Issue #20025: ssl.RAND_bytes() and ssl.RAND_pseudo_bytes() now raise a

ValueError if num is negative (instead of raising a SystemError).
2025-07-24 11:44:31 +00:00 · 2013-12-19 16:47:04 +01:00 · 2013-12-19 16:47:04 +01:00 · 1e81a399a2
commit 1e81a399a2
parent cb1f74ec40
2 changed files with 9 additions and 0 deletions
--- a/Modules/_ssl.c
+++ b/Modules/_ssl.c
@ -2486,6 +2486,11 @@ PySSL_RAND(int len, int pseudo)
    const char *errstr;
    PyObject *v;

+    if (len < 0) {
+        PyErr_SetString(PyExc_ValueError, "num must be positive");
+        return NULL;
+    }
+
    bytes = PyBytes_FromStringAndSize(NULL, len);
    if (bytes == NULL)
        return NULL;