General

Profile

aeris (Nicolas Vinot)

  • Login: aeris
  • Registered on: 04/03/2016
  • Last sign in: 03/15/2020

Issues

open closed Total
Assigned issues 0 0 0
Reported issues 0 4 4

Activity

03/16/2020

09:07 AM Ruby Bug #16692: net/http SNI not RFC 6066 compliant & wrong certificate hit
Seems [https://github.com/ruby/ruby/commit/54072e329cab7207fba133caba4fc12b45add8f9](this 2.7 patch) fix the problem.
Would be interesting to backport it to 2.6. aeris (Nicolas Vinot)

03/15/2020

11:04 PM Ruby Bug #16692 (Closed): net/http SNI not RFC 6066 compliant & wrong certificate hit
Hi,
Currently, net/http set the SNI to the address you want to connect to.
https://github.com/ruby/ruby/blob/master/lib/net/http.rb#L1025-L1026
This is maybe a wrong assumption because you can want to connect to a specific IP addr... aeris (Nicolas Vinot)

06/15/2018

10:02 AM Ruby Bug #14848 (Rejected): Net/HTTP doesn't take verify_callback into account when OpenSSL::SSL::VERIFY_NONE
Hi,
In (at least) net/http, the TLS connection is OK even if `verify_callback` return `false` if `verify_mode` is set to `OpenSSL::SSL::VERIFY_NONE`.
The callback is really called, but the TLS handshake is not stopped.
Use case: s... aeris (Nicolas Vinot)

10/29/2017

02:29 PM Ruby Feature #14067 (Third Party's Issue): TLS fallback SCSV (RFC 7507)
Hi here,
Here is a patch to support TLSĀ fallback SCSV [RFC 7507](https://tools.ietf.org/html/rfc7507).
https://github.com/ruby/ruby/pull/1733
Regards aeris (Nicolas Vinot)
01:21 PM Ruby Feature #14066 (Closed): Add CAA DNS RR on Resolv
Hi here,
Here is a small PR to add CAA DNS RR on Revolv
https://github.com/ruby/ruby/pull/1732
Regards, aeris (Nicolas Vinot)

Also available in: Atom