From 85dc570893c2aaf25501fc780343508c44c6cd1d Mon Sep 17 00:00:00 2001
From: Jeremy Evans <code@jeremyevans.net>
Date: Thu, 30 Jul 2020 11:37:16 -0700
Subject: [ruby/net-http] Fix SSL session reuse test with LibreSSL 3.2+

https://github.com/ruby/net-http/commit/5ae9620fbc
---
 test/net/http/test_https.rb | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'test/net')

diff --git a/test/net/http/test_https.rb b/test/net/http/test_https.rb
index 7660ef686c..0ca3394274 100644
--- a/test/net/http/test_https.rb
+++ b/test/net/http/test_https.rb
@@ -143,6 +143,14 @@ class TestNetHTTPS < Test::Unit::TestCase
     http.use_ssl = true
     http.cert_store = TEST_STORE
 
+    if OpenSSL::OPENSSL_LIBRARY_VERSION =~ /LibreSSL (\d+\.\d+)/ && $1.to_f > 3.19
+      # LibreSSL 3.2 defaults to TLSv1.3 in server and client, which doesn't currently
+      # support session resuse.  Limiting the version to the TLSv1.2 stack allows
+      # this test to continue to work on LibreSSL 3.2+.  LibreSSL may eventually
+      # support session reuse, but there are no current plans to do so.
+      http.ssl_version = :TLSv1
+    end
+
     http.start
     http.get("/")
     http.finish
-- 
cgit v1.2.3