Adds a more descriptive error msg for wrong wrapping (#4504)

* PoC code for check PEM wrap * Remove PoC check wrap code * Add PEM file info to FAQ * Add FAQ/PEM link in exception message * Fix flake8 style issues * refactor, update language * it's really amazing how bad the spell checker is * review feedback * change to etc
author: André Almeida <andrefalmeida@protonmail.com> 2018-12-08 23:53:10 -0200
committer: Alex Gaynor <alex.gaynor@gmail.com> 2018-12-08 20:53:10 -0500
commit: 5bc3bf7d36d872af5ab79c7531c80a7793c76307 (patch)
tree: 5cfba43d52f0b874d18fa75a25844a5db3226b10 /src
parent: bddcd52eadba275770bbc2070799314c1b5b179b (diff)
download: cryptography-5bc3bf7d36d872af5ab79c7531c80a7793c76307.tar.gz
cryptography-5bc3bf7d36d872af5ab79c7531c80a7793c76307.tar.bz2
cryptography-5bc3bf7d36d872af5ab79c7531c80a7793c76307.zip
1 files changed, 12 insertions, 3 deletions
diff --git a/src/cryptography/hazmat/backends/openssl/backend.py b/src/cryptography/hazmat/backends/openssl/backend.py
index fda6293c..b2fdf78b 100644
--- a/src/cryptography/hazmat/backends/openssl/backend.py
+++ b/src/cryptography/hazmat/backends/openssl/backend.py
@@ -1141,7 +1141,10 @@ class Backend(object):
         )
         if x509 == self._ffi.NULL:
             self._consume_errors()
-            raise ValueError("Unable to load certificate")
+            raise ValueError(
+                "Unable to load certificate. See https://cryptography.io/en/la"
+                "test/faq/#why-can-t-i-import-my-pem-file for more details."
+            )
 
         x509 = self._ffi.gc(x509, self._lib.X509_free)
         return _Certificate(self, x509)
@@ -1163,7 +1166,10 @@ class Backend(object):
         )
         if x509_crl == self._ffi.NULL:
             self._consume_errors()
-            raise ValueError("Unable to load CRL")
+            raise ValueError(
+                "Unable to load CRL. See https://cryptography.io/en/la"
+                "test/faq/#why-can-t-i-import-my-pem-file for more details."
+            )
 
         x509_crl = self._ffi.gc(x509_crl, self._lib.X509_CRL_free)
         return _CertificateRevocationList(self, x509_crl)
@@ -1185,7 +1191,10 @@ class Backend(object):
         )
         if x509_req == self._ffi.NULL:
             self._consume_errors()
-            raise ValueError("Unable to load request")
+            raise ValueError(
+                "Unable to load request. See https://cryptography.io/en/la"
+                "test/faq/#why-can-t-i-import-my-pem-file for more details."
+            )
 
         x509_req = self._ffi.gc(x509_req, self._lib.X509_REQ_free)
         return _CertificateSigningRequest(self, x509_req)
author	André Almeida <andrefalmeida@protonmail.com>	2018-12-08 23:53:10 -0200
committer	Alex Gaynor <alex.gaynor@gmail.com>	2018-12-08 20:53:10 -0500
commit	5bc3bf7d36d872af5ab79c7531c80a7793c76307 (patch)
tree	5cfba43d52f0b874d18fa75a25844a5db3226b10 /src
parent	bddcd52eadba275770bbc2070799314c1b5b179b (diff)
download	cryptography-5bc3bf7d36d872af5ab79c7531c80a7793c76307.tar.gz cryptography-5bc3bf7d36d872af5ab79c7531c80a7793c76307.tar.bz2 cryptography-5bc3bf7d36d872af5ab79c7531c80a7793c76307.zip