aboutsummaryrefslogtreecommitdiffstats
path: root/openssl.gemspec
Commit message (Collapse)AuthorAgeFilesLines
* Ruby/OpenSSL 3.0.1v3.0.1Kazuki Yamaguchi2022-09-081-1/+1
|
* Ruby/OpenSSL 3.0.0v3.0.0ky/release-3.0.0Kazuki Yamaguchi2021-12-251-1/+1
|
* require Ruby 2.6 or laterky/require-ruby-2.6Kazuki Yamaguchi2021-10-161-1/+1
| | | | | | | | Drop support for Ruby 2.3, 2.4, and 2.5. As of 2021-10, Ruby 2.6 is the oldest version that still receives security fixes from the Ruby core team, so it doesn't make much sense to keep code for those ancient versions.
* bump version number to 3.0.0.preKazuki Yamaguchi2021-10-161-1/+1
|
* Merge branch 'maint-2.2'Kazuki Yamaguchi2021-10-161-1/+1
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * maint-2.2: (43 commits) Ruby/OpenSSL 2.2.1 openssl is ractor-safe Fixed the results of OpenSSL::Timestamp::Response#failure_info Don't redefine #rb_intern over and over again Use rb_intern_const instead of rb_intern in Init functions Remove trailing spaces [ci skip] test/openssl/test_ssl: use TLS 1.2 for finished_messages on LibreSSL Ruby/OpenSSL 2.1.3 ssl: avoid directly storing String object in NPN callback x509store: explicitly call rb_gc_mark() against Store/StoreContext ssl: explicitly call rb_gc_mark() against SSLContext/SSLSocket objects digest: load digest library using Kernel#require pkey: use RSTRING_LENINT() instead of casting to int fix segv in Timestamp::{Request,Response,TokenInfo}.new ts: libressl build fix warning ext/openssl/extconf.rb: require OpenSSL version >= 1.0.1, < 3 .github/workflows: update OpenSSL/LibreSSL versions test: adjust test cases for LibreSSL 3.2.4 ssl: temporary lock string buffer while reading ssl: create a temporary frozen string buffer when writing ...
| * Ruby/OpenSSL 2.2.1v2.2.1ky/release-2.2.1Kazuki Yamaguchi2021-10-161-1/+1
| |
| * Merge branch 'maint-2.1' into maint-2.2Kazuki Yamaguchi2021-09-271-0/+1
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * maint-2.1: (22 commits) test/openssl/test_ssl: skip test_fallback_scsv if necessary test/openssl/test_ssl.rb: ignore SSLError when the connection is closed Fixed misspellings ext/openssl/extconf.rb: do not use -Werror=deprecated-declarations Guard static variable first ext/openssl/ossl_ssl.c: Use const declaration if LibreSSL >= 2.8.0 drop-in type check for rb_define_module_function rb_iterate now takes rb_block_call_func_t Add a /* fall through */ comment test/openssl/utils.rb: Extend the timeout test/test_ssl.rb: Use TLS1.2 test/test_ssl.rb: Use larger keys test: use larger keys for SSL tests test/test_pair: fix deadlock in test_connect_accept_nonblock Ignore warnings about ambiguous first argument with the negative integer. ext/openssl/ossl_bn.c (ossl_bn_initialize): get rid of SEGV errno.h must be included after config.h because config.h might define _REENTRANT, _THREAD_SAFE, etc., which affect how errno is defined on some architectures Fix call-seq of OpenSSL.fips_mode and WIN32OLE_METHOD#name [ci skip] Remove -Wno-parentheses flag. Correctly verify abbreviated IPv6 SANs ...
| | * Correctly verify abbreviated IPv6 SANsBrian Cunnie2021-09-261-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | [ This is a backport to the 2.1 branch. ] IPv6 SAN-verification accommodates ["zero-compression"](https://tools.ietf.org/html/rfc5952#section-2.2). It also accommodates non-compressed addresses. Previously the verification of IPv6 addresses would fail unless the address syntax matched a specific format (no zero-compression, no leading zeroes). As an example, the IPv6 loopback address, if represented as `::1`, would not verify. Nor would it verify if represented as `0000:0000:0000:0000:0000:0000:0000:0001`; however, both representations are valid, RFC-compliant representations. The library would only accept a very specific representation (i.e. `0:0:0:0:0:0:0:1`). This commit addresses that shortcoming, and ensures that any valid IPv6 representation will correctly verify. (cherry picked from commit 9322a104d16b02c7a79f9ab589859c9d63fabf52)
* | | use Bundler for dependency management and Rake gem tasksKazuki Yamaguchi2021-06-251-5/+0
|/ / | | | | | | | | | | | | | | | | | | Back in 2016, we chose not to use Bundler in Ruby/OpenSSL development because Bundler depended on openssl and could not be used for testing openssl itself - "bundle exec rake test" would end up with loading two different versions of openssl at the same time. This has been resolved long time ago. We can now safely use it for development dependency management and for Rake tasks.
