ruby-changes:62517
From: Jeremy <ko1@a...>
Date: Mon, 3 Aug 2020 19:01:21 +0900 (JST)
Subject: [ruby-changes:62517] 85dc570893 (master): [ruby/net-http] Fix SSL session reuse test with LibreSSL 3.2+
https://git.ruby-lang.org/ruby.git/commit/?id=85dc570893 From 85dc570893c2aaf25501fc780343508c44c6cd1d Mon Sep 17 00:00:00 2001 From: Jeremy Evans <code@j...> Date: Thu, 30 Jul 2020 11:37:16 -0700 Subject: [ruby/net-http] Fix SSL session reuse test with LibreSSL 3.2+ https://github.com/ruby/net-http/commit/5ae9620fbc diff --git a/test/net/http/test_https.rb b/test/net/http/test_https.rb index 7660ef6..0ca3394 100644 --- a/test/net/http/test_https.rb +++ b/test/net/http/test_https.rb @@ -143,6 +143,14 @@ class TestNetHTTPS < Test::Unit::TestCase https://github.com/ruby/ruby/blob/trunk/test/net/http/test_https.rb#L143 http.use_ssl = true http.cert_store = TEST_STORE + if OpenSSL::OPENSSL_LIBRARY_VERSION =~ /LibreSSL (\d+\.\d+)/ && $1.to_f > 3.19 + # LibreSSL 3.2 defaults to TLSv1.3 in server and client, which doesn't currently + # support session resuse. Limiting the version to the TLSv1.2 stack allows + # this test to continue to work on LibreSSL 3.2+. LibreSSL may eventually + # support session reuse, but there are no current plans to do so. + http.ssl_version = :TLSv1 + end + http.start http.get("/") http.finish -- cgit v0.10.2 -- ML: ruby-changes@q... Info: http://www.atdot.net/~ko1/quickml/