bpo-38270: Check for hash digest algorithms and avoid MD5 (GH-16382)

Make it easier to run and test Python on systems with restrict crypto policies: * add requires_hashdigest to test.support to check if a hash digest algorithm is available and working * avoid MD5 in test_hmac * replace MD5 with SHA256 in test_tarfile * mark network tests that require MD5 for MD5-based digest auth or CRAM-MD5 https://bugs.python.org/issue38270
2025-10-09 16:34:44 +00:00 · 2019-09-25 16:30:20 +02:00 · 2019-09-25 16:30:20 +02:00 · c64a1a61e6
commit c64a1a61e6
parent 417089e88b
8 changed files with 119 additions and 45 deletions
--- a/Lib/test/test_poplib.py
+++ b/Lib/test/test_poplib.py
@ -309,9 +309,11 @@ class TestPOP3Class(TestCase):
    def test_rpop(self):
        self.assertOK(self.client.rpop('foo'))

+    @test_support.requires_hashdigest('md5')
    def test_apop_normal(self):
        self.assertOK(self.client.apop('foo', 'dummypassword'))

+    @test_support.requires_hashdigest('md5')
    def test_apop_REDOS(self):
        # Replace welcome with very long evil welcome.
        # NB The upper bound on welcome length is currently 2048.