openssl
openssl copied to clipboard
ruby
Provides SSL, TLS and general purpose cryptography.
There are many interface fixes that forward to the underlying IO which I'd like to take advantage of.
Respect the SSL options set by default by `SSL_CTX()` or by the system-wide OpenSSL configuration file. `OpenSSL::SSL::SSLContext#initialize` currently adds `OpenSSL::SSL::OP_ALL` on top of the default SSL options. Let's stop doing...
I would like to propose that we rename `SSLSocket#accept` and `SSLSocket#accept_nonblock` to `SSLSocket#start` and `SSLSocket#start_nonblock`. There are two reasons: 1. It aligns better with `SSLServer#start_immediately`. In other words, `start_immediately` ->...
Using ASN1_TIME_to_tm added in openssl 1.1.1 Closes https://github.com/ruby/openssl/issues/725
I think that we shouldn't mutate the `SSLContext` in `SSLServer` and instead be more proactive about setting the right defaults. ``` | FrozenError: can't modify frozen OpenSSL::SSL::SSLContext: # | →...
I found test fails with OpenSSL 3.3.0 on mingw environment https://github.com/ruby/ruby/actions/runs/8806703011/job/24172105094?pr=10610 ``` 2) Error: OpenSSL::TestASN1#test_generalizedtime: OpenSSL::ASN1::ASN1Error: generalizedtime is too short D:/a/ruby/ruby/src/test/openssl/test_asn1.rb:700:in `decode' D:/a/ruby/ruby/src/test/openssl/test_asn1.rb:700:in `decode_test' D:/a/ruby/ruby/src/test/openssl/test_asn1.rb:435:in `test_generalizedtime' 3) Error: OpenSSL::TestASN1#test_utctime: OpenSSL::ASN1::ASN1Error:...
This PR removes the warning message because prime Libraly will be the default gem. ``` ruby/openssl/test/openssl/test_bn.rb:266: warning: prime was loaded from the standard library, but is not part of the...
version of https://github.com/ruby/openssl/pull/803 scoped to store and store context classes. It adds frozen checks in all methods which perform state changes on internal state, which includes `X509_STORE_CTX` and `X509_STORE` state....
should probably be initialized as frozen, given no state modifications