RubyGems - faye-websocket - Versions diffs - 0.11.0 → 0.11.2 - Mend

faye-websocket 0.11.0 → 0.11.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +9 -0
data/LICENSE.md +1 -1
data/README.md +1 -1
data/lib/faye/websocket/api.rb +4 -1
data/lib/faye/websocket/ssl_verifier.rb +8 -5
metadata +19 -13

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 42cb4ec90fb1f2d1fd16739908d415035255136b33c1b8100f4370417d7afeee
-  data.tar.gz: b75409884d2ac82e84a59752027085106d1995e92d9603628400b13d7214bc4d
+  metadata.gz: eb4b4ae774c914839c9b5b45496d4eb31d9c0603ada45373b8de2055d5231dc5
+  data.tar.gz: 666a6f3a350022a7cbf3df69f8f7d292fb912f5b8e9b05b8ba3b194b07be5940
 SHA512:
-  metadata.gz: 23293a16e2b1068bb1bd9a7c4e7516f9031185393e50d766833fe468bff7fb3b807d69015c022f35545cf41abb3e5ff9cf96282bb797ecba0eee60cea63de428
-  data.tar.gz: 46ac66a36431ee0adc04dbe5286499c38904b79e4da3259bb42c57c49ff97736568957da641fd640fedc237f67e258d06d5cbd0abb5d3d10eaf662f991368b67
+  metadata.gz: b9475c32e62af18f17a56b0cdf26df4916cc3035d92cbd9be733fb5ae8da0bf57124385625a11558196cade588be91ab81bafc5ad8ef516b7ab09cfaeb8a3cb7
+  data.tar.gz: 4a81daa717bda6a500a03e9b60b4b303c7e071d8d262bb763112a0cf75dba7d6f637db6448988a9ccc3149951440be12db165e1cbe0d1b593aaa603519d6ac89

data/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,12 @@
+### 0.11.2 / 2023-04-04
+- Handle SSL certificate chains where not all the intermediate certificates are
+  recognised by the client
+### 0.11.1 / 2021-05-24
+- Prevent the client hanging if `close()` is called when already closing
 ### 0.11.0 / 2020-07-31
 - Implement TLS certificate verification and enable it by default on client

data/LICENSE.md CHANGED Viewed

@@ -1,4 +1,4 @@
-Copyright 2010-2020 James Coglan
+Copyright 2010-2021 James Coglan
 Licensed under the Apache License, Version 2.0 (the "License"); you may not use
 this file except in compliance with the License. You may obtain a copy of the

data/README.md CHANGED Viewed

@@ -1,4 +1,4 @@
-# faye-websocket [![Build status](https://secure.travis-ci.org/faye/faye-websocket-ruby.svg)](http://travis-ci.org/faye/faye-websocket-ruby)
+# faye-websocket
 This is a general-purpose WebSocket implementation extracted from the
 [Faye](http://faye.jcoglan.com) project. It provides classes for easily building

data/lib/faye/websocket/api.rb CHANGED Viewed

@@ -86,8 +86,11 @@ module Faye
                                "#{ code } is neither."
         end
+        if @ready_state < CLOSING
+          @close_timer = EventMachine.add_timer(CLOSE_TIMEOUT) { begin_close('', 1006) }
+        end
         @ready_state = CLOSING unless @ready_state == CLOSED
-        @close_timer = EventMachine.add_timer(CLOSE_TIMEOUT) { begin_close('', 1006) }
         @driver.close(reason, code)
       end

data/lib/faye/websocket/ssl_verifier.rb CHANGED Viewed

@@ -42,14 +42,13 @@ module Faye
         return true unless should_verify?
         certificate = parse_cert(cert_text)
-        return false unless certificate
-        unless @cert_store.verify(certificate)
-          raise SSLError, "Unable to verify the server certificate for '#{ @hostname }'"
+        unless certificate
+          raise SSLError, "Unable to parse SSL certificate for '#{ @hostname }'"
         end
-        store_cert(certificate)
         @last_cert = certificate
+        @last_cert_verified = @cert_store.verify(certificate)
+        store_cert(certificate) if @last_cert_verified
         true
       end
@@ -57,6 +56,10 @@ module Faye
       def ssl_handshake_completed
         return unless should_verify?
+        unless @last_cert_verified
+          raise SSLError, "Unable to verify the server certificate for '#{ @hostname }'"
+        end
         unless identity_verified?
           raise SSLError, "Host '#{ @hostname }' does not match the server certificate"
         end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: faye-websocket
 version: !ruby/object:Gem::Version
-  version: 0.11.0
+  version: 0.11.2
 platform: ruby
 authors:
 - James Coglan
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-07-31 00:00:00.000000000 Z
+date: 2023-04-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: eventmachine
@@ -123,33 +123,39 @@ dependencies:
       - !ruby/object:Gem::Version
         version: 0.2.0
 - !ruby/object:Gem::Dependency
-  name: rainbows
+  name: thin
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 4.4.0
+        version: 1.2.0
+    - - ">"
+      - !ruby/object:Gem::Version
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 4.4.0
+        version: 1.2.0
+    - - ">"
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: thin
+  name: rainbows
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.2.0
+        version: 4.4.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.2.0
+        version: 4.4.0
 - !ruby/object:Gem::Dependency
   name: goliath
   requirement: !ruby/object:Gem::Requirement
@@ -224,7 +230,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.2
+rubygems_version: 3.1.6
 signing_key:
 specification_version: 4
 summary: Standards-compliant WebSocket server and client