlight .nd { color: #555555 } /* Name.Decorator */
.highlight .ne { color: #bb0066; font-weight: bold } /* Name.Exception */
.highlight .nf { color: #0066bb; font-weight: bold } /* Name.Function */
.highlight .nl { color: #336699; font-style: italic } /* Name.Label */
.highlight .nn { color: #bb0066; font-weight: bold } /* Name.Namespace */
.highlight .py { color: #336699; font-weight: bold } /* Name.Property */
.highlight .nt { color: #bb0066; font-weight: bold } /* Name.Tag */
.highlight .nv { color: #336699 } /* Name.Variable */
.highlight .ow { color: #008800 } /* Operator.Word */
.highlight .w { color: #bbbbbb } /* Text.Whitespace */
.highlight .mb { color: #0000DD; font-weight: bold } /* Literal.Number.Bin */
.highlight .mf { color: #0000DD; font-weight: bold } /* Literal.Number.Float */
.highlight .mh { color: #0000DD; font-weight: bold } /* Literal.Number.Hex */
.highlight .mi { color: #0000DD; font-weight: bold } /* Literal.Number.Integer */
.highlight .mo { color: #0000DD; font-weight: bold } /* Literal.Number.Oct */
.highlight .sa { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Affix */
.highlight .sb { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Backtick */
.highlight .sc { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Char */
.highlight .dl { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Delimiter */
.highlight .sd { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Doc */
.highlight .s2 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Double */
.highlight .se { color: #0044dd; background-color: #fff0f0 } /* Literal.String.Escape */
.highlight .sh { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Heredoc */
.highlight .si { color: #3333bb; background-color: #fff0f0 } /* Literal.String.Interpol */
.highlight .sx { color: #22bb22; background-color: #f0fff0 } /* Literal.String.Other */
.highlight .sr { color: #008800; background-color: #fff0ff } /* Literal.String.Regex */
.highlight .s1 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Single */
.highlight .ss { color: #aa6600; background-color: #fff0f0 } /* Literal.String.Symbol */
.highlight .bp { color: #003388 } /* Name.Builtin.Pseudo */
.highlight .fm { color: #0066bb; font-weight: bold } /* Name.Function.Magic */
.highlight .vc { color: #336699 } /* Name.Variable.Class */
.highlight .vg { color: #dd7700 } /* Name.Variable.Global */
.highlight .vi { color: #3333bb } /* Name.Variable.Instance */
.highlight .vm { color: #336699 } /* Name.Variable.Magic */
.highlight .il { color: #0000DD; font-weight: bold } /* Literal.Number.Integer.Long */</style><div class="highlight"><pre><span></span><span class="c1"># This file is dual licensed under the terms of the Apache License, Version</span>
<span class="c1"># 2.0, and the BSD License. See the LICENSE file in the root of this repository</span>
<span class="c1"># for complete details.</span>

<span class="kn">from</span> <span class="nn">__future__</span> <span class="kn">import</span> <span class="n">absolute_import</span><span class="p">,</span> <span class="n">division</span><span class="p">,</span> <span class="n">print_function</span>

<span class="kn">import</span> <span class="nn">os</span>
<span class="kn">import</span> <span class="nn">subprocess</span>
<span class="kn">import</span> <span class="nn">sys</span>
<span class="kn">import</span> <span class="nn">textwrap</span>

<span class="kn">import</span> <span class="nn">pretend</span>

<span class="kn">import</span> <span class="nn">pytest</span>

<span class="kn">from</span> <span class="nn">cryptography</span> <span class="kn">import</span> <span class="n">utils</span>
<span class="kn">from</span> <span class="nn">cryptography.exceptions</span> <span class="kn">import</span> <span class="n">InternalError</span><span class="p">,</span> <span class="n">_Reasons</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.backends.interfaces</span> <span class="kn">import</span> <span class="n">RSABackend</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.backends.openssl.backend</span> <span class="kn">import</span> <span class="p">(</span>
    <span class="n">Backend</span><span class="p">,</span> <span class="n">backend</span>
<span class="p">)</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.backends.openssl.ec</span> <span class="kn">import</span> <span class="n">_sn_to_elliptic_curve</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.primitives</span> <span class="kn">import</span> <span class="n">hashes</span><span class="p">,</span> <span class="n">serialization</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.primitives.asymmetric</span> <span class="kn">import</span> <span class="n">dsa</span><span class="p">,</span> <span class="n">padding</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.primitives.ciphers</span> <span class="kn">import</span> <span class="p">(</span>
    <span class="n">BlockCipherAlgorithm</span><span class="p">,</span> <span class="n">Cipher</span><span class="p">,</span> <span class="n">CipherAlgorithm</span>
<span class="p">)</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.primitives.ciphers.algorithms</span> <span class="kn">import</span> <span class="n">AES</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.primitives.ciphers.modes</span> <span class="kn">import</span> <span class="n">CBC</span><span class="p">,</span> <span class="n">CTR</span><span class="p">,</span> <span class="n">Mode</span>