* | Revert "Use version.rb in gemspec"Kazuki Yamaguchi2020-03-101-3/+1
| | | | | | | | | | | | | | | | | | | | | | This reverts commit 55cfee6edbc5c663cbe73323852b93292cf94a3f. Unfortunately, this doesn't work well in some places because RubyGems depends on openssl in some code paths. This ends up with defining OpenSSL::VERSION twice and producing warning: /work/ruby/ext/openssl/lib/openssl/version.rb:4: warning: already initialized constant OpenSSL::VERSION /work/ruby/.x86_64-linux/.ext/common/openssl/version.rb:5: warning: previous definition of VERSION was here
* | Use version.rb in gemspecMSP-Greg2020-02-241-1/+3
| | | | | | | | Use version.rb in gemspec so version string exists in one location
* | Drop to reference OpenSSL::VERSION on gemspec. It failed to test with ruby ↵Hiroshi SHIBATA2020-02-161-8/+1
| | | | | | | | core repository
* | fallback for ruby core repositoyHiroshi SHIBATA2020-01-281-1/+5
| |
* | Simplify handling of version constant.Samuel Williams2019-12-291-1/+4
| |
* | remove unneeded gem require for ipaddrnobletrout2019-11-011-1/+0
| | | | | | ipaddr is a builtin class for ruby, that is occasionally merged. If the version isn't specified by the runtime dependency, then it will default to needing the latest gem rather than the version that ships with that version of ruby. That will lead to all kinds of potential dependency fails that are most likely unneeded since this gem already requires ruby > 2.3.0
* | Merge branch 'maint'Kazuki Yamaguchi2018-10-181-1/+1
|\| | | | | | | | | | | | | | | * maint: Ruby/OpenSSL 2.1.2 Ruby/OpenSSL 2.0.9 needs openssl/opensslv.h x509name: fix OpenSSL::X509::Name#{cmp,<=>}
| * Ruby/OpenSSL 2.1.2v2.1.2Kazuki Yamaguchi2018-10-171-1/+1
| |
* | Merge branch 'maint'Kazuki Yamaguchi2018-05-121-1/+1
|\| | | | | | | | | | | | | | | | | | | | | * maint: Ruby/OpenSSL 2.1.1 Ruby/OpenSSL 2.0.8 test/test_ssl_session: set client protocol version explicitly test/test_pkey_rsa: fix test failure with OpenSSL 1.1.1 extconf.rb: fix build with LibreSSL 2.7.0 cipher: validate iterations argument for Cipher#pkcs5_keyivgen test/utils: disable Thread's report_on_exception in start_server
| * Ruby/OpenSSL 2.1.1v2.1.1Kazuki Yamaguchi2018-05-121-1/+1
| |
* | Correctly verify abbreviated IPv6 SANsBrian Cunnie2018-02-061-0/+1
|/ | | | | | | | | | | | | | | | | | | IPv6 SAN-verification accommodates ["zero-compression"](https://tools.ietf.org/html/rfc5952#section-2.2). It also accommodates non-compressed addresses. Previously the verification of IPv6 addresses would fail unless the address syntax matched a specific format (no zero-compression, no leading zeroes). As an example, the IPv6 loopback address, if represented as `::1`, would not verify. Nor would it verify if represented as `0000:0000:0000:0000:0000:0000:0000:0001`; however, both representations are valid, RFC-compliant representations. The library would only accept a very specific representation (i.e. `0:0:0:0:0:0:0:1`). This commit addresses that shortcoming, and ensures that any valid IPv6 representation will correctly verify.
