Project

General

Profile

Feature #11524

Use TLS 1.2 to default version of OpenSSL

Added by hsbt (Hiroshi SHIBATA) almost 5 years ago. Updated almost 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
openssl
Target version:
-
[ruby-core:<unknown>]

Description

OpenSSL on trunk still use SSL version 3 with default option. but SSLv3 have some vulnerability.

I propose to use TLS 1.2 with default on OpenSSL library.

see original proposal: https://github.com/ruby/ruby/pull/873

In other side, HTTP/2 must be required TLS 1.2 protocol. We should change it before http client
author put ctx.ssl_version = :TLSv1_2 every their code.

ref. https://http2.github.io/http2-spec/#TLSUsage

#1

Updated by zzak (Zachary Scott) almost 5 years ago

  • Assignee changed from hsbt (Hiroshi SHIBATA) to openssl
#2

Updated by zzak (Zachary Scott) almost 5 years ago

  • Status changed from Open to Closed

Applied in changeset r52082.


Also available in: Atom PDF