<span class="kn">from</span> <span class="nn">..primitives.fixtures_rsa</span> <span class="kn">import</span> <span class="n">RSA_KEY_2048</span><span class="p">,</span> <span class="n">RSA_KEY_512</span>
<span class="kn">from</span> <span class="nn">...utils</span> <span class="kn">import</span> <span class="n">load_vectors_from_file</span><span class="p">,</span> <span class="n">raises_unsupported_algorithm</span>


<span class="nd">@utils</span><span class="o">.</span><span class="n">register_interface</span><span class="p">(</span><span class="n">Mode</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">DummyMode</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">name</span> <span class="o">=</span> <span class="s2">&quot;dummy-mode&quot;</span>

    <span class="k">def</span> <span class="nf">validate_for_algorithm</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">algorithm</span><span class="p">):</span>
        <span class="k">pass</span>


<span class="nd">@utils</span><span class="o">.</span><span class="n">register_interface</span><span class="p">(</span><span class="n">CipherAlgorithm</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">DummyCipher</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">name</span> <span class="o">=</span> <span class="s2">&quot;dummy-cipher&quot;</span>
    <span class="n">key_size</span> <span class="o">=</span> <span class="kc">None</span>


<span class="nd">@utils</span><span class="o">.</span><span class="n">register_interface</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">AsymmetricPadding</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">DummyPadding</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">name</span> <span class="o">=</span> <span class="s2">&quot;dummy-cipher&quot;</span>


<span class="nd">@utils</span><span class="o">.</span><span class="n">register_interface</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">HashAlgorithm</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">DummyHash</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">name</span> <span class="o">=</span> <span class="s2">&quot;dummy-hash&quot;</span>
    <span class="n">block_size</span> <span class="o">=</span> <span class="kc">None</span>
    <span class="n">digest_size</span> <span class="o">=</span> <span class="kc">None</span>


<span class="k">class</span> <span class="nc">DummyMGF</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">_salt_length</span> <span class="o">=</span> <span class="mi">0</span>


<span class="k">class</span> <span class="nc">TestOpenSSL</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_backend_exists</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span>

    <span class="k">def</span> <span class="nf">test_openssl_version_text</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="sd">&quot;&quot;&quot;</span>
<span class="sd">        This test checks the value of OPENSSL_VERSION_TEXT.</span>

<span class="sd">        Unfortunately, this define does not appear to have a</span>
<span class="sd">        formal content definition, so for now we&#39;ll test to see</span>
<span class="sd">        if it starts with OpenSSL or LibreSSL as that appears</span>
<span class="sd">        to be true for every OpenSSL-alike.</span>
<span class="sd">        &quot;&quot;&quot;</span>
        <span class="k">assert</span> <span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">openssl_version_text</span><span class="p">()</span><span class="o">.</span><span class="n">startswith</span><span class="p">(</span><span class="s2">&quot;OpenSSL&quot;</span><span class="p">)</span> <span class="ow">or</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">openssl_version_text</span><span class="p">()</span><span class="o">.</span><span class="n">startswith</span><span class="p">(</span><span class="s2">&quot;LibreSSL&quot;</span><span class="p">)</span>
        <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_supports_cipher</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">cipher_supported</span><span class="p">(</span><span class="kc">None</span><span class="p">,</span> <span class="kc">None</span><span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>

    <span class="k">def</span> <span class="nf">test_aes_ctr_always_available</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="c1"># AES CTR should always be available in both 0.9.8 and 1.0.0+</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">cipher_supported</span><span class="p">(</span><span class="n">AES</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;</span><span class="se">\x00</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">16</span><span class="p">),</span>
                                        <span class="n">CTR</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;</span><span class="se">\x00</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">16</span><span class="p">))</span> <span class="ow">is</span> <span class="kc">True</span>

