jruby-openssl 0.9.4 → 0.14.0-java

metadata

@@ -1,146 +1,79 @@
 --- !ruby/object:Gem::Specification
 name: jruby-openssl
 version: !ruby/object:Gem::Version
-  prerelease:
-  version: 0.9.4
-platform: ruby
+  version: 0.14.0
+platform: java
 authors:
+- Karol Bucek
 - Ola Bini
 - JRuby contributors
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2013-10-22 00:00:00.000000000 Z
-dependencies:
-- !ruby/object:Gem::Dependency
-  name: bouncy-castle-java
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - '>='
-      - !ruby/object:Gem::Version
-        version: 1.5.0147
-    none: false
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - '>='
-      - !ruby/object:Gem::Version
-        version: 1.5.0147
-    none: false
-  prerelease: false
-  type: :runtime
-- !ruby/object:Gem::Dependency
-  name: rake
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ~>
-      - !ruby/object:Gem::Version
-        version: '10.1'
-    none: false
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ~>
-      - !ruby/object:Gem::Version
-        version: '10.1'
-    none: false
-  prerelease: false
-  type: :development
-- !ruby/object:Gem::Dependency
-  name: ruby-maven
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ~>
-      - !ruby/object:Gem::Version
-        version: 3.1.0.0.0
-    none: false
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ~>
-      - !ruby/object:Gem::Version
-        version: 3.1.0.0.0
-    none: false
-  prerelease: false
-  type: :development
-description: JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library.
-email: ola.bini@gmail.com
+date: 2022-06-30 00:00:00.000000000 Z
+dependencies: []
+description: JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL
+  native library.
+email: self+jruby-openssl@kares.org
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- History.txt
-- License.txt
+- History.md
+- LICENSE.txt
 - Mavenfile
-- README.txt
+- README.md
 - Rakefile
-- TODO-1_9-support.txt
 - lib/jopenssl.jar
-- lib/jruby-openssl.rb
-- lib/openssl.rb
+- lib/jopenssl/_compat23.rb
 - lib/jopenssl/load.rb
 - lib/jopenssl/version.rb
-- lib/jopenssl18/openssl.rb
-- lib/jopenssl18/openssl/bn.rb
-- lib/jopenssl18/openssl/buffering.rb
-- lib/jopenssl18/openssl/cipher.rb
-- lib/jopenssl18/openssl/config.rb
-- lib/jopenssl18/openssl/digest.rb
-- lib/jopenssl18/openssl/pkcs7.rb
-- lib/jopenssl18/openssl/ssl-internal.rb
-- lib/jopenssl18/openssl/ssl.rb
-- lib/jopenssl18/openssl/x509-internal.rb
-- lib/jopenssl18/openssl/x509.rb
-- lib/jopenssl19/openssl.rb
-- lib/jopenssl19/openssl/bn.rb
-- lib/jopenssl19/openssl/buffering.rb
-- lib/jopenssl19/openssl/cipher.rb
-- lib/jopenssl19/openssl/config.rb
-- lib/jopenssl19/openssl/digest.rb
-- lib/jopenssl19/openssl/ssl-internal.rb
-- lib/jopenssl19/openssl/ssl.rb
-- lib/jopenssl19/openssl/x509-internal.rb
-- lib/jopenssl19/openssl/x509.rb
+- lib/jruby-openssl.rb
+- lib/openssl.rb
 - lib/openssl/bn.rb
 - lib/openssl/buffering.rb
 - lib/openssl/cipher.rb
 - lib/openssl/config.rb
 - lib/openssl/digest.rb
+- lib/openssl/hmac.rb
+- lib/openssl/marshal.rb
 - lib/openssl/pkcs12.rb
-- lib/openssl/pkcs7.rb
-- lib/openssl/ssl-internal.rb
+- lib/openssl/pkcs5.rb
+- lib/openssl/pkey.rb
 - lib/openssl/ssl.rb
-- lib/openssl/x509-internal.rb
 - lib/openssl/x509.rb
-- test/test_java.rb
-- test/ut_eof.rb
-- test/java/pkcs7_mime_enveloped.message
-- test/java/pkcs7_mime_signed.message
-- test/java/pkcs7_multipart_signed.message
-- test/java/test_java_attribute.rb
-- test/java/test_java_bio.rb
-- test/java/test_java_mime.rb
-- test/java/test_java_pkcs7.rb
-- test/java/test_java_smime.rb
-homepage: https://github.com/jruby/jruby
-licenses: []
+- lib/org/bouncycastle/bcpkix-jdk18on/1.71/bcpkix-jdk18on-1.71.jar
+- lib/org/bouncycastle/bcprov-jdk18on/1.71/bcprov-jdk18on-1.71.jar
+- lib/org/bouncycastle/bctls-jdk18on/1.71/bctls-jdk18on-1.71.jar
+- lib/org/bouncycastle/bcutil-jdk18on/1.71/bcutil-jdk18on-1.71.jar
+- pom.xml
+homepage: https://github.com/jruby/jruby-openssl
+licenses:
+- EPL-1.0
+- GPL-2.0
+- LGPL-2.1
+metadata: {}
 post_install_message:
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - '>='
+  - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
-  none: false
+      version: 2.3.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
-  none: false
-requirements: []
-rubyforge_project: jruby/jruby
-rubygems_version: 1.8.24
+requirements:
+- jar org.bouncycastle:bcprov-jdk18on, 1.71
+- jar org.bouncycastle:bcpkix-jdk18on, 1.71
+- jar org.bouncycastle:bctls-jdk18on,  1.71
+- jar org.bouncycastle:bcutil-jdk18on, 1.71
+rubygems_version: 3.1.6
 signing_key:
-specification_version: 3
-summary: OpenSSL add-on for JRuby
+specification_version: 4
+summary: JRuby OpenSSL
 test_files: []

