ruby--ruby

mirror of https://github.com/ruby/ruby.git synced 2022-11-09 12:17:21 -05:00

History

Jeremy Evans e2ce383044 [ruby/openssl] Enhance TLS 1.3 support on LibreSSL 3.2/3.3 This defines TLS1_3_VERSION when using LibreSSL 3.2+. LibreSSL 3.2/3.3 doesn't advertise this by default, even though it will use TLS 1.3 in both client and server modes. Changes between LibreSSL 3.1 and 3.2/3.3 broke a few tests, Defining TLS1_3_VERSION by itself fixes 1 test failure. A few tests now fail on LibreSSL 3.2/3.3 unless TLS 1.2 is set as the maximum version, and this adjusts those tests. The client CA test doesn't work in LibreSSL 3.2+, so I've marked that as pending. For the hostname verification, LibreSSL 3.2.2+ has a new stricter hostname verifier that doesn't like subjectAltName such as c.example.com and d..example.com, so adjust the related tests. With these changes, the tests pass on LibreSSL 3.2/3.3. https://github.com/ruby/openssl/commit/a0e98d48c9		2021-03-16 19:37:06 +09:00
..
lib	[ruby/openssl] ssl: initialize verify_mode and verify_hostname with default values	2021-03-16 19:16:11 +09:00
depend	[openssl] Fix dependencies	2020-12-18 21:58:41 +09:00
extconf.rb	[ruby/openssl] ssl: remove SSL::SSLContext#tmp_ecdh_callback	2021-03-16 19:16:11 +09:00
History.md
openssl.gemspec
openssl_missing.c	[ruby/openssl] hmac: migrate from the low-level HMAC API to the EVP API	2021-03-16 19:16:11 +09:00
openssl_missing.h	[ruby/openssl] hmac: migrate from the low-level HMAC API to the EVP API	2021-03-16 19:16:11 +09:00
ossl.c	[ruby/openssl] Fix typo in documentation	2021-03-16 19:16:11 +09:00
ossl.h	[ruby/openssl] hmac: migrate from the low-level HMAC API to the EVP API	2021-03-16 19:16:11 +09:00
ossl_asn1.c
ossl_asn1.h
ossl_bio.c
ossl_bio.h
ossl_bn.c	support Ruby 2.x for openssl	2020-12-19 02:05:08 +09:00
ossl_bn.h	openssl is ractor-safe	2020-12-18 18:19:33 +09:00
ossl_cipher.c	[ruby/openssl] User lower case cipher names for maximum compatibility	2021-03-16 19:16:11 +09:00
ossl_cipher.h
ossl_config.c	[ruby/openssl] config: replace DupConfigPtr() with GetConfig()	2021-03-16 19:16:10 +09:00
ossl_config.h	[ruby/openssl] config: replace DupConfigPtr() with GetConfig()	2021-03-16 19:16:10 +09:00
ossl_digest.c	[ruby/openssl] digest, hmac, ts, x509: use IO.binread in examples where appropriate	2021-03-16 19:16:11 +09:00
ossl_digest.h
ossl_engine.c
ossl_engine.h
ossl_hmac.c	[ruby/openssl] hmac: migrate from the low-level HMAC API to the EVP API	2021-03-16 19:16:11 +09:00
ossl_hmac.h
ossl_kdf.c
ossl_kdf.h
ossl_ns_spki.c
ossl_ns_spki.h
ossl_ocsp.c
ossl_ocsp.h
ossl_pkcs7.c
ossl_pkcs7.h
ossl_pkcs12.c
ossl_pkcs12.h
ossl_pkey.c	[ruby/openssl] [DOC] Fix RDoc markup	2021-03-16 19:16:11 +09:00
ossl_pkey.h	[ruby/openssl] pkey: refactor #export/#to_pem and #to_der	2021-03-16 19:16:10 +09:00
ossl_pkey_dh.c	[ruby/openssl] pkey: reimplement PKey::DH#compute_key and PKey::EC#dh_compute_key	2021-03-16 19:16:11 +09:00
ossl_pkey_dsa.c	[ruby/openssl] pkey: refactor #export/#to_pem and #to_der	2021-03-16 19:16:10 +09:00
ossl_pkey_ec.c	[ruby/openssl] pkey/ec: remove OpenSSL::PKey::EC::Group.new(ec_method) form	2021-03-16 19:16:11 +09:00
ossl_pkey_rsa.c	[ruby/openssl] pkey: refactor #export/#to_pem and #to_der	2021-03-16 19:16:10 +09:00
ossl_rand.c
ossl_rand.h
ossl_ssl.c	[ruby/openssl] Enhance TLS 1.3 support on LibreSSL 3.2/3.3	2021-03-16 19:37:06 +09:00
ossl_ssl.h
ossl_ssl_session.c
ossl_ts.c	[ruby/openssl] digest, hmac, ts, x509: use IO.binread in examples where appropriate	2021-03-16 19:16:11 +09:00
ossl_ts.h
ossl_x509.c
ossl_x509.h
ossl_x509attr.c
ossl_x509cert.c	[ruby/openssl] digest, hmac, ts, x509: use IO.binread in examples where appropriate	2021-03-16 19:16:11 +09:00
ossl_x509crl.c
ossl_x509ext.c	[ruby/openssl] config: replace DupConfigPtr() with GetConfig()	2021-03-16 19:16:10 +09:00
ossl_x509name.c
ossl_x509req.c
ossl_x509revoked.c
ossl_x509store.c	[ruby/openssl] x509store: update rdoc for X509::Store and X509::StoreContext	2021-03-16 19:16:11 +09:00
ruby_missing.h