diff options
| author | Alex Gaynor <alex.gaynor@gmail.com> | 2018-07-15 20:48:57 -0400 |
|---|---|---|
| committer | Paul Kehrer <paul.l.kehrer@gmail.com> | 2018-07-16 06:18:57 +0530 |
| commit | b09b9ecd695187f323c509aecdf517cadcf728d1 (patch) | |
| tree | c295740f84703c77f4cfee6866bac18db6246114 /CHANGELOG.rst | |
| parent | bb23c6c7cbb3f62f1b1b2480f9dc07c6beba3398 (diff) | |
| download | cryptography-b09b9ecd695187f323c509aecdf517cadcf728d1.tar.gz cryptography-b09b9ecd695187f323c509aecdf517cadcf728d1.tar.bz2 cryptography-b09b9ecd695187f323c509aecdf517cadcf728d1.zip | |
Change the exception we raise in keywrap unwrapping on invalid length (#4337)
I believe this can reasonably be considered backwards compatible since other invalid inputs already lead to InvalidUnwrap, and clients shouldn't be distinguishing between these two conditions, and ValueError wasn't documented anyways.
Diffstat (limited to 'CHANGELOG.rst')
| -rw-r--r-- | CHANGELOG.rst | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 70be0520..8b4e9743 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -19,6 +19,10 @@ Changelog * The :class:`~cryptography.x509.RelativeDistinguishedName` class now preserves the order of attributes. Duplicate attributes now raise an error instead of silently discarding duplicates. +* :func:`~cryptography.hazmat.primitives.keywrap.aes_key_unwrap` and + :func:`~cryptography.hazmat.primitives.keywrap.aes_key_unwrap_with_padding` + now raise :class:`~cryptography.hazmat.primitives.keywrap.InvalidUnwrap` if + the wrapped key is an invalid length, instead of ``ValueError``. .. _v2-2-2: |