ruby--ruby/ext/openssl/lib/openssl.rb

# frozen_string_literal: true
=begin
= Info
  'OpenSSL for Ruby 2' project
  Copyright (C) 2002  Michal Rokos <m.rokos@sh.cvut.cz>
  All rights reserved.

= Licence
  This program is licensed under the same licence as Ruby.
  (See the file 'LICENCE'.)
=end

require 'openssl.so'

require_relative 'openssl/bn'
require_relative 'openssl/pkey'
require_relative 'openssl/cipher'
require_relative 'openssl/config'
require_relative 'openssl/digest'
require_relative 'openssl/hmac'
require_relative 'openssl/x509'
require_relative 'openssl/ssl'
require_relative 'openssl/pkcs5'
require_relative 'openssl/version'

module OpenSSL
  # call-seq:
  #   OpenSSL.secure_compare(string, string) -> boolean
  #
  # Constant time memory comparison. Inputs are hashed using SHA-256 to mask
  # the length of the secret. Returns +true+ if the strings are identical,
  # +false+ otherwise.
  def self.secure_compare(a, b)
    hashed_a = OpenSSL::Digest::SHA256.digest(a)
    hashed_b = OpenSSL::Digest::SHA256.digest(b)
    OpenSSL.fixed_length_secure_compare(hashed_a, hashed_b) && a == b
  end
end
Import openssl-2.2.0 (#2693) Import the master branch of ruby/openssl for preparing to release openssl-2.2.0 2020-02-16 01:21:29 -05:00			`# frozen_string_literal: true`
* ext/openssl: imported. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@4128 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2003-07-23 12:12:24 -04:00			`=begin`
			`= Info`
			`'OpenSSL for Ruby 2' project`
			`Copyright (C) 2002 Michal Rokos <m.rokos@sh.cvut.cz>`
			`All rights reserved.`

			`= Licence`
* ext/openssl/: use license instead of licence. [fix GH-876][ci skip] Patch by @davydovanton lib/net/https.rb: ditto. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@50351 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2015-04-19 23:55:09 -04:00			`This program is licensed under the same licence as Ruby.`
* ext/openssl: imported. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@4128 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2003-07-23 12:12:24 -04:00			`(See the file 'LICENCE'.)`
			`=end`

			`require 'openssl.so'`

Import openssl-2.2.0 (#2693) Import the master branch of ruby/openssl for preparing to release openssl-2.2.0 2020-02-16 01:21:29 -05:00			`require_relative 'openssl/bn'`
			`require_relative 'openssl/pkey'`
			`require_relative 'openssl/cipher'`
			`require_relative 'openssl/config'`
			`require_relative 'openssl/digest'`
			`require_relative 'openssl/hmac'`
			`require_relative 'openssl/x509'`
			`require_relative 'openssl/ssl'`
			`require_relative 'openssl/pkcs5'`
openssl: sync with upstream repository Import current master (2c43241dc0ed) of ruby/openssl.git. Below are the commits that were made since the last batch at commit b99775b163ce (ruby/openssl.git commit f49e7110ca1e). Note that some of them have been applied already. ---------------------------------------------------------------- Benoit Daloze (1): Remove redundant and ignored workflow file DBL-Lee (1): add support for SHA512_256/SHA512_224 Hiroshi SHIBATA (2): Guard for OpenSSL::PKey::EC::Group::Error with unsupported platforms Fixed inconsistency directory structure with ruby/ruby repo Jeremy Evans (2): Fix keyword argument separation issues in OpenSSL::SSL::SSLSocket#sys{read,write}_nonblock Remove taint support Kazuki Yamaguchi (26): config: support .include directive random: make OpenSSL::Random.pseudo_bytes alias of .random_bytes extconf.rb: get rid of -Werror=deprecated-declarations test/openssl/test_ssl: skip test_fallback_scsv if necessary ts: simplify OpenSSL::Timestamp::Request#algorithm History.md: add missing references to GitHub issues config: deprecate OpenSSL::Config#add_value and #[]= test/openssl/test_ssl: remove sleep from test_finished_messages test/openssl/test_ssl: fix random failure in SSLSocket.open test test/openssl/test_ssl: avoid explicitly-sized private keys test/openssl/test_ssl: remove commented-out test case test/openssl/test_ssl: allow kRSA tests to fail ssl: avoid declarations after statements engine: revert OpenSSL::Engine.load changes for cloudhsm engine: remove really outdated static engines engine: do not check for ENGINE_load_builtin_engines() engine: fix guards for 'dynamic' and 'cryptodev' engines lib/openssl.rb: require openssl/version.rb x509: add error code and verify flags constants ssl: set verify error code in the case of verify_hostname failure .github/workflows: merge CI jobs into a single workflow .github/workflows: test against different OpenSSL versions .travis.yml: fully migrate to GitHub Actions ssl: suppress test failure with SSLContext#add_certificate_chain_file ssl: remove test case test_puts_meta from test_pair Revert "Use version.rb in gemspec" MSP-Greg (2): .travis.yml - remove 2.3/1.0.2, 2.5/1.1.1, head/1.0.2 Use version.rb in gemspec Samuel Williams (1): Restore compatibility with older versions of Ruby. Yusuke Endoh (1): Make OpenSSL::OSSL#test_memcmp_timing robust 2020-03-09 05:26:19 -04:00			`require_relative 'openssl/version'`
Import openssl-2.2.0 (#2693) Import the master branch of ruby/openssl for preparing to release openssl-2.2.0 2020-02-16 01:21:29 -05:00
			`module OpenSSL`
			`# call-seq:`
			`# OpenSSL.secure_compare(string, string) -> boolean`
			`#`
			`# Constant time memory comparison. Inputs are hashed using SHA-256 to mask`
			`# the length of the secret. Returns +true+ if the strings are identical,`
			`# +false+ otherwise.`
			`def self.secure_compare(a, b)`
			`hashed_a = OpenSSL::Digest::SHA256.digest(a)`
			`hashed_b = OpenSSL::Digest::SHA256.digest(b)`
			`OpenSSL.fixed_length_secure_compare(hashed_a, hashed_b) && a == b`
			`end`
			`end`