    <span class="k">def</span> <span class="nf">test_register_duplicate_cipher_adapter</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">register_cipher_adapter</span><span class="p">(</span><span class="n">AES</span><span class="p">,</span> <span class="n">CBC</span><span class="p">,</span> <span class="kc">None</span><span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span><span class="s2">&quot;mode&quot;</span><span class="p">,</span> <span class="p">[</span><span class="n">DummyMode</span><span class="p">(),</span> <span class="kc">None</span><span class="p">])</span>
    <span class="k">def</span> <span class="nf">test_nonexistent_cipher</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">mode</span><span class="p">):</span>
        <span class="n">b</span> <span class="o">=</span> <span class="n">Backend</span><span class="p">()</span>
        <span class="n">b</span><span class="o">.</span><span class="n">register_cipher_adapter</span><span class="p">(</span>
            <span class="n">DummyCipher</span><span class="p">,</span>
            <span class="nb">type</span><span class="p">(</span><span class="n">mode</span><span class="p">),</span>
            <span class="k">lambda</span> <span class="n">backend</span><span class="p">,</span> <span class="n">cipher</span><span class="p">,</span> <span class="n">mode</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>
        <span class="p">)</span>
        <span class="n">cipher</span> <span class="o">=</span> <span class="n">Cipher</span><span class="p">(</span>
            <span class="n">DummyCipher</span><span class="p">(),</span> <span class="n">mode</span><span class="p">,</span> <span class="n">backend</span><span class="o">=</span><span class="n">b</span><span class="p">,</span>
        <span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_CIPHER</span><span class="p">):</span>
            <span class="n">cipher</span><span class="o">.</span><span class="n">encryptor</span><span class="p">()</span>

    <span class="k">def</span> <span class="nf">test_consume_errors</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">for</span> <span class="n">i</span> <span class="ow">in</span> <span class="nb">range</span><span class="p">(</span><span class="mi">10</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ERR_put_error</span><span class="p">(</span><span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ERR_LIB_EVP</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span>
                                       <span class="sa">b</span><span class="s2">&quot;test_openssl.py&quot;</span><span class="p">,</span> <span class="o">-</span><span class="mi">1</span><span class="p">)</span>

        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ERR_peek_error</span><span class="p">()</span> <span class="o">!=</span> <span class="mi">0</span>

        <span class="n">errors</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_consume_errors</span><span class="p">()</span>

        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ERR_peek_error</span><span class="p">()</span> <span class="o">==</span> <span class="mi">0</span>
        <span class="k">assert</span> <span class="nb">len</span><span class="p">(</span><span class="n">errors</span><span class="p">)</span> <span class="o">==</span> <span class="mi">10</span>

    <span class="k">def</span> <span class="nf">test_openssl_error_string</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ERR_put_error</span><span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ERR_LIB_EVP</span><span class="p">,</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">EVP_F_EVP_DECRYPTFINAL_EX</span><span class="p">,</span>
            <span class="mi">0</span><span class="p">,</span>
            <span class="sa">b</span><span class="s2">&quot;test_openssl.py&quot;</span><span class="p">,</span>
            <span class="o">-</span><span class="mi">1</span>
        <span class="p">)</span>

        <span class="n">errors</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_consume_errors</span><span class="p">()</span>
        <span class="n">exc</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_unknown_error</span><span class="p">(</span><span class="n">errors</span><span class="p">[</span><span class="mi">0</span><span class="p">])</span>

        <span class="k">assert</span> <span class="p">(</span>
            <span class="s2">&quot;digital envelope routines:&quot;</span>
            <span class="s2">&quot;EVP_DecryptFinal_ex:digital envelope routines&quot;</span> <span class="ow">in</span> <span class="nb">str</span><span class="p">(</span><span class="n">exc</span><span class="p">)</span>
        <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_ssl_ciphers_registered</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">meth</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">TLSv1_method</span><span class="p">()</span>
        <span class="n">ctx</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">SSL_CTX_new</span><span class="p">(</span><span class="n">meth</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">ctx</span> <span class="o">!=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">SSL_CTX_free</span><span class="p">(</span><span class="n">ctx</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_evp_ciphers_registered</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">cipher</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">EVP_get_cipherbyname</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;aes-256-cbc&quot;</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">cipher</span> <span class="o">!=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>

    <span class="k">def</span> <span class="nf">test_error_strings_loaded</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="c1"># returns a value in a static buffer</span>
        <span class="n">err</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ERR_error_string</span><span class="p">(</span><span class="mi">101183626</span><span class="p">,</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">string</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="o">==</span> <span class="p">(</span>
            <span class="sa">b</span><span class="s2">&quot;error:0607F08A:digital envelope routines:EVP_EncryptFinal_ex:&quot;</span>
            <span class="sa">b</span><span class="s2">&quot;data not multiple of block length&quot;</span>
        <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_unknown_error_in_cipher_finalize</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">cipher</span> <span class="o">=</span> <span class="n">Cipher</span><span class="p">(</span><span class="n">AES</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;</span><span class="se">\0</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">16</span><span class="p">),</span> <span class="n">CBC</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;</span><span class="se">\0</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">16</span><span class="p">),</span> <span class="n">backend</span><span class="o">=</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">enc</span> <span class="o">=</span> <span class="n">cipher</span><span class="o">.</span><span class="n">encryptor</span><span class="p">()</span>
        <span class="n">enc</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;</span><span class="se">\0</span><span class="s2">&quot;</span><span class="p">)</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ERR_put_error</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">0</span><span class="p">,</span> <span class="mi">1</span><span class="p">,</span>
                                   <span class="sa">b</span><span class="s2">&quot;test_openssl.py&quot;</span><span class="p">,</span> <span class="o">-</span><span class="mi">1</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">InternalError</span><span class="p">):</span>
            <span class="n">enc</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>

