ruby-changes:23952
From: emboss <ko1@a...>
Date: Sun, 10 Jun 2012 10:31:16 +0900 (JST)
Subject: [ruby-changes:23952] emboss:r36003 (trunk): * NEWS: Add note about the new private key export behavior.
emboss 2012-06-10 10:31:06 +0900 (Sun, 10 Jun 2012) New Revision: 36003 http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=rev&revision=36003 Log: * NEWS: Add note about the new private key export behavior. Modified files: trunk/ChangeLog trunk/NEWS Index: ChangeLog =================================================================== --- ChangeLog (revision 36002) +++ ChangeLog (revision 36003) @@ -1,3 +1,7 @@ +Sun Jun 10 10:27:34 2012 Martin Bosslet <Martin.Bosslet@g...> + + * NEWS: Add note about the new private key export behavior. + Sun Jun 10 10:24:51 2012 Tanaka Akira <akr@f...> * process.c (rb_exec_async_signal_safe): exported. Index: NEWS =================================================================== --- NEWS (revision 36002) +++ NEWS (revision 36003) @@ -131,6 +131,13 @@ also allows to programmatically decline (client) renegotiation attempts. * Support for "0/n" splitting of records as BEAST mitigation via OpenSSL::SSL::OP_DONT_INSERT_EMPTY_FRAGMENTS. + * OpenSSL requires passwords for decrypting PEM-encoded files to be at least + four characters long. This led to awkward situations where an export with + a password with fewer than four characters was possible, but accessing the + file afterwards failed. OpenSSL::PKey::RSA, OpenSSL::PKey::DSA and + OpenSSL::PKey::EC therefore now enforce the same check when exporting a + private key to PEM with a password - it has to be at least four characters + long. === Language changes === Compatibility issues (excluding feature bug fixes) -- ML: ruby-changes@q... Info: http://www.atdot.net/~ko1/quickml/