ruby.git/ext/openssl/ossl_pkey_dsa.c, branch v3_2_11 The Ruby Programming Language [ruby/openssl] Constify when building with OpenSSL 3 2022-12-23T00:39:15+00:00 Nobuyoshi Nakada nobu@ruby-lang.org 2022-07-08T15:17:25+00:00 d7d1bb3e871108b787d67da1f0d11d317bdfacf7 https://github.com/ruby/openssl/commit/c0023822fe 
https://github.com/ruby/openssl/commit/c0023822fe
[ruby/openssl] pkey: use EVP_PKEY_dup() if available 2021-12-20T14:42:01+00:00 Kazuki Yamaguchi k@rhe.jp 2021-04-22T07:33:59+00:00 df6589e418adb2a4018e40d53dab2fd5556ed41e We can use it to implement OpenSSL::PKey::PKey#initialize_copy. This should work on all key types, not just DH/DSA/EC/RSA types. https://github.com/ruby/openssl/commit/66cd8cbaaf 
We can use it to implement OpenSSL::PKey::PKey#initialize_copy. This
should work on all key types, not just DH/DSA/EC/RSA types.

https://github.com/ruby/openssl/commit/66cd8cbaaf
[ruby/openssl] pkey: allocate EVP_PKEY on #initialize 2021-12-20T14:42:01+00:00 Kazuki Yamaguchi k@rhe.jp 2021-04-12T09:32:40+00:00 c1a36ebfda8ba570173e2844bc584786852e6190 Allocate an EVP_PKEY when the content is ready: when #initialize or #initialize_copy is called, rather than when a T_DATA is allocated. This is more natural because the lower level API has been deprecated and an EVP_PKEY is becoming the minimum unit of handling keys. https://github.com/ruby/openssl/commit/74f6c61756 
Allocate an EVP_PKEY when the content is ready: when #initialize
or #initialize_copy is called, rather than when a T_DATA is allocated.
This is more natural because the lower level API has been deprecated
and an EVP_PKEY is becoming the minimum unit of handling keys.

https://github.com/ruby/openssl/commit/74f6c61756
[ruby/openssl] pkey/dsa: refactor DSA#sys{sign,verify} with PKey#{sign,verify}_raw 2021-07-18T08:45:01+00:00 Kazuki Yamaguchi k@rhe.jp 2020-07-10T04:51:18+00:00 5fc2912e60c2bc58ff486d3f23f654f742332d3f With the newly added OpenSSL::PKey::PKey#{sign,verify}_raw, OpenSSL::PKey::DSA's low level signing operation methods can be implemented in Ruby. The definitions are now in lib/openssl/pkey.rb. https://github.com/ruby/openssl/commit/ce805adf0c 
With the newly added OpenSSL::PKey::PKey#{sign,verify}_raw,
OpenSSL::PKey::DSA's low level signing operation methods can be
implemented in Ruby. The definitions are now in lib/openssl/pkey.rb.

https://github.com/ruby/openssl/commit/ce805adf0c
[ruby/openssl] pkey: implement {DH,DSA,RSA}#public_key in Ruby 2021-07-18T08:44:51+00:00 Kazuki Yamaguchi k@rhe.jp 2021-04-15T10:11:32+00:00 3fe8387950f83874372172a79233ffc0d5d335b0 The low-level API that is used to implement #public_key is deprecated in OpenSSL 3.0. It is actually very simple to implement in another way, using existing methods only, in much shorter code. Let's do it. While we are at it, the documentation is updated to recommend against using #public_key. Now that OpenSSL::PKey::PKey implements public_to_der method, there is no real use case for #public_key in newly written Ruby programs. https://github.com/ruby/openssl/commit/48a6c391ef 
The low-level API that is used to implement #public_key is deprecated
in OpenSSL 3.0. It is actually very simple to implement in another way,
using existing methods only, in much shorter code. Let's do it.

