Project

General

Profile

Feature #4556

Please add option which enable SSLv2 support

Added by iwamatsu (Nobuhiro Iwamatsu) almost 9 years ago. Updated almost 9 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Target version:
-
[ruby-dev:<unknown>]

Description

=begin
SSLv2 becomes disabled in much environment, because this has several vulnerabilities.
This patch disable SSLv2 in Ruby.
If user want to use SSLv2 in ruby, you need config with --enable-opensslv2.
The SSLv2 support is disable by default.

=end

Files

0001-Add-option-which-enable-SSLv2-support.patch (1.68 KB) 0001-Add-option-which-enable-SSLv2-support.patch iwamatsu (Nobuhiro Iwamatsu), 04/06/2011 12:58 PM
0001-Add-option-which-enable-SSLv2-support.patch (1.69 KB) 0001-Add-option-which-enable-SSLv2-support.patch iwamatsu (Nobuhiro Iwamatsu), 04/06/2011 01:12 PM

Related issues

Related to Backport192 - Backport #4861: Backport r31528 to 1.9.2Closed06/10/2011yugui (Yuki Sonoda)Actions
Has duplicate Ruby master - Bug #4562: [pull requested] ./config no-ssl2で作ったopensslとext/opensslが混ざらないClosed04/08/2011Actions
#1

Updated by iwamatsu (Nobuhiro Iwamatsu) almost 9 years ago

=begin
Sorry, The first patch is broken.
I attched new patch.
=end

#3

Updated by iwamatsu (Nobuhiro Iwamatsu) almost 9 years ago

  • Status changed from Open to Closed
  • % Done changed from 0 to 100

=begin
This issue was solved with changeset r31346.
Nobuhiro, thank you for reporting this issue.
Your contribution to Ruby is greatly appreciated.
May Ruby be with you.

  • ext/openssl/extconf.rb: Should check SSLv2_*method. openssl compiled with "no-ssl2" the extconf don't fail when running `make' having this compilation errors. Patched by Laurent Arnoud. fixes #4562, #4556 =end

Also available in: Atom PDF