Skip to content

Conversation

MariuszCwikla
Copy link
Contributor

Fixes #209
Summary of changes:

  • OpenSSL hash algorithm switched from MD5 to SHA1. Furthermore, for calculations they are using canonical encoding now (X509_NAME_hash/asn1_string_canon)
  • MD5 version of hash is still present in Ruby API under hash_old
  • eql and <=> are also affected by the change in OpenSSL (see X509_NAME_cmp)

@MariuszCwikla MariuszCwikla force-pushed the issue_209_X509_Name_hash branch from 485de5c to a958df6 Compare November 5, 2020 08:23
@kares kares merged commit e50c04b into jruby:master Nov 8, 2020
@kares
Copy link
Member

kares commented Nov 8, 2020

Thanks Mariusz, well done!

kares pushed a commit that referenced this pull request Apr 27, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Jruby's OpenSSL::X509::Name.hash doesn't match ruby's
2 participants