    <span class="k">def</span> <span class="nf">test_derive_pbkdf2_raises_unsupported_on_old_openssl</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">if</span> <span class="n">backend</span><span class="o">.</span><span class="n">pbkdf2_hmac_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">()):</span>
            <span class="n">pytest</span><span class="o">.</span><span class="n">skip</span><span class="p">(</span><span class="s2">&quot;Requires an older OpenSSL&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_HASH</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">derive_pbkdf2_hmac</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">(),</span> <span class="mi">10</span><span class="p">,</span> <span class="sa">b</span><span class="s2">&quot;&quot;</span><span class="p">,</span> <span class="mi">1000</span><span class="p">,</span> <span class="sa">b</span><span class="s2">&quot;&quot;</span><span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">skipif</span><span class="p">(</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">OPENSSL_VERSION_NUMBER</span> <span class="o">&gt;=</span> <span class="mh">0x1000000f</span><span class="p">,</span>
        <span class="n">reason</span><span class="o">=</span><span class="s2">&quot;Requires an older OpenSSL. Must be &lt; 1.0.0&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_large_key_size_on_old_openssl</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">dsa</span><span class="o">.</span><span class="n">generate_parameters</span><span class="p">(</span><span class="mi">2048</span><span class="p">,</span> <span class="n">backend</span><span class="o">=</span><span class="n">backend</span><span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">dsa</span><span class="o">.</span><span class="n">generate_parameters</span><span class="p">(</span><span class="mi">3072</span><span class="p">,</span> <span class="n">backend</span><span class="o">=</span><span class="n">backend</span><span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">skipif</span><span class="p">(</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">OPENSSL_VERSION_NUMBER</span> <span class="o">&lt;</span> <span class="mh">0x1000000f</span><span class="p">,</span>
        <span class="n">reason</span><span class="o">=</span><span class="s2">&quot;Requires a newer OpenSSL. Must be &gt;= 1.0.0&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_large_key_size_on_new_openssl</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">parameters</span> <span class="o">=</span> <span class="n">dsa</span><span class="o">.</span><span class="n">generate_parameters</span><span class="p">(</span><span class="mi">2048</span><span class="p">,</span> <span class="n">backend</span><span class="p">)</span>
        <span class="n">param_num</span> <span class="o">=</span> <span class="n">parameters</span><span class="o">.</span><span class="n">parameter_numbers</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">utils</span><span class="o">.</span><span class="n">bit_length</span><span class="p">(</span><span class="n">param_num</span><span class="o">.</span><span class="n">p</span><span class="p">)</span> <span class="o">==</span> <span class="mi">2048</span>
        <span class="n">parameters</span> <span class="o">=</span> <span class="n">dsa</span><span class="o">.</span><span class="n">generate_parameters</span><span class="p">(</span><span class="mi">3072</span><span class="p">,</span> <span class="n">backend</span><span class="p">)</span>
        <span class="n">param_num</span> <span class="o">=</span> <span class="n">parameters</span><span class="o">.</span><span class="n">parameter_numbers</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">utils</span><span class="o">.</span><span class="n">bit_length</span><span class="p">(</span><span class="n">param_num</span><span class="o">.</span><span class="n">p</span><span class="p">)</span> <span class="o">==</span> <span class="mi">3072</span>

    <span class="k">def</span> <span class="nf">test_int_to_bn</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">value</span> <span class="o">=</span> <span class="p">(</span><span class="mi">2</span> <span class="o">**</span> <span class="mi">4242</span><span class="p">)</span> <span class="o">-</span> <span class="mi">4242</span>
        <span class="n">bn</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_int_to_bn</span><span class="p">(</span><span class="n">value</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">bn</span> <span class="o">!=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>
        <span class="n">bn</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">gc</span><span class="p">(</span><span class="n">bn</span><span class="p">,</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">BN_free</span><span class="p">)</span>

