From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ruby-core-bounces@ruby-lang.org>
X-Original-To: poffice@blade.nagaokaut.ac.jp
Delivered-To: poffice@blade.nagaokaut.ac.jp
Received: from kankan.nagaokaut.ac.jp (kankan.nagaokaut.ac.jp [133.44.2.24])
	by blade.nagaokaut.ac.jp (Postfix) with ESMTP id 7D80319602C8
	for <poffice@blade.nagaokaut.ac.jp>; Sun, 19 Jul 2015 00:09:54 +0900 (JST)
Received: from funfun.nagaokaut.ac.jp (funfun.nagaokaut.ac.jp [133.44.2.201])
	by kankan.nagaokaut.ac.jp (Postfix) with ESMTP id 202EAB5D9EE
	for <poffice@blade.nagaokaut.ac.jp>; Sun, 19 Jul 2015 00:39:08 +0900 (JST)
Received: from funfun.nagaokaut.ac.jp (localhost.nagaokaut.ac.jp [127.0.0.1])
	by funfun.nagaokaut.ac.jp (Postfix) with ESMTP id 10E0097A827
	for <poffice@blade.nagaokaut.ac.jp>; Sun, 19 Jul 2015 00:39:11 +0900 (JST)
X-Virus-Scanned: amavisd-new at nagaokaut.ac.jp
Authentication-Results: funfun.nagaokaut.ac.jp (amavisd-new);
	dkim=fail (1024-bit key) reason="fail (message has been altered)"
	header.d=sendgrid.me
Received: from funfun.nagaokaut.ac.jp ([127.0.0.1])
	by funfun.nagaokaut.ac.jp (funfun.nagaokaut.ac.jp [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id XrqEB-ewTQhA for <poffice@blade.nagaokaut.ac.jp>;
	Sun, 19 Jul 2015 00:39:10 +0900 (JST)
Received: from voscc.nagaokaut.ac.jp (voscc.nagaokaut.ac.jp [133.44.1.100])
	by funfun.nagaokaut.ac.jp (Postfix) with ESMTP id C77F197A826
	for <poffice@blade.nagaokaut.ac.jp>; Sun, 19 Jul 2015 00:39:10 +0900 (JST)
Received: from neon.ruby-lang.org (neon.ruby-lang.org [221.186.184.75])
	by voscc.nagaokaut.ac.jp (Postfix) with ESMTP id BEE42952439
	for <poffice@blade.nagaokaut.ac.jp>; Sun, 19 Jul 2015 00:39:07 +0900 (JST)
Received: from [221.186.184.76] (localhost [IPv6:::1])
	by neon.ruby-lang.org (Postfix) with ESMTP id 9F947120454;
	Sun, 19 Jul 2015 00:39:07 +0900 (JST)
X-Original-To: ruby-core@ruby-lang.org
Delivered-To: ruby-core@ruby-lang.org
Received: from o10.shared.sendgrid.net (o10.shared.sendgrid.net
 [173.193.132.135])
 by neon.ruby-lang.org (Postfix) with ESMTPS id 9F858120443
 for <ruby-core@ruby-lang.org>; Sun, 19 Jul 2015 00:39:04 +0900 (JST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sendgrid.me; 
 h=from:to:references:subject:mime-version:content-type:content-transfer-encoding:list-id;
 s=smtpapi; bh=A8xb2uKlVkAwCkNpO0hEQnauLNA=; b=TjfY1Dh93/2B0MSojT
 WifBihl+v0gXZ1bMQaQbdFkuHAmFVGqWflnMxdGw6bOvYx19jlO5HtUbOt2Hns+H
 NuWHACaeF3iB5o8Mh/vBnlwUTwuxoRqQbetXgyTSYEVgIVCizfZrBIu3TH63AcYG
 w+tODMksVeCn1I/Yx0zOOFVPU=
Received: by filter0814p1mdw1.sendgrid.net with SMTP id
 filter0814p1mdw1.2498.55AA731125
 2015-07-18 15:38:59.635814382 +0000 UTC
Received: from herokuapp.com (ec2-54-161-78-149.compute-1.amazonaws.com
 [54.161.78.149])