While we are at it, the documentation is updated to recommend against
using #public_key. Now that OpenSSL::PKey::PKey implements public_to_der
method, there is no real use case for #public_key in newly written Ruby
programs.

https://github.com/ruby/openssl/commit/48a6c391ef
[ruby/openssl] pkey: implement #to_text using EVP API 2021-07-18T08:44:50+00:00 Kazuki Yamaguchi k@rhe.jp 2020-05-17T09:25:38+00:00 5d1693aac56bcae37e1f81af1f25966269c4619a Use EVP_PKEY_print_private() instead of the low-level API *_print() functions, such as RSA_print(). EVP_PKEY_print_*() family was added in OpenSSL 1.0.0. Note that it falls back to EVP_PKEY_print_public() and EVP_PKEY_print_params() as necessary. This is required for EVP_PKEY_DH type for which _private() fails if the private component is not set in the pkey object. Since the new API works in the same way for all key types, we now implement #to_text in the base class OpenSSL::PKey::PKey rather than in each subclass. https://github.com/ruby/openssl/commit/e0b4c56956 
Use EVP_PKEY_print_private() instead of the low-level API *_print()
functions, such as RSA_print().

EVP_PKEY_print_*() family was added in OpenSSL 1.0.0.

Note that it falls back to EVP_PKEY_print_public() and
EVP_PKEY_print_params() as necessary. This is required for EVP_PKEY_DH
type for which _private() fails if the private component is not set in
the pkey object.

Since the new API works in the same way for all key types, we now
implement #to_text in the base class OpenSSL::PKey::PKey rather than in
each subclass.

https://github.com/ruby/openssl/commit/e0b4c56956
[ruby/openssl] pkey/dsa: use high level EVP interface to generate parameters and keys 2021-07-18T08:44:49+00:00 Kazuki Yamaguchi k@rhe.jp 2020-05-17T13:14:03+00:00 38436d1f5cb03520a2a4acca81f013de1c20daa5 Implement PKey::DSA.new(size) and PKey::DSA.generate using OpenSSL::PKey.generate_parameters and .generate_key instead of the low level DSA functions. https://github.com/ruby/openssl/commit/1800a8d5eb 
Implement PKey::DSA.new(size) and PKey::DSA.generate using
OpenSSL::PKey.generate_parameters and .generate_key instead of the low
level DSA functions.

https://github.com/ruby/openssl/commit/1800a8d5eb
[ruby/openssl] pkey: refactor #export/#to_pem and #to_der 2021-03-16T10:16:10+00:00 Kazuki Yamaguchi k@rhe.jp 2017-06-13T15:25:43+00:00 1f44640677cc92c105a5b624a021cefdfe645f9a Add ossl_pkey_export_traditional() and ossl_pkey_export_spki() helper functions, and use them. This reduces code duplication. https://github.com/ruby/openssl/commit/56f0d34d63 
Add ossl_pkey_export_traditional() and ossl_pkey_export_spki() helper
functions, and use them. This reduces code duplication.

https://github.com/ruby/openssl/commit/56f0d34d63
[ruby/openssl] pkey: refactor DER/PEM-encoded string parsing code 2021-03-16T10:16:10+00:00 Kazuki Yamaguchi k@rhe.jp 2017-06-13T14:39:41+00:00 707e3d49cbd8e648c6e6496daedb98bf17674dc7 Export the flow used by OpenSSL::PKey.read and let the subclasses call it before attempting other formats. https://github.com/ruby/openssl/commit/d963d4e276 
Export the flow used by OpenSSL::PKey.read and let the subclasses call
it before attempting other formats.

https://github.com/ruby/openssl/commit/d963d4e276
[ruby/openssl] pkey: inline {rsa,dsa,dh,ec}_instance() 2021-03-16T10:16:10+00:00 Kazuki Yamaguchi k@rhe.jp 2017-03-16T07:09:35+00:00 c157f6e787221bcdbf8b6bb28db1b43578b89d66 Merge the code into the callers so that the wrapping Ruby object is allocated before the raw key object is allocated. This prevents possible memory leak on Ruby object allocation failure, and also reduces the lines of code. https://github.com/ruby/openssl/commit/1eb1366615 
Merge the code into the callers so that the wrapping Ruby object is
allocated before the raw key object is allocated. This prevents possible
memory leak on Ruby object allocation failure, and also reduces the
lines of code.

https://github.com/ruby/openssl/commit/1eb1366615