diff options
author | Kazuki Yamaguchi <k@rhe.jp> | 2021-10-25 00:09:24 +0900 |
---|---|---|
committer | Kazuki Yamaguchi <k@rhe.jp> | 2021-10-25 00:27:08 +0900 |
commit | bf780748b30f3f2498d0791a3605bf4946b6def1 (patch) | |
tree | 8d3085daf32b7e0fe0d0c63237295fa40b454b15 /test/fixtures/pkey | |
parent | 9b4f761e74a6f718d982d34d0bc45fa859fc264d (diff) | |
download | ruby-openssl-ky/ssl-unstarted-io.tar.gz |
ssl: disallow reading/writing to unstarted SSL socketky/ssl-unstarted-io
OpenSSL::SSL::SSLSocket allowed #read and #write to be called before an
SSL/TLS handshake is completed. They passed unencrypted data to the
underlying socket.
This behavior is very odd to have in this library. A verbose mode
warning "SSL session is not started yet" was emitted whenever this
happened. It also didn't behave well with OpenSSL::Buffering. Let's
just get rid of it.
Fixes: https://github.com/ruby/openssl/issues/9
Diffstat (limited to 'test/fixtures/pkey')
0 files changed, 0 insertions, 0 deletions