ruby.git/test/openssl/test_pkey.rb, branch v3_2_11 The Ruby Programming Language [ruby/openssl] test/openssl/test_pkey.rb: allow failures in test_s_generate_parameters 2022-12-23T00:39:15+00:00 Kazuki Yamaguchi k@rhe.jp 2022-12-22T21:04:20+00:00 75e7b85e3ec0b9724cce585d31c2c3c5aaa6a9a0 The root cause has been fixed by OpenSSL 3.0.6, but Ubuntu 22.04's OpenSSL package has not backported the patch yet. Reference: https://github.com/ruby/openssl/issues/492 https://github.com/ruby/openssl/commit/f2e2a5e5ed 
The root cause has been fixed by OpenSSL 3.0.6, but Ubuntu 22.04's
OpenSSL package has not backported the patch yet.

Reference: https://github.com/ruby/openssl/issues/492

https://github.com/ruby/openssl/commit/f2e2a5e5ed
[ruby/openssl] test/openssl/test_pkey: use EC keys for PKey.generate_parameters tests 2021-10-23T04:38:39+00:00 Kazuki Yamaguchi k@rhe.jp 2020-05-17T17:35:35+00:00 95044fa13b2df0377305c747c4d2b36cbdfbb750 OpenSSL 3.0 refuses to generate DSA parameters shorter than 2048 bits, but generating 2048 bits parameters takes very long time. Let's use EC in these test cases instead. https://github.com/ruby/openssl/commit/c732387ee5 
OpenSSL 3.0 refuses to generate DSA parameters shorter than 2048 bits,
but generating 2048 bits parameters takes very long time. Let's use EC
in these test cases instead.

https://github.com/ruby/openssl/commit/c732387ee5
[ruby/openssl] pkey: implement #to_text using EVP API 2021-07-18T08:44:50+00:00 Kazuki Yamaguchi k@rhe.jp 2020-05-17T09:25:38+00:00 5d1693aac56bcae37e1f81af1f25966269c4619a Use EVP_PKEY_print_private() instead of the low-level API *_print() functions, such as RSA_print(). EVP_PKEY_print_*() family was added in OpenSSL 1.0.0. Note that it falls back to EVP_PKEY_print_public() and EVP_PKEY_print_params() as necessary. This is required for EVP_PKEY_DH type for which _private() fails if the private component is not set in the pkey object. Since the new API works in the same way for all key types, we now implement #to_text in the base class OpenSSL::PKey::PKey rather than in each subclass. https://github.com/ruby/openssl/commit/e0b4c56956 
Use EVP_PKEY_print_private() instead of the low-level API *_print()
functions, such as RSA_print().

EVP_PKEY_print_*() family was added in OpenSSL 1.0.0.

Note that it falls back to EVP_PKEY_print_public() and
EVP_PKEY_print_params() as necessary. This is required for EVP_PKEY_DH
type for which _private() fails if the private component is not set in
the pkey object.

Since the new API works in the same way for all key types, we now
implement #to_text in the base class OpenSSL::PKey::PKey rather than in
each subclass.

https://github.com/ruby/openssl/commit/e0b4c56956
[ruby/openssl] Add compare? method to OpenSSL::PKey that wraps EVP_PKEY_cmp. 2021-03-16T10:16:11+00:00 Colton Jenkins jenkinscolton7@gmail.com 2020-07-05T21:25:54+00:00 c71afc9db7fd938a71f806bace7a2aed2722c0e9 Explicitly check for type given some conflicting statements within openssl's documentation around EVP_PKEY_cmp and EVP_PKEY_ASN1_METHOD(3). Add documentation with an example for compare? https://github.com/ruby/openssl/commit/0bf51da6e2 
Explicitly check for type given some conflicting statements within openssl's
documentation around EVP_PKEY_cmp and EVP_PKEY_ASN1_METHOD(3).
Add documentation with an example for compare?

https://github.com/ruby/openssl/commit/0bf51da6e2
[ruby/openssl] pkey: add PKey::PKey#derive 2021-03-16T10:16:11+00:00 Kazuki Yamaguchi k@rhe.jp 2017-03-18T12:58:46+00:00 fbadb01d6e0881ef6c6e5e105b8ac20fe663c817 Add OpenSSL::PKey::PKey#derive as the wrapper for EVP_PKEY_CTX_derive(). This is useful for pkey types that we don't have dedicated classes, such as X25519. https://github.com/ruby/openssl/commit/28f0059bea 
Add OpenSSL::PKey::PKey#derive as the wrapper for EVP_PKEY_CTX_derive().
This is useful for pkey types that we don't have dedicated classes, such
as X25519.

