Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on Jan 28, 2012
  1. @drbrain
Commits on Jan 27, 2012
  1. @drbrain
  2. @drbrain
  3. @drbrain

    Use subjectAltName when creating certifaces and provide issuerAltName…

    drbrain authored
    … when signing certificates, if available
Commits on Jan 24, 2012
  1. @drbrain

    Signed certificates are now limited to the defaults in Gem::Security,…

    drbrain authored
    … not whatever the original certificate presented.
  2. @drbrain

    Sign certificates in execute, not while procesing arguments.

    drbrain authored
    Test option error cases
Commits on Jan 23, 2012
  1. @drbrain
  2. @drbrain
  3. @drbrain
  4. @drbrain
  5. @drbrain
  6. @drbrain
  7. @drbrain
Commits on Jan 21, 2012
  1. @evanphx

    Fix warning

    evanphx authored
Commits on Jan 20, 2012
  1. @drbrain

    Added Gem::Security.trusted_certificates to simplify listing and remo…

    drbrain authored
    …ving trusted certificates.
    
    Removed Gem::Security::OPT in favor of constants.
    
    Refactored and renamed methods in Gem::Security to separate responsibilities.
    
    Added Gem::Security::TrustDir.each_certificate
Commits on Jan 19, 2012
  1. @drbrain
  2. @drbrain
  3. @drbrain

    Verify the key and signer match and are valid at signing time.

    drbrain authored
    Restore old certificate loading behavior
Commits on Jan 18, 2012
  1. @drbrain
  2. @drbrain

    Add tests for Gem::Security::Signer

    drbrain authored
    Add missing super for setup/teardown in some tests
  3. @drbrain

    Replace :key_algo with KEY_ALGORITHM constant since it cannot be chan…

    drbrain authored
    …ged for backwards compatibility.
    
    Optionally pass in key length instead of using the options hash.
  4. @drbrain

    Replace :dgst_opt with DIGEST_ALGORITHM constant since it cannot be c…

    drbrain authored
    …hanged for backwards compatibility
  5. @drbrain
  6. @drbrain
  7. @evanphx

    Cleanup how the default requirement is detected. Fixes #155

    evanphx authored
    We previously had a @none ivar that was supposed indicate if the
    requirement had no real requirements. This was an attempt at an
    optimization that didn't work out normally because it used a lazily
    assignment which caused it to be recalculated on pretty much every call.
Commits on Jan 17, 2012
  1. @evanphx
  2. @evanphx

    Merge pull request #249 from svoop/master

    evanphx authored
    Support for GEMRC environment variable
  3. @evanphx

    Merge pull request #261 from terceiro/verbose-ext-builder

    evanphx authored
    Verbose extension builder
  4. @terceiro

    A better error message

    terceiro authored
  5. @drbrain

    Refactor to only check the certificate info once.

    drbrain authored
    Always require certificates to exist, a valid certificate alone is no security.
  6. @drbrain

    Remove rest of gem_openssl.rb.

    drbrain authored
    Fix typo in Gem::Security::Policy tests and default to secure initialization of a policy.
    
    Work around OpenSSL::X509::Name#== on Ruby 1.8
Commits on Jan 16, 2012
  1. @drbrain

    Add missing requires

    drbrain authored
  2. @drbrain
  3. @drbrain
  4. @drbrain
Something went wrong with that request. Please try again.