* [ruby-core:89340] [Ruby trunk Bug#15219] Ruby 2.5.X supporting OpenSSL 1.1.1 and TLS 1.3
[not found] <redmine.issue-15219.20181009152014@ruby-lang.org>
@ 2018-10-09 15:20 ` jaruga
2018-10-09 18:08 ` [ruby-core:89344] [Ruby trunk Feature#15219] " shevegen
` (4 subsequent siblings)
5 siblings, 0 replies; 6+ messages in thread
From: jaruga @ 2018-10-09 15:20 UTC (permalink / raw)
To: ruby-core
Issue #15219 has been reported by jaruga (Jun Aruga).
----------------------------------------
Bug #15219: Ruby 2.5.X supporting OpenSSL 1.1.1 and TLS 1.3
https://bugs.ruby-lang.org/issues/15219
* Author: jaruga (Jun Aruga)
* Status: Open
* Priority: Normal
* Assignee:
* Target version:
* ruby -v:
* Backport: 2.3: UNKNOWN, 2.4: UNKNOWN, 2.5: UNKNOWN
----------------------------------------
I would be happy that the coming Ruby 2.5.2 would support OpenSSL 1.1.1 and TLS 1.3 [1].
To do that, it seems at least below patch has to be backported to Ruby 2.5.
net/http, net/ftp: fix session resumption with TLS 1.3
https://github.com/ruby/ruby/commit/1dfc377
And new ruby/openssl 2.2.2 has to be bundled in the Ruby 2.5.2.
Possible?
Thank you.
[1] OpenSSL 1.1.1 release note: https://www.openssl.org/blog/blog/2018/09/11/release111/
--
https://bugs.ruby-lang.org/
^ permalink raw reply [flat|nested] 6+ messages in thread
* [ruby-core:89344] [Ruby trunk Feature#15219] Ruby 2.5.X supporting OpenSSL 1.1.1 and TLS 1.3
[not found] <redmine.issue-15219.20181009152014@ruby-lang.org>
2018-10-09 15:20 ` [ruby-core:89340] [Ruby trunk Bug#15219] Ruby 2.5.X supporting OpenSSL 1.1.1 and TLS 1.3 jaruga
@ 2018-10-09 18:08 ` shevegen
2018-10-19 12:51 ` [ruby-core:89469] [Ruby trunk Feature#15219] Ruby 2.5.X to support " jaruga
` (3 subsequent siblings)
5 siblings, 0 replies; 6+ messages in thread
From: shevegen @ 2018-10-09 18:08 UTC (permalink / raw)
To: ruby-core
Issue #15219 has been updated by shevegen (Robert A. Heiler).
This would be nice indeed. I have a small gem that collects information about the
host-system (on the target computer platform; usually linux) available, and notifies
when there are more recent versions. I am a bit wary of upgrading openssl from
openssl-1.1.0i to openssl-1.1.1 mostly because I am never absolutely sure how well
a more recent openssl may work with ruby. And the primary reason for me to use
openssl (and have ruby support it, too) is so that I can push new gem releases
of my code.
So naturally, I think it would be nice if more recent openssl versions could be
supported on 2.5.x too.
Having said that, I think after x-mas, I will be using ruby 2.6.x so it would not
be of a massive benefit to me personally.
On a side note, if it were possible, it may be helpful to notify on the ruby-doc
website which versions of a particular software is supported.
Take:
https://ruby-doc.org/stdlib/libdoc/openssl/rdoc/OpenSSL.html
This page could list which version is compatible - or at the least has
been tested. I don't know of a good way to have this automatically for
all versions, but I think it may be useful for quite a few people. (Openssl,
zlib and Readline are usually what I need to have in the local ruby version,
since it is very convenient or necessary for other things.)
I think naruse is in charge of handling both 2.6.x and 2.5.x release so perhaps
he should be asked.
----------------------------------------
Feature #15219: Ruby 2.5.X supporting OpenSSL 1.1.1 and TLS 1.3
https://bugs.ruby-lang.org/issues/15219#change-74371
* Author: jaruga (Jun Aruga)
* Status: Open
* Priority: Normal
* Assignee:
* Target version:
----------------------------------------
I would be happy that the coming Ruby 2.5.2 would support OpenSSL 1.1.1 and TLS 1.3 [1].
To do that, it seems at least below patch has to be backported to Ruby 2.5.
net/http, net/ftp: fix session resumption with TLS 1.3
https://github.com/ruby/ruby/commit/1dfc377
And new ruby/openssl 2.2.2 has to be bundled in the Ruby 2.5.2.
Possible?
Thank you.
