ruby--ruby

mirror of https://github.com/ruby/ruby.git synced 2022-11-09 12:17:21 -05:00

Kazuki Yamaguchi 81325db5f8 [ruby/openssl] ssl: initialize verify_mode and verify_hostname with default values SSLContext's verify_mode expects an SSL_VERIFY_* constant (an integer) and verify_hostname expects either true or false. However, they are set to nil after calling OpenSSL::SSL::SSLContext.new, which is surprising. Set a proper value to them by default: verify_mode is set to OpenSSL::SSL::VERIFY_NONE and verify_hostname is set to false by default. Note that this does not change the default behavior. The certificate verification was never performed unless verify_mode is set to OpenSSL::SSL::VERIFY_PEER by a user. The same applies to verify_hostname. `87d869352c`	2021-03-16 19:16:11 +09:00
..
openssl	[ruby/openssl] ssl: initialize verify_mode and verify_hostname with default values	2021-03-16 19:16:11 +09:00
openssl.rb	[ruby/openssl] config: revert to C implementation of OpenSSL::Config	2021-03-16 19:16:10 +09:00

Kazuki Yamaguchi 81325db5f8 [ruby/openssl] ssl: initialize verify_mode and verify_hostname with default values

SSLContext's verify_mode expects an SSL_VERIFY_* constant (an integer)
and verify_hostname expects either true or false. However, they are set
to nil after calling OpenSSL::SSL::SSLContext.new, which is surprising.

Set a proper value to them by default: verify_mode is set to
OpenSSL::SSL::VERIFY_NONE and verify_hostname is set to false by
default.

Note that this does not change the default behavior. The certificate
verification was never performed unless verify_mode is set to
OpenSSL::SSL::VERIFY_PEER by a user. The same applies to
verify_hostname.

87d869352c

2021-03-16 19:16:11 +09:00

openssl [ruby/openssl] ssl: initialize verify_mode and verify_hostname with default values 2021-03-16 19:16:11 +09:00

openssl.rb [ruby/openssl] config: revert to C implementation of OpenSSL::Config 2021-03-16 19:16:10 +09:00