        <span class="k">assert</span> <span class="n">bn</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">_bn_to_int</span><span class="p">(</span><span class="n">bn</span><span class="p">)</span> <span class="o">==</span> <span class="n">value</span>

    <span class="k">def</span> <span class="nf">test_int_to_bn_inplace</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">value</span> <span class="o">=</span> <span class="p">(</span><span class="mi">2</span> <span class="o">**</span> <span class="mi">4242</span><span class="p">)</span> <span class="o">-</span> <span class="mi">4242</span>
        <span class="n">bn_ptr</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">BN_new</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">bn_ptr</span> <span class="o">!=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>
        <span class="n">bn_ptr</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">gc</span><span class="p">(</span><span class="n">bn_ptr</span><span class="p">,</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">BN_free</span><span class="p">)</span>
        <span class="n">bn</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_int_to_bn</span><span class="p">(</span><span class="n">value</span><span class="p">,</span> <span class="n">bn_ptr</span><span class="p">)</span>

        <span class="k">assert</span> <span class="n">bn</span> <span class="o">==</span> <span class="n">bn_ptr</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">_bn_to_int</span><span class="p">(</span><span class="n">bn_ptr</span><span class="p">)</span> <span class="o">==</span> <span class="n">value</span>


<span class="k">class</span> <span class="nc">TestOpenSSLRandomEngine</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">teardown_method</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">method</span><span class="p">):</span>
        <span class="c1"># we need to reset state to being default. backend is a shared global</span>
        <span class="c1"># for all these tests.</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">activate_osrandom_engine</span><span class="p">()</span>
        <span class="n">current_default</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="n">name</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_name</span><span class="p">(</span><span class="n">current_default</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">name</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">Cryptography_osrandom_engine_name</span>

    <span class="k">def</span> <span class="nf">test_osrandom_engine_is_default</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">tmpdir</span><span class="p">):</span>
        <span class="n">engine_printer</span> <span class="o">=</span> <span class="n">textwrap</span><span class="o">.</span><span class="n">dedent</span><span class="p">(</span>
            <span class="sd">&quot;&quot;&quot;</span>
<span class="sd">            import sys</span>
<span class="sd">            from cryptography.hazmat.backends.openssl.backend import backend</span>

<span class="sd">            e = backend._lib.ENGINE_get_default_RAND()</span>
<span class="sd">            name = backend._lib.ENGINE_get_name(e)</span>
<span class="sd">            sys.stdout.write(backend._ffi.string(name).decode(&#39;ascii&#39;))</span>
<span class="sd">            res = backend._lib.ENGINE_free(e)</span>
<span class="sd">            assert res == 1</span>
<span class="sd">            &quot;&quot;&quot;</span>
        <span class="p">)</span>
        <span class="n">engine_name</span> <span class="o">=</span> <span class="n">tmpdir</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s1">&#39;engine_name&#39;</span><span class="p">)</span>

        <span class="c1"># If we&#39;re running tests via ``python setup.py test`` in a clean</span>
        <span class="c1"># environment then all of our dependencies are going to be installed</span>
        <span class="c1"># into either the current directory or the .eggs directory. However the</span>
        <span class="c1"># subprocess won&#39;t know to activate these dependencies, so we&#39;ll get it</span>
        <span class="c1"># to do so by passing our entire sys.path into the subprocess via the</span>
        <span class="c1"># PYTHONPATH environment variable.</span>
        <span class="n">env</span> <span class="o">=</span> <span class="n">os</span><span class="o">.</span><span class="n">environ</span><span class="o">.</span><span class="n">copy</span><span class="p">()</span>
        <span class="n">env</span><span class="p">[</span><span class="s2">&quot;PYTHONPATH&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="n">os</span><span class="o">.</span><span class="n">pathsep</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="n">sys</span><span class="o">.</span><span class="n">path</span><span class="p">)</span>

        <span class="k">with</span> <span class="n">engine_name</span><span class="o">.</span><span class="n">open</span><span class="p">(</span><span class="s1">&#39;w&#39;</span><span class="p">)</span> <span class="k">as</span> <span class="n">out</span><span class="p">:</span>
            <span class="n">subprocess</span><span class="o">.</span><span class="n">check_call</span><span class="p">(</span>
                <span class="p">[</span><span class="n">sys</span><span class="o">.</span><span class="n">executable</span><span class="p">,</span> <span class="s2">&quot;-c&quot;</span><span class="p">,</span> <span class="n">engine_printer</span><span class="p">],</span>
                <span class="n">env</span><span class="o">=</span><span class="n">env</span><span class="p">,</span>
                <span class="n">stdout</span><span class="o">=</span><span class="n">out</span>
            <span class="p">)</span>

