[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ruby-core
Subject:    [ruby-core:70916] [Ruby trunk - Feature #11552] ext/openssl: choose the OpenSSL::Digest class for Op
From:       zzak () ruby-lang ! org
Date:       2015-09-25 23:06:20
Message-ID: redmine.journal-54279.20150925230619.5c1397b20e2b361f () ruby-lang ! org
[Download RAW message or body]

Issue #11552 has been updated by Zachary Scott.

Assignee set to openssl

----------------------------------------
Feature #11552: ext/openssl: choose the OpenSSL::Digest class for \
OpenSSL::OCSP::Request.sign and OpenSSL::OCSP::BasicResponse.sign \
https://bugs.ruby-lang.org/issues/11552#change-54279

* Author: Tim Shirley
* Status: Open
* Priority: Normal
* Assignee: openssl
----------------------------------------
ossl_ocsp.c is currently hard-coded to use SHA1 signatures when signing OCSP requests \
and basic responses, but SHA1 is being phased out for this purpose by web clients.  \
The attached patch provides an optional parameter to the two sign methods to allow \
other digest algorithms to be specified.  It is a backwards-compatible change since \
the new parameter is last and optional, and it will default to SHA1 if not specified. \
I've included basic tests as well in the patch.

---Files--------------------------------
ruby-changes.patch (5.49 KB)


-- 
https://bugs.ruby-lang.org/


[prev in list] [next in list] [prev in thread] [next in thread]