* Ruby/OpenSSL 2.1.0v2.1.0ky/release-2.1.0Kazuki Yamaguchi2017-12-141-1/+1
|
* Ruby/OpenSSL 2.1.0.beta2v2.1.0.beta2ky/release-2.1.0.beta2Kazuki Yamaguchi2017-11-251-1/+1
|
* To use upstream url of githubSHIBATA Hiroshi2017-09-161-1/+1
|
* Ruby/OpenSSL 2.1.0.beta1v2.1.0.beta1ky/release-2.1.0.beta1Kazuki Yamaguchi2017-09-031-1/+1
|
* Merge branch 'maint'Kazuki Yamaguchi2017-08-081-0/+2
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * maint: Ruby/OpenSSL 2.0.5 ssl: fix compile error with OpenSSL 1.0.0 ssl: remove unsupported TLS versions from SSLContext::METHODS Add msys2 library dependency tag in gem metadata ossl_pem_passwd_cb: handle nil from the block explicitly ossl_pem_passwd_cb: do not check for taintedness ossl_pem_passwd_cb: relax passphrase length constraint appveyor.yml: test against Ruby 2.4 Rakefile: install_dependencies: install only when needed bio: do not use the FILE BIO method in ossl_obj2bio() bio: prevent possible GC issue in ossl_obj2bio() test/test_ssl: allow 3DES cipher suites in test_sslctx_set_params
| * Ruby/OpenSSL 2.0.5v2.0.5Kazuki Yamaguchi2017-08-081-1/+1
| |
| * Add msys2 library dependency tag in gem metadataLars Kanis2017-07-271-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | RubyInstaller2 supports metadata tags for installation of dependent MSYS2/MINGW libraries. The openssl gem requires the mingw-openssl package to be installed on the system, which the gem installer takes care about, when this tag is set. The feature is documented here: https://github.com/oneclick/rubyinstaller2/wiki/For-gem-developers#msys2-library-dependency This fixes issues like https://github.com/oneclick/rubyinstaller2/issues/54 and https://github.com/oneclick/rubyinstaller2/issues/53 .
| * Ruby/OpenSSL 2.0.4v2.0.4Kazuki Yamaguchi2017-06-141-1/+1
| |
| * Ruby/OpenSSL 2.0.3v2.0.3Kazuki Yamaguchi2017-01-311-1/+1
| |
* | Start preparing for 2.1.0Kazuki Yamaguchi2016-12-211-1/+1
|/
* Ruby/OpenSSL 2.0.2v2.0.2Kazuki Yamaguchi2016-12-211-1/+1
|
* Ruby/OpenSSL 2.0.1v2.0.1Kazuki Yamaguchi2016-12-101-1/+1
|
* Ruby/OpenSSL 2.0.0v2.0.0Kazuki Yamaguchi2016-11-301-1/+1
|
* Relax development dependencyKazuki Yamaguchi2016-11-031-3/+3
|
* Ruby/OpenSSL 2.0.0.beta.2v2.0.0.beta.2Kazuki Yamaguchi2016-09-081-1/+1
|
* Ruby/OpenSSL 2.0.0.beta.1v2.0.0.beta.1Kazuki Yamaguchi2016-08-291-1/+1
|
* Update openssl.gemspecKazuki Yamaguchi2016-08-261-9/+7
| | | | Add me to authors and cleanup files.
* Add RDoc task to RakefileKazuki Yamaguchi2016-07-091-0/+1
|
* Try using 'Ruby' as license to silence the SPDX warningZachary Scott2016-02-021-1/+1
|
* Only support Ruby 2.3.0Zachary Scott2016-02-021-0/+2
|
* Add LibreSSL test supportZachary Scott2015-11-261-3/+2
| | | | | | | | | | | This takes advantage of zzak/ruby-openssl-docker@e26d90172 Since the build container has Ruby without stdlib openssl, when building the gem to install locally we can't require openssl. This means that the gemspec has to use static version constant. We also removed bundler from development.
* Compile extension on gem install.Martin Sidaway2015-11-151-0/+1
|
* Remove LOAD_PATH hacks from gemspecZachary Scott2015-09-231-2/+0
|
* Add license to gemspec and minimum dependency requirement for developmentZachary Scott2015-02-091-4/+5
| | | | Fixes #3
* OpenSSL::VERSION is already definedZachary Scott2014-11-211-1/+1
|
* Update authors, add summary and description, email and website shouldZachary Scott2014-10-281-5/+5
| | | | use ruby-lang.org.
* rake test works now.SHIBATA Hiroshi2014-10-271-0/+1
|
* added rake-compilerSHIBATA Hiroshi2014-10-271-5/+6
|
* licenseSHIBATA Hiroshi2014-10-271-1/+0
|
* bundle gem opensslSHIBATA Hiroshi2014-10-271-0/+23
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-16 12:28:39 +0000