        <span class="n">osrandom_engine_name</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">string</span><span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">Cryptography_osrandom_engine_name</span>
        <span class="p">)</span>

        <span class="k">assert</span> <span class="n">engine_name</span><span class="o">.</span><span class="n">read</span><span class="p">()</span><span class="o">.</span><span class="n">encode</span><span class="p">(</span><span class="s1">&#39;ascii&#39;</span><span class="p">)</span> <span class="o">==</span> <span class="n">osrandom_engine_name</span>

    <span class="k">def</span> <span class="nf">test_osrandom_sanity_check</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="c1"># This test serves as a check against catastrophic failure.</span>
        <span class="n">buf</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">new</span><span class="p">(</span><span class="s2">&quot;char[]&quot;</span><span class="p">,</span> <span class="mi">500</span><span class="p">)</span>
        <span class="n">res</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">RAND_bytes</span><span class="p">(</span><span class="n">buf</span><span class="p">,</span> <span class="mi">500</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">res</span> <span class="o">==</span> <span class="mi">1</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">buffer</span><span class="p">(</span><span class="n">buf</span><span class="p">)[:]</span> <span class="o">!=</span> <span class="s2">&quot;</span><span class="se">\x00</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">500</span>

    <span class="k">def</span> <span class="nf">test_activate_osrandom_no_default</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">activate_builtin_random</span><span class="p">()</span>
        <span class="n">e</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">e</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">activate_osrandom_engine</span><span class="p">()</span>
        <span class="n">e</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="n">name</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_name</span><span class="p">(</span><span class="n">e</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">name</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">Cryptography_osrandom_engine_name</span>
        <span class="n">res</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_free</span><span class="p">(</span><span class="n">e</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">res</span> <span class="o">==</span> <span class="mi">1</span>

    <span class="k">def</span> <span class="nf">test_activate_builtin_random</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">e</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">e</span> <span class="o">!=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>
        <span class="n">name</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_name</span><span class="p">(</span><span class="n">e</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">name</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">Cryptography_osrandom_engine_name</span>
        <span class="n">res</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_free</span><span class="p">(</span><span class="n">e</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">res</span> <span class="o">==</span> <span class="mi">1</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">activate_builtin_random</span><span class="p">()</span>
        <span class="n">e</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">e</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>

    <span class="k">def</span> <span class="nf">test_activate_builtin_random_already_active</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">activate_builtin_random</span><span class="p">()</span>
        <span class="n">e</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">e</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">activate_builtin_random</span><span class="p">()</span>
        <span class="n">e</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">e</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_ffi</span><span class="o">.</span><span class="n">NULL</span>

    <span class="k">def</span> <span class="nf">test_activate_osrandom_already_default</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">e</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="n">name</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_name</span><span class="p">(</span><span class="n">e</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">name</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">Cryptography_osrandom_engine_name</span>
        <span class="n">res</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_free</span><span class="p">(</span><span class="n">e</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">res</span> <span class="o">==</span> <span class="mi">1</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">activate_osrandom_engine</span><span class="p">()</span>
        <span class="n">e</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_default_RAND</span><span class="p">()</span>
        <span class="n">name</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_get_name</span><span class="p">(</span><span class="n">e</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">name</span> <span class="o">==</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">Cryptography_osrandom_engine_name</span>
        <span class="n">res</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">ENGINE_free</span><span class="p">(</span><span class="n">e</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">res</span> <span class="o">==</span> <span class="mi">1</span>


<span class="k">class</span> <span class="nc">TestOpenSSLRSA</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_generate_rsa_parameters_supported</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">generate_rsa_parameters_supported</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">1024</span><span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">generate_rsa_parameters_supported</span><span class="p">(</span><span class="mi">4</span><span class="p">,</span> <span class="mi">1024</span><span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">generate_rsa_parameters_supported</span><span class="p">(</span><span class="mi">3</span><span class="p">,</span> <span class="mi">1024</span><span class="p">)</span> <span class="ow">is</span> <span class="kc">True</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">generate_rsa_parameters_supported</span><span class="p">(</span><span class="mi">3</span><span class="p">,</span> <span class="mi">511</span><span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>

