tests/hazmat/primitives/test_dh.py | 11 9 + 2 - 0 !
1 file changed, 9 insertions(+), 2 deletions(-)

 [patch] update our test to be more robust wrt some changes from
 upstream (#4993)

tests/hazmat/primitives/test_aes.py | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [patch] use a random key for these tests (#4887)

Using an all 0 key causes failures in OpenSSL master (and Fedora has
cherry-picked the commit that causes it). The change requires that the
key/tweak for XTS mode not be the same value, so let's just use a random
key.

tests/x509/test_x509.py | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 [patch] tests: skip test_load_ecdsa_no_named_curve

The test_load_ecdsa_no_named_curve breaks with OpenSSL 1.1.1d which is
due to to commit 9a43a733801bd ("[ec] Match built-in curves on
EC_GROUP_new_from_ecparameters").

Upstream is aware of the issue and it is tracked at
	https://github.com/pyca/cryptography/issues/4998

Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>

src/_cffi_src/openssl/x509v3.py | 3 3 + 0 - 0 !
src/cryptography/hazmat/backends/openssl/decode_asn1.py | 9 8 + 1 - 0 !
tests/hazmat/backends/test_openssl_memleak.py | 21 20 + 1 - 0 !
3 files changed, 31 insertions(+), 2 deletions(-)

 [patch] fix a memory leak in aia parsing (#4836)

* fix a memory leak in AIA parsing

* oops can't remove that

src/cryptography/hazmat/backends/openssl/encode_asn1.py | 27 15 + 12 - 0 !
tests/hazmat/backends/test_openssl_memleak.py | 60 60 + 0 - 0 !
2 files changed, 75 insertions(+), 12 deletions(-)

 [patch] fix aia encoding memory leak (#4889)

* fix aia encoding memory leak

* don't return anything from the prealloc func