Permalink
Commits on Oct 17, 2011
  1. Return nil if engine is null or getLocalCertificates returns null.

    Duncan Mak committed with Duncan Mak Sep 16, 2011
  2. Implement sysread_nonblock and syswrite_nonblock.

    Duncan Mak committed with Duncan Mak Sep 14, 2011
  3. Add empty method signatures to missing methods.

    Duncan Mak committed with Duncan Mak Sep 14, 2011
Commits on Oct 14, 2011
  1. Reduce test warnings

    Use proper version of test/{1.8 or 1.9}/utils.rb
    nahi committed Oct 14, 2011
Commits on Oct 13, 2011
  1. Import 1.9.3 lib and test

    To run 1.9 testcase;
      jruby --1.9 -S rake test
    instead of;
      jruby --1.8 -S rake test
    
    1.9 support has not completed yet. Test result:
      366 tests, 1757 assertions, 22 failures, 78 errors, 0 skips
    nahi committed Oct 13, 2011
  2. Reorganize lib/ for 1.8/1.9 dual mode support

    Move lib/openssl dir to lib/1.8/openssl and add lib/shared dir. Common
    definition for 1.8/1.9 mode is located in this new lib/shared dir.
    
    For dual mode support, lib/shared/openssl.rb, which is loaded by
    'require "openssl"', adds lib/1.8 or lib/1.9 to $LOAD_PATH at runtime.
    Current RubyGems implementation does not allow change
    Gem::Specification#require_paths at runtime.
    
    lib/1.9 dir comes later.
    
    When JRuby changes its gem dir management policy, which uses
    lib/ruby/gems/1.8 directory both for 1.8/1.9 modes, we need to change
    this implementation.
    nahi committed Oct 13, 2011
Commits on Sep 8, 2011
  1. JRUBY-6044: Improve Ecrypted RSA pem support

    DSA and DH are not yet supported.
    nahi committed Sep 8, 2011
  2. JRUBY-5972: allow to load/dump empty PKCS7 data

    OpenSSL seems to allow to dump empty PKCS7 data which has "0.0" as an
    ObjectId. Follow it.
    nahi committed Sep 8, 2011
Commits on Sep 7, 2011
  1. JRUBY-4992: warn if loaded by non JRuby interpreter

    Applied the patch from Hiro Asari, with a little modification (removed
    'return nil' which causes SyntaxError.)
    nahi committed Sep 7, 2011
Commits on May 31, 2011
  1. Add test fixture

    Slipped in the commit cdfcbf7
    nahi committed May 31, 2011
  2. Add deprecation comment.

    We should remove it for JRuby.
    nahi committed May 31, 2011
  3. Version bump to 0.7.5.dev.

    nahi committed May 31, 2011
  4. JRUBY-5833: Fix X509Name handling

    X509Name RDN can include multiple elements in a set. Could not connect
    to ics2ws.ic3.com since the certificate includes SN + CN component in
    subject.
    nahi committed May 31, 2011
Commits on Apr 28, 2011
  1. Version bump to 0.7.4.

    nahi committed Apr 28, 2011
  2. Add comments.

    Add comments in for X509_verify_cert in OpenSSL 1.0.0d. This will help
    source readers understand the verification logic of OpenSSL.
    nahi committed Apr 28, 2011
Commits on Apr 26, 2011
  1. Fix ASN1::Constructive#to_der failure with updated bc jars.

    DEREncodableVector is superceded by ASN1EncodableVector. Update it.
    nahi committed Apr 26, 2011
Commits on Mar 4, 2011
  1. Version bump to 0.7.4.dev

    nahi committed Mar 4, 2011
Commits on Mar 3, 2011
  1. JRUBY-5510: Add debug information to released jar

    Add -g to javac option in Rakefile.
    nahi committed Mar 3, 2011
  2. Use rake for 'ant test'

    nahi committed Mar 3, 2011
  3. JRUBY-5519: Avoid String encoding dependency in DER loading

    PKey::RSA.initialize and PKey::DSA.initialize invoked
    RubyString#toString() to get java.lang.String then used for PEM and DER
    loading. It's proper for PEM loading since it's a String (though it
    doesn't include non ASCII char) but we were utlized
    ByteList.plain(char[]) to get byte[] for DER loading. So here's a hidden
    unnecessary dependency to java.lang.String encoding.
    
    Before JRuby 1.6.0 RC2 (1.5.x and 1.6.0RC1), RubyString#toString()
    returned java.lang.String with ISO8859_1 charset and the above logic
    *accidentaly* worked as expected. See JRUBY-5519 for the reason why
    1.6.0RC2 needs this fix.
    
    The fix is simpley make it use RubyString#toString() for PEM loading and
    RubyString#getBytes() for DER loading.
    nahi committed Mar 3, 2011
Commits on Jan 18, 2011
  1. Prepare for 0.7.3

    nahi committed Jan 18, 2011
Commits on Jan 15, 2011
  1. JRUBY-5253: allow certificate file includes private key

    OpenSSL::X509::Certificate.new accepts the file which includes private
    key and certificate in this order for example;
    -----BEGIN RSA PRIVATE KEY-----
    MIICXAIBAAKBgQDc7Lu/9x5FSdmq2tHkUy7qx+83PchU5iiFY20rWrH2yRBLGfbB
    -----END RSA PRIVATE KEY-----
    -----BEGIN CERTIFICATE-----
    MIIDEjCCAfqgAwIBAgIBAjANBgkqhkiG9w0BAQUFADBDMQswCQYDVQQGEwJKUDEP
    -----END CERTIFICATE-----
    Added a method for PEM_read_bio_X509() in OpenSSL.
    nahi committed Jan 15, 2011
  2. Deleted duplicated exception dump.

    nahi committed Jan 15, 2011
  3. Added imaps test for Net::IMAP

    This testcase is made for 1.8 based on test_imap.rb in CRuby 1.9.
    nahi committed Jan 15, 2011
  4. Less warning while test run.

    nahi committed Jan 15, 2011
  5. Refactoring merged PEM/DER load method

    This makes OpenSSL::X509::Certificate.new load PEM file which includes
    optional String such as;
    --
    Certificate:
        Data:
            Version: 3 (0x2)
       ...
    ----BEGIN CERTIFICATE----
    ...
    ----END CERTIFICATE----
    nahi committed Jan 15, 2011
  6. Proof of concept fix for JRUBY-5200: configureBlocking free select.

    RubyThread.select for both sysread and syswrite is a source of deadlock
    when 2 operations are running by different Thread. RubyThread.select try
    to synchronize SelectableChannel.blockingLock first so it cannot be used
    for different SelectionKey.OP_* operations.
    
    This commit copies RubyThread.select to SSLSocket and remove
    blockingLock. This impl just set
    SelectableChannel.configureBlocking(false) permanently instead of
    setting temporarily. SSLSocket requires wrapping IO to be selectable so
    it should be OK to set configureBlocking(false) permanently I think...
    nahi committed Dec 2, 2010
  7. Revert the previous change for lib/jopenssl/version.rb

    Constant overriding caused a warning while test so I avoid it in the
    previous commit.  But it causes 'rake package' task where jruby-openssl
    is installed.  Reverted.
    nahi committed Jan 15, 2011