[1] OpenSSL 1.1.1 release note: https://www.openssl.org/blog/blog/2018/09/11/release111/
--
https://bugs.ruby-lang.org/
^ permalink raw reply [flat|nested] 6+ messages in thread
* [ruby-core:89469] [Ruby trunk Feature#15219] Ruby 2.5.X to support OpenSSL 1.1.1 and TLS 1.3
[not found] <redmine.issue-15219.20181009152014@ruby-lang.org>
2018-10-09 15:20 ` [ruby-core:89340] [Ruby trunk Bug#15219] Ruby 2.5.X supporting OpenSSL 1.1.1 and TLS 1.3 jaruga
2018-10-09 18:08 ` [ruby-core:89344] [Ruby trunk Feature#15219] " shevegen
@ 2018-10-19 12:51 ` jaruga
2018-12-16 21:57 ` [ruby-core:90579] [Ruby trunk Bug#15219][Closed] Backport: " naruse
` (2 subsequent siblings)
5 siblings, 0 replies; 6+ messages in thread
From: jaruga @ 2018-10-19 12:51 UTC (permalink / raw)
To: ruby-core
Issue #15219 has been updated by jaruga (Jun Aruga).
> To do that, it seems at least below patch has to be backported to Ruby 2.5.
>
> net/http, net/ftp: fix session resumption with TLS 1.3
> https://github.com/ruby/ruby/commit/1dfc377
Maybe this patch too.
config: support .include directive
https://github.com/ruby/openssl/pull/216
And optionally this patch.
test: use larger keys for SSL tests
https://github.com/ruby/openssl/pull/217
----------------------------------------
Feature #15219: Ruby 2.5.X to support OpenSSL 1.1.1 and TLS 1.3
https://bugs.ruby-lang.org/issues/15219#change-74508
* Author: jaruga (Jun Aruga)
* Status: Open
* Priority: Normal
* Assignee:
* Target version:
----------------------------------------
I would be happy that the coming Ruby 2.5.2 would support OpenSSL 1.1.1 and TLS 1.3 [1].
To do that, it seems at least below patch has to be backported to Ruby 2.5.
net/http, net/ftp: fix session resumption with TLS 1.3
https://github.com/ruby/ruby/commit/1dfc377
And new ruby/openssl 2.2.2 has to be bundled in the Ruby 2.5.2.
Possible?
Thank you.
[1] OpenSSL 1.1.1 release note: https://www.openssl.org/blog/blog/2018/09/11/release111/
--
https://bugs.ruby-lang.org/
^ permalink raw reply [flat|nested] 6+ messages in thread
* [ruby-core:90579] [Ruby trunk Bug#15219][Closed] Backport: Ruby 2.5.X to support OpenSSL 1.1.1 and TLS 1.3
[not found] <redmine.issue-15219.20181009152014@ruby-lang.org>
` (2 preceding siblings ...)
2018-10-19 12:51 ` [ruby-core:89469] [Ruby trunk Feature#15219] Ruby 2.5.X to support " jaruga
@ 2018-12-16 21:57 ` naruse
2019-01-14 11:27 ` [ruby-core:91077] [Ruby trunk Bug#15219] " nagachika00
2019-03-12 23:23 ` [ruby-core:91797] " nagachika00
5 siblings, 0 replies; 6+ messages in thread
From: naruse @ 2018-12-16 21:57 UTC (permalink / raw)
To: ruby-core
Issue #15219 has been updated by naruse (Yui NARUSE).
Tracker changed from Feature to Bug
Status changed from Open to Closed
Backport set to 2.4: DONTNEED, 2.5: UNKNOWN
Close to be on tracking on backport process.
----------------------------------------
Bug #15219: Backport: Ruby 2.5.X to support OpenSSL 1.1.1 and TLS 1.3
https://bugs.ruby-lang.org/issues/15219#change-75735
* Author: jaruga (Jun Aruga)
* Status: Closed
* Priority: Normal
* Assignee:
* Target version:
* ruby -v:
* Backport: 2.4: DONTNEED, 2.5: UNKNOWN
----------------------------------------
I would be happy that the coming Ruby 2.5.2 would support OpenSSL 1.1.1 and TLS 1.3 [1].
To do that, it seems at least below patch has to be backported to Ruby 2.5.
net/http, net/ftp: fix session resumption with TLS 1.3
https://github.com/ruby/ruby/commit/1dfc377
And new ruby/openssl 2.2.2 has to be bundled in the Ruby 2.5.2.
Possible?
Thank you.
[1] OpenSSL 1.1.1 release note: https://www.openssl.org/blog/blog/2018/09/11/release111/
--
https://bugs.ruby-lang.org/
^ permalink raw reply [flat|nested] 6+ messages in thread
* [ruby-core:91077] [Ruby trunk Bug#15219] Backport: Ruby 2.5.X to support OpenSSL 1.1.1 and TLS 1.3
[not found] <redmine.issue-15219.20181009152014@ruby-lang.org>
` (3 preceding siblings ...)
