gelf-rb icon indicating copy to clipboard operation
gelf-rb copied to clipboard

Published 20 hours ago verified publisher icon graylog-labs

Ruby 2.5.0: updated SSLContext interface

Open milgner opened this issue 5 years ago • 3 comments

Assigning ctx.ciphers does not work anymore like it used to. We'll need to set min_version and max_version instead.

milgner avatar Sep 13 '18 14:09 milgner

Hello,

Any update on that ?

Or should we use gelf 3.0.0 for ruby >= 2.5.0 ?

Simonot avatar Oct 19 '18 11:10 Simonot

Not sure if this is a separate issue, but I'm getting: SSL_CTX_set_cipher_list: invalid command when trying to use tls. It seems like the cipher string https://github.com/graylog-labs/gelf-rb/blob/eb2d31cdc4b37c316de880122279bcac52a08ba2/lib/gelf/transport/tcp_tls.rb#L91 should be:

"TLSv1.2:TLSv1.1:TLSv1:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!ECDSA:!ADH:!IDEA:!3DES"

Patching this solves the issue for me and is also in line with how the OpenSSL cli-tool behaves.

chriscoester avatar Oct 22 '18 12:10 chriscoester

^-- yep, this is required patch

matti avatar Nov 21 '19 09:11 matti