Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: jruby/jruby-openssl
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: 955645736df1
Choose a base ref
...
head repository: jruby/jruby-openssl
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 2e70c2b0a1c1
Choose a head ref
  • 3 commits
  • 3 files changed
  • 1 contributor

Commits on Mar 3, 2017

  1. Copy the full SHA
    1459856 View commit details
  2. Copy the full SHA
    1846006 View commit details
  3. Copy the full SHA
    2e70c2b View commit details
Showing with 26 additions and 3 deletions.
  1. +24 −1 History.md
  2. +1 −1 lib/jopenssl/version.rb
  3. +1 −1 pom.xml
25 changes: 24 additions & 1 deletion History.md
Original file line number Diff line number Diff line change
@@ -1,10 +1,33 @@
## 0.9.21.dev

* add support for renegotiation_cb on SSLContext (#121)

## 0.9.20

* upgrade Bouncy-Castle to 1.56 http://bouncycastle.org/releasenotes.html
(additional security and robustness with 10 CVEs submitted as a result)
* add a dummy SSLContext#security_level= implementation
* no dup-ing for SSLContext/SSLSocket and X509 Store/StoreContext
* implement PKey initialize_copy (dup-ing)
* digest can be passed in as a String on PKey#sign/verify
* DSA+SHA1 is actually a supported algorithm
* reset signed-request -> sub-sequent req.verify will work correctly
* allow for digest name to be passed into Cert#sign
* be less fatal on Java 9
won't attempt reflective SPIs when accessibility checks fail!
* remove obsolete (deprecated) renamed classes
* verify correct WaitReadable is raised on connect_nonblock (jruby/jruby#1716)
* non-connected ssl socket raises EPIPE on connect_nonblock (MRI compat)
* fine to close a SSLSocket which is not-yet-connected (like in MRI)
* fix NPE when reading private keys (with passwd) (jruby/jruby#1784)

## 0.9.19

* re-use secure random from thread-context on SSL context initialization
* preliminary OpenSSL 1.1 (Ruby 2.4) compatibility bits (#112)
* try using thread-shared secure random gen (in PKey-s) where possible
* implement PKeyDSA#syssign and PKeyDSA#sysverify methods
* avoid (unnecessary) byte[] copies in PKey#sign/verify
* avoid (unnecessary) byte[] copies in PKey#sign/verify
* fix ClassCastException error in X509Store.verify (#113)
* align BH#hash with eql? (+ equals/hashCode on Java)

2 changes: 1 addition & 1 deletion lib/jopenssl/version.rb
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
module Jopenssl
VERSION = '0.9.20'
VERSION = '0.9.21.dev'
BOUNCY_CASTLE_VERSION = '1.56'
# @deprecated
module Version
2 changes: 1 addition & 1 deletion pom.xml
Original file line number Diff line number Diff line change
@@ -11,7 +11,7 @@ DO NOT MODIFIY - GENERATED CODE
<modelVersion>4.0.0</modelVersion>
<groupId>rubygems</groupId>
<artifactId>jruby-openssl</artifactId>
<version>0.9.20</version>
<version>0.9.21.dev-SNAPSHOT</version>
<packaging>gem</packaging>
<name>JRuby OpenSSL</name>
<description>JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library.</description>