Kazuki Yamaguchi
Kazuki Yamaguchi
OpenSSL 3.0 is scheduled to be released later this year. It is a major version bump from 1.1 and contains architecture changes that affect Ruby/OpenSSL. From https://www.openssl.org/policies/releasestrat.html: > The following...
There are multiple places where it's necessary to know whether a pkey is a private key, a public key, or just key parameters. Unfortunately, OpenSSL doesn't expose an API for...
A collection of patches to support OpenSSL 3.0 API. Currently, as of 2021-05-25, it compiles with OpenSSL's master branch (3.0.0-alpha17), but many things are known to be broken and test...
Request for comments: Is it safe to do this? Would there be any issues? The digest library (::Digest) needs to either drop the OpenSSL backend or be updated to use...
The changes can be found at: https://github.com/ruby/openssl/compare/v2.1.3...v2.1.4
The changes can be found at: https://github.com/ruby/openssl/compare/v2.2.1...v2.2.2
An implementation of #731. The test suite passes on my box, but it needs more testing especially around the error handling. This adds support for IO-like object that is not...
https://github.com/ruby/openssl/issues/724 reminded me of this issue. Due to an insufficient error check with `sscanf()` in `asn1time_to_time()`, `OpenSSL::ASN1.decode` ignores any fractional seconds or time zone information in DER/BER. ``` $ ruby...
OpenSSL::Cipher#update currently allocates the output buffer with size (input data length)+(the block size of the cipher). This is insufficient for the id-aes{128,192,256}-wrap-pad (AES keywrap with padding) ciphers. They have a...
(This issue was originally reported at https://bugs.ruby-lang.org/issues/13902) When an application is compiled with cl.exe, it cannot access *_it variables properly (OCSP_BASICRESP_it in the example code below). I can reproduce this...