diff options
author | Kazuki Yamaguchi <k@rhe.jp> | 2021-03-20 23:16:16 +0900 |
---|---|---|
committer | Kazuki Yamaguchi <k@rhe.jp> | 2021-12-20 23:42:00 +0900 |
commit | 6ef0f272ebb2a4bd95471afcfe5224e72d2dad62 (patch) | |
tree | 3c06c223d0099c107bbabc63084de502d246e5de /ext/openssl/ossl_pkey.h | |
parent | 582606dc58d51d333e30860c1f2cea7a6774c7f8 (diff) | |
download | ruby-6ef0f272ebb2a4bd95471afcfe5224e72d2dad62.tar.gz |
[ruby/openssl] pkey: use OSSL_DECODER to load encrypted PEM on OpenSSL 3.0
OpenSSL 3.0 has rewritten routines to load pkeys (PEM_read_bio_* and
d2i_* functions) around the newly introduced OSSL_DECODER API.
This comes with a slight behavior change. They now decrypt and parse
each encountered PEM block, then check the kind of the block. This used
to be the reverse: they checked the PEM header to see the kind, and then
decrypted the content. This means that the password callback may now be
called repeatedly.
Let's use the OSSL_DECODER API directly on OpenSSL 3.0 so that the
return value from the password callback will be reused automatically.
https://github.com/ruby/openssl/commit/a84ea531bb
Diffstat (limited to 'ext/openssl/ossl_pkey.h')
0 files changed, 0 insertions, 0 deletions