 by ismtpd-046 (SG) with ESMTP id 14ea1d1841e.6f29.5614b6
 for <ruby-core@ruby-lang.org>; Sat, 18 Jul 2015 15:38:59 +0000 (UTC)
Date: Sat, 18 Jul 2015 15:38:59 +0000
From: merch-redmine@jeremyevans.net
To: ruby-core@ruby-lang.org
Message-ID: <redmine.journal-53456.20150718153858.a74a6aad69f0d6d3@ruby-lang.org>
References: <redmine.issue-11366.20150717213608@ruby-lang.org>
Mime-Version: 1.0
Content-Type: text/plain;
 charset=UTF-8
Content-Transfer-Encoding: 7bit
X-Redmine-MailingListIntegration-Message-Ids: 44649
X-Redmine-Project: ruby-trunk
X-Redmine-Issue-Id: 11366
X-Redmine-Issue-Author: jeremyevans0
X-Redmine-Sender: jeremyevans0
X-Mailer: Redmine
X-Redmine-Host: bugs.ruby-lang.org
X-Redmine-Site: Ruby Issue Tracking System
X-Auto-Response-Suppress: All
Auto-Submitted: auto-generated
X-SG-EID: ync6xU2WACa70kv/Ymy4QrNMhiuLXJG8OTL2vJD1yS7WLosys7tYmXFYuPsDdyYm1+kkaKP/YtlOI7
 6CUcE/S3ypbGOtSCxghfyYLWxE/yG9k2tLhxXIaVL6cYD/HPkaqRXezR8os9gUys6mY45iF3cYJrFP
 R82mOweUX4lNUDHfyUQg+Ybxfv6TzCp/faUU
X-ML-Name: ruby-core
X-Mail-Count: 70032
Subject: [ruby-core:70032] [Ruby trunk - Bug #11366] Don't force SSLv3 in
 test, as it is insecure and may not be supported
X-BeenThere: ruby-core@ruby-lang.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Ruby developers <ruby-core@ruby-lang.org>
List-Id: Ruby developers <ruby-core.ruby-lang.org>
List-Unsubscribe: <http://lists.ruby-lang.org/cgi-bin/mailman/options/ruby-core>, 
 <mailto:ruby-core-request@ruby-lang.org?subject=unsubscribe>
List-Post: <mailto:ruby-core@ruby-lang.org>
List-Help: <mailto:ruby-core-request@ruby-lang.org?subject=help>
List-Subscribe: <http://lists.ruby-lang.org/cgi-bin/mailman/listinfo/ruby-core>, 
 <mailto:ruby-core-request@ruby-lang.org?subject=subscribe>
Errors-To: ruby-core-bounces@ruby-lang.org
Sender: "ruby-core" <ruby-core-bounces@ruby-lang.org>

Issue #11366 has been updated by Jeremy Evans.


I think this change may require #11367 to work correctly.  I thought the patches were not related, but it's possible if you are using TLS instead of SSLv3, then you also need to turn off tickets for external session callbacks to work.

----------------------------------------
Bug #11366: Don't force SSLv3 in test, as it is insecure and may not be supported
https://bugs.ruby-lang.org/issues/11366#change-53456

* Author: Jeremy Evans
* Status: Open
* Priority: Normal
* Assignee: 
* ruby -v: ruby 2.3.0dev (2015-07-16 openbsd 51261) [x86_64-openbsd]
* Backport: 2.0.0: UNKNOWN, 2.1: UNKNOWN, 2.2: UNKNOWN
----------------------------------------
LibreSSL disables SSLv3 by default, and there's no reason this code
should require SSLv3.

---Files--------------------------------
0004-Don-t-force-SSLv3-in-test-as-it-is-insecure-and-may-.patch (932 Bytes)


-- 
https://bugs.ruby-lang.org/