    <span class="k">def</span> <span class="nf">test_generate_bad_public_exponent</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">generate_rsa_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span> <span class="n">key_size</span><span class="o">=</span><span class="mi">2048</span><span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">generate_rsa_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="o">=</span><span class="mi">4</span><span class="p">,</span> <span class="n">key_size</span><span class="o">=</span><span class="mi">2048</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_cant_generate_insecure_tiny_key</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">generate_rsa_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="o">=</span><span class="mi">65537</span><span class="p">,</span>
                                             <span class="n">key_size</span><span class="o">=</span><span class="mi">511</span><span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">generate_rsa_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="o">=</span><span class="mi">65537</span><span class="p">,</span>
                                             <span class="n">key_size</span><span class="o">=</span><span class="mi">256</span><span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">skipif</span><span class="p">(</span>
        <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">OPENSSL_VERSION_NUMBER</span> <span class="o">&gt;=</span> <span class="mh">0x1000100f</span><span class="p">,</span>
        <span class="n">reason</span><span class="o">=</span><span class="s2">&quot;Requires an older OpenSSL. Must be &lt; 1.0.1&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_non_sha1_pss_mgf1_hash_algorithm_on_old_openssl</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_HASH</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                        <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">(),</span>
                    <span class="p">),</span>
                    <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
                <span class="p">),</span>
                <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
            <span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_HASH</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;sig&quot;</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                        <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">(),</span>
                    <span class="p">),</span>
                    <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
                <span class="p">),</span>
                <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_rsa_padding_unsupported_pss_mgf1_hash</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span><span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">DummyHash</span><span class="p">()),</span> <span class="n">salt_length</span><span class="o">=</span><span class="mi">0</span><span class="p">)</span>
        <span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>

    <span class="k">def</span> <span class="nf">test_rsa_padding_unsupported</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span><span class="n">DummyPadding</span><span class="p">())</span> <span class="ow">is</span> <span class="kc">False</span>

    <span class="k">def</span> <span class="nf">test_rsa_padding_supported_pkcs1v15</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">())</span> <span class="ow">is</span> <span class="kc">True</span>

    <span class="k">def</span> <span class="nf">test_rsa_padding_supported_pss</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span><span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span> <span class="n">salt_length</span><span class="o">=</span><span class="mi">0</span><span class="p">)</span>
        <span class="p">)</span> <span class="ow">is</span> <span class="kc">True</span>

    <span class="k">def</span> <span class="nf">test_rsa_padding_supported_oaep</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
            <span class="p">),</span>
        <span class="p">)</span> <span class="ow">is</span> <span class="kc">True</span>

    <span class="k">def</span> <span class="nf">test_rsa_padding_unsupported_mgf</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">DummyMGF</span><span class="p">(),</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
            <span class="p">),</span>
        <span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>

        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span><span class="n">mgf</span><span class="o">=</span><span class="n">DummyMGF</span><span class="p">(),</span> <span class="n">salt_length</span><span class="o">=</span><span class="mi">0</span><span class="p">)</span>
        <span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>

    <span class="k">def</span> <span class="nf">test_unsupported_mgf1_hash_algorithm_decrypt</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_HASH</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;0&quot;</span> <span class="o">*</span> <span class="mi">64</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">()),</span>
                    <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                    <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
                <span class="p">)</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_unsupported_oaep_hash_algorithm_decrypt</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_HASH</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;0&quot;</span> <span class="o">*</span> <span class="mi">64</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                    <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">(),</span>
                    <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
                <span class="p">)</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_unsupported_oaep_label_decrypt</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;0&quot;</span> <span class="o">*</span> <span class="mi">64</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                    <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                    <span class="n">label</span><span class="o">=</span><span class="sa">b</span><span class="s2">&quot;label&quot;</span>
                <span class="p">)</span>
            <span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">skipif</span><span class="p">(</span>
    <span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="o">.</span><span class="n">OPENSSL_VERSION_NUMBER</span> <span class="o">&lt;=</span> <span class="mh">0x10001000</span><span class="p">,</span>
    <span class="n">reason</span><span class="o">=</span><span class="s2">&quot;Requires an OpenSSL version &gt;= 1.0.1&quot;</span>
<span class="p">)</span>
<span class="k">class</span> <span class="nc">TestOpenSSLCMAC</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_unsupported_cipher</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="nd">@utils</span><span class="o">.</span><span class="n">register_interface</span><span class="p">(</span><span class="n">BlockCipherAlgorithm</span><span class="p">)</span>
        <span class="k">class</span> <span class="nc">FakeAlgorithm</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
            <span class="n">block_size</span> <span class="o">=</span> <span class="mi">64</span>

        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_CIPHER</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">create_cmac_ctx</span><span class="p">(</span><span class="n">FakeAlgorithm</span><span class="p">())</span>