https://github.com/ruby/openssl/commit/28f0059bea
[ruby/openssl] pkey: support 'one-shot' signing and verification 2021-03-16T10:16:11+00:00 Kazuki Yamaguchi k@rhe.jp 2017-05-15T14:47:47+00:00 b2dc4880f5d000c3e0117ecf9c57a273cbd713f9 OpenSSL 1.1.1 added EVP_DigestSign() and EVP_DigestVerify() functions to the interface. Some EVP_PKEY methods such as PureEdDSA algorithms do not support the streaming mechanism and require us to use them. https://github.com/ruby/openssl/commit/ae19454592 
OpenSSL 1.1.1 added EVP_DigestSign() and EVP_DigestVerify() functions
to the interface. Some EVP_PKEY methods such as PureEdDSA algorithms
do not support the streaming mechanism and require us to use them.

https://github.com/ruby/openssl/commit/ae19454592
[ruby/openssl] pkey: port PKey::PKey#sign and #verify to the EVP_Digest* interface 2021-03-16T10:16:11+00:00 Kazuki Yamaguchi k@rhe.jp 2017-05-15T14:47:47+00:00 5cae289682c6b8fea6324ae8f26dbcc90ebaaa2f Use EVP_DigestSign*() and EVP_DigestVerify*() interface instead of the old EVP_Sign*() and EVP_Verify*() functions. They were added in OpenSSL 1.0.0. Also, allow the digest to be specified as nil, as certain EVP_PKEY types don't expect a digest algorithm. https://github.com/ruby/openssl/commit/9ff6e5143b 
Use EVP_DigestSign*() and EVP_DigestVerify*() interface instead of the
old EVP_Sign*() and EVP_Verify*() functions. They were added in OpenSSL
1.0.0.

Also, allow the digest to be specified as nil, as certain EVP_PKEY types
don't expect a digest algorithm.

https://github.com/ruby/openssl/commit/9ff6e5143b
[ruby/openssl] pkey: add PKey.generate_parameters and .generate_key 2021-03-16T10:16:11+00:00 Kazuki Yamaguchi k@rhe.jp 2017-03-20T14:18:26+00:00 1e3590fe221c9631259f6876bfaa896398ac7cfa Add two methods to create a PKey using the generic EVP interface. This is useful for the PKey types we don't have a dedicated class. https://github.com/ruby/openssl/commit/d8e8e57de9 
Add two methods to create a PKey using the generic EVP interface. This
is useful for the PKey types we don't have a dedicated class.

https://github.com/ruby/openssl/commit/d8e8e57de9
[ruby/openssl] pkey: add PKey#inspect and #oid 2020-05-13T06:47:51+00:00 Kazuki Yamaguchi k@rhe.jp 2020-04-20T17:12:29+00:00 6f008c9d2fec52f2c2d39c04ad83e87c7975105c Implement OpenSSL::PKey::PKey#oid as a wrapper around EVP_PKEY_id(). This allows user code to check the type of a PKey object. EVP_PKEY can have a pkey type for which we do not provide a dedicated subclass. In other words, an EVP_PKEY that is not any of {RSA,DSA,DH,EC} can exist. It is currently not possible to distinguish such a pkey. Also, implement PKey#inspect to include the key type for convenience. https://github.com/ruby/openssl/commit/dafbb1b3e6 
Implement OpenSSL::PKey::PKey#oid as a wrapper around EVP_PKEY_id().
This allows user code to check the type of a PKey object.

EVP_PKEY can have a pkey type for which we do not provide a dedicated
subclass. In other words, an EVP_PKEY that is not any of {RSA,DSA,DH,EC}
can exist. It is currently not possible to distinguish such a pkey.

Also, implement PKey#inspect to include the key type for convenience.

https://github.com/ruby/openssl/commit/dafbb1b3e6
openssl: import v2.0.1 2016-12-10T08:12:02+00:00 rhe rhe@b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2016-12-10T08:12:02+00:00 0c83666c6ceb9dae06055150da02d16ed20f4781 Import Ruby/OpenSSL 2.0.1. The full commit history since 2.0.0 (imported at r56946) can be found at: https://github.com/ruby/openssl/compare/v2.0.0...v2.0.1 This release contains only bug fixes. Note, the first two commits since v2.0.0 are already imported at r56953 to make Travis and RubyCI green. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@57041 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 
Import Ruby/OpenSSL 2.0.1. The full commit history since 2.0.0 (imported
at r56946) can be found at:

  https://github.com/ruby/openssl/compare/v2.0.0...v2.0.1

This release contains only bug fixes. Note, the first two commits since
v2.0.0 are already imported at r56953 to make Travis and RubyCI green.

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@57041 b2dd03c8-39d4-4d8f-98ff-823fe69b080e