Project

General

Profile

Actions

Feature #11524

closed

Use TLS 1.2 to default version of OpenSSL

Added by hsbt (Hiroshi SHIBATA) about 6 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
openssl
Target version:
-
[ruby-core:<unknown>]

Description

OpenSSL on trunk still use SSL version 3 with default option. but SSLv3 have some vulnerability.

I propose to use TLS 1.2 with default on OpenSSL library.

see original proposal: https://github.com/ruby/ruby/pull/873

In other side, HTTP/2 must be required TLS 1.2 protocol. We should change it before http client
author put ctx.ssl_version = :TLSv1_2 every their code.

ref. https://http2.github.io/http2-spec/#TLSUsage

Actions #1

Updated by zzak (Zachary Scott) about 6 years ago

  • Assignee changed from hsbt (Hiroshi SHIBATA) to openssl
Actions #2

Updated by zzak (Zachary Scott) about 6 years ago

  • Status changed from Open to Closed

Applied in changeset r52082.


Actions

Also available in: Atom PDF