From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ruby-core-bounces@ruby-lang.org>
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on dcvr.yhbt.net
X-Spam-Level: 
X-Spam-ASN: AS4713 221.184.0.0/13
X-Spam-Status: No, score=-3.7 required=3.0 tests=AWL,BAYES_00,
	MAILING_LIST_MULTI,RCVD_IN_DNSWL_MED,SPF_PASS shortcircuit=no
	autolearn=ham autolearn_force=no version=3.4.2
Received: from neon.ruby-lang.org (neon.ruby-lang.org [221.186.184.75])
	by dcvr.yhbt.net (Postfix) with ESMTP id 3BC33211B3
	for <normalperson@yhbt.net>; Mon,  3 Dec 2018 07:59:12 +0000 (UTC)
Received: from neon.ruby-lang.org (localhost [IPv6:::1])
	by neon.ruby-lang.org (Postfix) with ESMTP id E52BB12121E;
	Mon,  3 Dec 2018 16:59:09 +0900 (JST)
Received: from o1678916x28.outbound-mail.sendgrid.net
 (o1678916x28.outbound-mail.sendgrid.net [167.89.16.28])
 by neon.ruby-lang.org (Postfix) with ESMTPS id 95FC91210A5
 for <ruby-core@ruby-lang.org>; Mon,  3 Dec 2018 16:59:08 +0900 (JST)
Received: by filter0082p3las1.sendgrid.net with SMTP id
 filter0082p3las1-30118-5C04E249-25
 2018-12-03 07:59:05.810305898 +0000 UTC m=+1510795.153228624
Received: from herokuapp.com (ec2-54-211-166-66.compute-1.amazonaws.com
 [54.211.166.66])
 by ismtpd0016p1iad1.sendgrid.net (SG) with ESMTP id N3d58nVrRrKxL6doKNbHpQ
 for <ruby-core@ruby-lang.org>; Mon, 03 Dec 2018 07:59:05.514 +0000 (UTC)
Date: Mon, 03 Dec 2018 07:59:06 +0000 (UTC)
From: shyouhei@ruby-lang.org
To: ruby-core@ruby-lang.org
Message-ID: <redmine.journal-75368.20181203075905.304c7916c0a4149e@ruby-lang.org>
References: <redmine.issue-14915.20180716175313@ruby-lang.org>
Mime-Version: 1.0
X-Redmine-MailingListIntegration-Message-Ids: 65646
X-Redmine-Project: ruby-trunk
X-Redmine-Issue-Id: 14915
X-Redmine-Issue-Author: jeremyevans0
X-Redmine-Sender: shyouhei
X-Mailer: Redmine
X-Redmine-Host: bugs.ruby-lang.org
X-Redmine-Site: Ruby Issue Tracking System
X-Auto-Response-Suppress: All
Auto-Submitted: auto-generated
X-SG-EID: ync6xU2WACa70kv/Ymy4QrNMhiuLXJG8OTL2vJD1yS4vBG57G3uWKh76y2zkZkOyokzblwL8jHR2Re
 Thk2q8yAo7aIdzVJWHaVYg0cJbZaz/ipgVJHc530NnzrpBkCfXaP5d2pW9fEtVKtxrYtujObSJ6g8n
 Dwnw+coPgTdQZg/zPoG7msfoEVPyvfGxf0s2bafw8lq+EKSywG2NkiF5rA==
X-ML-Name: ruby-core
X-Mail-Count: 90250
Subject: [ruby-core:90250] [Ruby trunk Feature#14915][Open] Deprecate
	String#crypt
X-BeenThere: ruby-core@ruby-lang.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Ruby developers <ruby-core@ruby-lang.org>
List-Id: Ruby developers <ruby-core.ruby-lang.org>
List-Unsubscribe: <https://lists.ruby-lang.org/cgi-bin/mailman/options/ruby-core>, 
 <mailto:ruby-core-request@ruby-lang.org?subject=unsubscribe>
List-Post: <mailto:ruby-core@ruby-lang.org>
List-Help: <mailto:ruby-core-request@ruby-lang.org?subject=help>
List-Subscribe: <https://lists.ruby-lang.org/cgi-bin/mailman/listinfo/ruby-core>, 
 <mailto:ruby-core-request@ruby-lang.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: ruby-core-bounces@ruby-lang.org
Sender: "ruby-core" <ruby-core-bounces@ruby-lang.org>

Issue #14915 has been updated by shyouhei (Shyouhei Urabe).

Status changed from Closed to Open

I did not intend to close this ticket.  What remains to be discussed is:

- Should we need to add warnings?
- If that is the case, when and how?

----------------------------------------
Feature #14915: Deprecate String#crypt
https://bugs.ruby-lang.org/issues/14915#change-75368

* Author: jeremyevans0 (Jeremy Evans)
* Status: Open
* Priority: Normal
* Assignee: 
* Target version: 
----------------------------------------
This method is system and implementation dependent, and the
portable usage mentioned in the documentation is not truly
portable (doesn't work on OpenBSD) and insecure as it uses DES.
For systems that lack a crypt(3) implementation, Ruby will
happily substitute a version that only supports DES.  It's 2018,
using DES should be avoided if at all possible.

The only internal usage of String#crypt in Ruby is in Webrick,
where it uses DES for basic authentication with an htpasswd file.
That could and should be changed to use a more secure hash by
default (bcrypt since that's the most secure htpasswd format),
or at least allow the user to customize Webrick's authentication.
I expect there are few if any users actively using Webrick's
htpasswd support.

This moves the String#crypt implementation to the string/crypt
extension, but leaves the String#crypt core method.  The core
method prints a deprecation warning, then loads the string/crypt
extension. The string/crypt extension undefines the String#crypt
core method, then defines the previous implementation.

Because extensions use extconf.rb instead of configure for their
configuration, this ports the related configure.ac code to
extconf.rb.  I'm not sure that is done correctly and works on
all platforms, it will need testing.

For systems that lack a crypt(3) implementation, this modifies the
fallback code to only define crypt_r, since that is the only
function that String#crypt will call in that case.

While the patch just deprecates String#crypt, I think
we should plan to remove support from ruby:

2.6: core method deprecated
2.7: core method removed, string/crypt extension ships with ruby
2.8: string/crypt extension moves to external gem, not shipped

---Files--------------------------------
0001-Deprecate-String-crypt-move-implementation-to-string.patch (20.5 KB)
0001-Deprecate-String-crypt.patch (7.48 KB)
0001-Deprecate-String-crypt.patch (7.35 KB)
0001-Deprecate-String-crypt.patch (7.43 KB)


-- 
https://bugs.ruby-lang.org/