only override django for FIPS in environments where Django is installed

isolated awx installs don't have this tooling, and so they don't need this specific monkey-patch
2026-01-11 10:00:01 -03:30 · 2018-11-26 09:17:48 -05:00 · 2018-11-26 09:17:48 -05:00 · 32e7ddd43a
commit 32e7ddd43a
parent d310c48988
1 changed files with 32 additions and 26 deletions
--- a/awx/init.py
+++ b/awx/init.py
@ -22,39 +22,45 @@ except ImportError: # pragma: no cover


 import hashlib
-import django
-from django.utils.encoding import force_bytes
-from django.db.backends.base.schema import BaseDatabaseSchemaEditor
-from django.db.backends.base import schema
+
+try:
+    import django
+    from django.utils.encoding import force_bytes
+    from django.db.backends.base.schema import BaseDatabaseSchemaEditor
+    from django.db.backends.base import schema
+    HAS_DJANGO = True
+except ImportError:
+    HAS_DJANGO = False


-# This line exists to make sure we don't regress on FIPS support if we
-# upgrade Django; if you're upgrading Django and see this error,
-# update the version check below, and confirm that FIPS still works.
-if django.__version__ != '1.11.16':
-    raise RuntimeError("Django version other than 1.11.16 detected {}. \
-            Subclassing BaseDatabaseSchemaEditor is known to work for Django 1.11.16 \
-            and may not work in newer Django versions.".format(django.__version__))
+if HAS_DJANGO is True:
+    # This line exists to make sure we don't regress on FIPS support if we
+    # upgrade Django; if you're upgrading Django and see this error,
+    # update the version check below, and confirm that FIPS still works.
+    if django.__version__ != '1.11.16':
+        raise RuntimeError("Django version other than 1.11.16 detected {}. \
+                Subclassing BaseDatabaseSchemaEditor is known to work for Django 1.11.16 \
+                and may not work in newer Django versions.".format(django.__version__))


-class FipsBaseDatabaseSchemaEditor(BaseDatabaseSchemaEditor):
+    class FipsBaseDatabaseSchemaEditor(BaseDatabaseSchemaEditor):

-    @classmethod
-    def _digest(cls, *args):
-        """
-        Generates a 32-bit digest of a set of arguments that can be used to
-        shorten identifying names.
-        """
-        try:
-            h = hashlib.md5()
-        except ValueError:
-            h = hashlib.md5(usedforsecurity=False)
-        for arg in args:
-            h.update(force_bytes(arg))
-        return h.hexdigest()[:8]
+        @classmethod
+        def _digest(cls, *args):
+            """
+            Generates a 32-bit digest of a set of arguments that can be used to
+            shorten identifying names.
+            """
+            try:
+                h = hashlib.md5()
+            except ValueError:
+                h = hashlib.md5(usedforsecurity=False)
+            for arg in args:
+                h.update(force_bytes(arg))
+            return h.hexdigest()[:8]


-schema.BaseDatabaseSchemaEditor = FipsBaseDatabaseSchemaEditor
+    schema.BaseDatabaseSchemaEditor = FipsBaseDatabaseSchemaEditor


 def find_commands(management_dir):