bpo-9216: Expose OpenSSL FIPS_mode() as _hashlib.get_fips_mode() (GH-19703) test.pythoninfo logs OpenSSL FIPS_mode() and Linux /proc/sys/crypto/fips_enabled in a new "fips" section. Co-Authored-By: Petr Viktorin <encukou@gmail.com>

commit: e3dfb9b967c560f4d094092dcae4a16fc9634681 [log] [tgz]
author: Victor Stinner <vstinner@python.org> Wed Apr 29 18:04:22 2020 +0200
committer: GitHub <noreply@github.com> Wed Apr 29 09:04:22 2020 -0700
tree: 87cce94d1a8858c6a8cf591557a5778d7e01ae65
parent: e5963ee32035d279c12ef32e87205d4c3e5e4a0e [diff] [blame]
diff --git a/Lib/test/pythoninfo.py b/Lib/test/pythoninfo.py
index cc0bbc5..cc228fb 100644
--- a/Lib/test/pythoninfo.py
+++ b/Lib/test/pythoninfo.py

@@ -720,6 +720,25 @@
         pass
 
 
+def collect_fips(info_add):
+    try:
+        import _hashlib
+    except ImportError:
+        _hashlib = None
+
+    if _hashlib is not None:
+        call_func(info_add, 'fips.openssl_fips_mode', _hashlib, 'get_fips_mode')
+
+    try:
+        with open("/proc/sys/crypto/fips_enabled", encoding="utf-8") as fp:
+            line = fp.readline().rstrip()
+
+        if line:
+            info_add('fips.linux_crypto_fips_enabled', line)
+    except OSError:
+        pass
+
+
 def collect_info(info):
     error = False
     info_add = info.add
@@ -735,6 +754,7 @@
         collect_datetime,
         collect_decimal,
         collect_expat,
+        collect_fips,
         collect_gdb,
         collect_gdbm,
         collect_get_config,
commit	e3dfb9b967c560f4d094092dcae4a16fc9634681	[log] [tgz]
author	Victor Stinner <vstinner@python.org>	Wed Apr 29 18:04:22 2020 +0200
committer	GitHub <noreply@github.com>	Wed Apr 29 09:04:22 2020 -0700
tree	87cce94d1a8858c6a8cf591557a5778d7e01ae65
parent	e5963ee32035d279c12ef32e87205d4c3e5e4a0e [diff] [blame]