2018-12-16 21:57 ` [ruby-core:90579] [Ruby trunk Bug#15219][Closed] Backport: " naruse
@ 2019-01-14 11:27 ` nagachika00
2019-03-12 23:23 ` [ruby-core:91797] " nagachika00
5 siblings, 0 replies; 6+ messages in thread
From: nagachika00 @ 2019-01-14 11:27 UTC (permalink / raw)
To: ruby-core
Issue #15219 has been updated by nagachika (Tomoyuki Chikanaga).
```
Maybe this patch too.
config: support .include directive
https://github.com/ruby/openssl/pull/216
And optionally this patch.
test: use larger keys for SSL tests
https://github.com/ruby/openssl/pull/217
```
Hmm, these two pull requests are not merged yet in ruby/openssl and neither committed into ruby trunk.
We can backport them only after they are committed into trunk according to our stable branch management policy.
@rhenium Could you handle these pull requests?
----------------------------------------
Bug #15219: Backport: Ruby 2.5.X to support OpenSSL 1.1.1 and TLS 1.3
https://bugs.ruby-lang.org/issues/15219#change-76306
* Author: jaruga (Jun Aruga)
* Status: Closed
* Priority: Normal
* Assignee:
* Target version:
* ruby -v:
* Backport: 2.4: DONTNEED, 2.5: REQUIRED
----------------------------------------
I would be happy that the coming Ruby 2.5.2 would support OpenSSL 1.1.1 and TLS 1.3 [1].
To do that, it seems at least below patch has to be backported to Ruby 2.5.
net/http, net/ftp: fix session resumption with TLS 1.3
https://github.com/ruby/ruby/commit/1dfc377
And new ruby/openssl 2.2.2 has to be bundled in the Ruby 2.5.2.
Possible?
Thank you.
[1] OpenSSL 1.1.1 release note: https://www.openssl.org/blog/blog/2018/09/11/release111/
--
https://bugs.ruby-lang.org/
^ permalink raw reply [flat|nested] 6+ messages in thread
* [ruby-core:91797] [Ruby trunk Bug#15219] Backport: Ruby 2.5.X to support OpenSSL 1.1.1 and TLS 1.3
[not found] <redmine.issue-15219.20181009152014@ruby-lang.org>
` (4 preceding siblings ...)
2019-01-14 11:27 ` [ruby-core:91077] [Ruby trunk Bug#15219] " nagachika00
@ 2019-03-12 23:23 ` nagachika00
5 siblings, 0 replies; 6+ messages in thread
From: nagachika00 @ 2019-03-12 23:23 UTC (permalink / raw)
To: ruby-core
Issue #15219 has been updated by nagachika (Tomoyuki Chikanaga).
Backport changed from 2.4: DONTNEED, 2.5: REQUIRED to 2.4: DONTNEED, 2.5: DONE
ruby_2_5 r67237 merged revision(s) 64234,64252.
----------------------------------------
Bug #15219: Backport: Ruby 2.5.X to support OpenSSL 1.1.1 and TLS 1.3
https://bugs.ruby-lang.org/issues/15219#change-77071
* Author: jaruga (Jun Aruga)
* Status: Closed
* Priority: Normal
* Assignee:
* Target version:
* ruby -v:
* Backport: 2.4: DONTNEED, 2.5: DONE
----------------------------------------
I would be happy that the coming Ruby 2.5.2 would support OpenSSL 1.1.1 and TLS 1.3 [1].
To do that, it seems at least below patch has to be backported to Ruby 2.5.
net/http, net/ftp: fix session resumption with TLS 1.3
https://github.com/ruby/ruby/commit/1dfc377
And new ruby/openssl 2.2.2 has to be bundled in the Ruby 2.5.2.
Possible?
Thank you.
[1] OpenSSL 1.1.1 release note: https://www.openssl.org/blog/blog/2018/09/11/release111/
--
https://bugs.ruby-lang.org/
^ permalink raw reply [flat|nested] 6+ messages in thread
end of thread, other threads:[~2019-03-12 23:23 UTC | newest]
Thread overview: 6+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
[not found] <redmine.issue-15219.20181009152014@ruby-lang.org>
2018-10-09 15:20 ` [ruby-core:89340] [Ruby trunk Bug#15219] Ruby 2.5.X supporting OpenSSL 1.1.1 and TLS 1.3 jaruga
2018-10-09 18:08 ` [ruby-core:89344] [Ruby trunk Feature#15219] " shevegen
2018-10-19 12:51 ` [ruby-core:89469] [Ruby trunk Feature#15219] Ruby 2.5.X to support " jaruga
2018-12-16 21:57 ` [ruby-core:90579] [Ruby trunk Bug#15219][Closed] Backport: " naruse
2019-01-14 11:27 ` [ruby-core:91077] [Ruby trunk Bug#15219] " nagachika00
2019-03-12 23:23 ` [ruby-core:91797] " nagachika00
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).