(Merge 3.3) Issue #20025: ssl.RAND_bytes() and ssl.RAND_pseudo_bytes() now

raise a ValueError if num is negative (instead of raising a SystemError).
2025-11-01 18:51:43 +00:00 · 2013-12-19 16:47:25 +01:00 · 2013-12-19 16:47:25 +01:00 · 36e96b8716
commit 36e96b8716
parent c234f185cb 1e81a399a2
2 changed files with 9 additions and 0 deletions
--- a/Modules/_ssl.c
+++ b/Modules/_ssl.c
@ -3244,6 +3244,11 @@ PySSL_RAND(int len, int pseudo)
    const char *errstr;
    PyObject *v;

+    if (len < 0) {
+        PyErr_SetString(PyExc_ValueError, "num must be positive");
+        return NULL;
+    }
+
    bytes = PyBytes_FromStringAndSize(NULL, len);
    if (bytes == NULL)
        return NULL;