<span class="k">class</span> <span class="nc">TestOpenSSLSerialisationWithOpenSSL</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_pem_password_cb_buffer_too_small</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">ffi_cb</span><span class="p">,</span> <span class="n">cb</span> <span class="o">=</span> <span class="n">backend</span><span class="o">.</span><span class="n">_pem_password_cb</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;aa&quot;</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">cb</span><span class="p">(</span><span class="kc">None</span><span class="p">,</span> <span class="mi">1</span><span class="p">,</span> <span class="kc">False</span><span class="p">,</span> <span class="kc">None</span><span class="p">)</span> <span class="o">==</span> <span class="mi">0</span>

    <span class="k">def</span> <span class="nf">test_unsupported_evp_pkey_type</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">pretend</span><span class="o">.</span><span class="n">stub</span><span class="p">(</span><span class="nb">type</span><span class="o">=</span><span class="s2">&quot;unsupported&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="kc">None</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">_evp_pkey_to_private_key</span><span class="p">(</span><span class="n">key</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="kc">None</span><span class="p">):</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">_evp_pkey_to_public_key</span><span class="p">(</span><span class="n">key</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_very_long_pem_serialization_password</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">password</span> <span class="o">=</span> <span class="s2">&quot;x&quot;</span> <span class="o">*</span> <span class="mi">1024</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">load_vectors_from_file</span><span class="p">(</span>
                <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                    <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;Traditional_OpenSSL_Serialization&quot;</span><span class="p">,</span>
                    <span class="s2">&quot;key1.pem&quot;</span>
                <span class="p">),</span>
                <span class="k">lambda</span> <span class="n">pemfile</span><span class="p">:</span> <span class="p">(</span>
                    <span class="n">backend</span><span class="o">.</span><span class="n">load_pem_private_key</span><span class="p">(</span>
                        <span class="n">pemfile</span><span class="o">.</span><span class="n">read</span><span class="p">()</span><span class="o">.</span><span class="n">encode</span><span class="p">(),</span> <span class="n">password</span>
                    <span class="p">)</span>
                <span class="p">)</span>
            <span class="p">)</span>


<span class="k">class</span> <span class="nc">TestOpenSSLEllipticCurve</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_elliptic_curve_supported</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">monkeypatch</span><span class="p">):</span>
        <span class="n">monkeypatch</span><span class="o">.</span><span class="n">setattr</span><span class="p">(</span><span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="p">,</span> <span class="s2">&quot;Cryptography_HAS_EC&quot;</span><span class="p">,</span> <span class="mi">0</span><span class="p">)</span>

        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">elliptic_curve_supported</span><span class="p">(</span><span class="kc">None</span><span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>

    <span class="k">def</span> <span class="nf">test_elliptic_curve_signature_algorithm_supported</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">monkeypatch</span><span class="p">):</span>
        <span class="n">monkeypatch</span><span class="o">.</span><span class="n">setattr</span><span class="p">(</span><span class="n">backend</span><span class="o">.</span><span class="n">_lib</span><span class="p">,</span> <span class="s2">&quot;Cryptography_HAS_EC&quot;</span><span class="p">,</span> <span class="mi">0</span><span class="p">)</span>

        <span class="k">assert</span> <span class="n">backend</span><span class="o">.</span><span class="n">elliptic_curve_signature_algorithm_supported</span><span class="p">(</span>
            <span class="kc">None</span><span class="p">,</span> <span class="kc">None</span>
        <span class="p">)</span> <span class="ow">is</span> <span class="kc">False</span>

    <span class="k">def</span> <span class="nf">test_sn_to_elliptic_curve_not_supported</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_ELLIPTIC_CURVE</span><span class="p">):</span>
            <span class="n">_sn_to_elliptic_curve</span><span class="p">(</span><span class="n">backend</span><span class="p">,</span> <span class="sa">b</span><span class="s2">&quot;fake&quot;</span><span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSAPEMSerialization</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_password_length_limit</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">password</span> <span class="o">=</span> <span class="sa">b</span><span class="s2">&quot;x&quot;</span> <span class="o">*</span> <span class="mi">1024</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">as_bytes</span><span class="p">(</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Format</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">BestAvailableEncryption</span><span class="p">(</span><span class="n">password</span><span class="p">)</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_unsupported_key_encoding</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">as_bytes</span><span class="p">(</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">DER</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Format</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">NoEncryption</span><span class="p">()</span>
            <span class="p">)</span>
</pre></div>
</code></pre></td></tr></table>
</div> <!-- class=content -->
<div class='footer'>generated by <a href='https://git.zx2c4.com/cgit/about/'>cgit v1.2.3</a> (<a href='https://git-scm.com/'>git 2.25.1</a>) at 2025-04-18 13:24:19 +0000</div>
</div> <!-- id=cgit -->
</body>
</html>