data/History.txt

@@ -1,218 +0,0 @@
-== 0.7.7
-
-This release includes bug fixes.
-
- - JRUBY-6622: Support loading encrypted RSA key with PBES2
- - JRUBY-4326: Confusing (and late) OpenSSL error message
- - JRUBY-6579: Avoid ClassCastException for public key loading
- - JRUBY-6515: sending UTF-8 data over SSL can hang with openssl
- - Update tests to sync with CRuby ruby_1_9_3
-
-== 0.7.6
-
-This release includes initial implementation of PKCS12 by Owen Ou.
-
- - JRUBY-5066: Implement OpenSSL::PKCS12 (only for simple case)
- - JRUBY-6385: Assertion failure with -J-ea
-
-== 0.7.5
-
-This release improved 1.9 mode support with help of
-Duncan Mak <duncan@earthaid.net>.  Now jruby-ossl gem includes both 1.8 and 1.9
-libraries and part of features should work fine on 1.9 mode, too.
-
-- JRUBY-6270: Wrong keyUsage check for SSL server
-- JRUBY-6260: OpenSSL::ASN1::Integer#value incompatibility
-- JRUBY-6044: Improve Ecrypted RSA/DSA pem support
-- JRUBY-5972: Allow to load/dump empty PKCS7 data
-- JRUBY-5834: Fix X509Name handling; X509Name RDN can include multiple elements
-- JRUBY-5362: Improved 1.9 support
-- JRUBY-4992: Warn if loaded by non JRuby interpreter
-
-== 0.7.4
-
-- JRUBY-5519: Avoid String encoding dependency in DER loading. PEM loading
-  failed on JRuby 1.6.x. Fixed.
-- JRUBY-5510: Add debug information to released jar
-- JRUBY-5478: Update bouncycastle jars to the latest version. (1.46)
-
-== 0.7.3
-
-- JRUBY-5200: Net::IMAP + SSL(imaps) login could hang. Fixed.
-- JRUBY-5253: Allow to load the certificate file which includes private
-  key for activemarchant compatibility.
-- JRUBY-5267: Added SSL socket error-checks to avoid busy loop under an
-  unknown condition.
-- JRUBY-5316: Improvements for J9's IBMJCE support. Now all testcases
-  pass on J9 JDK 6.
-
-== 0.7.2
-
-- JRUBY-5126: Ignore Cipher#reset and Cipher#iv= when it's a stream
-  cipher (Net::SSH compatibility)
-- JRUBY-5125: let Cipher#name for 'rc4' to be 'RC4' (Net::SSH
-  compatibility)
-- JRUBY-5096: Fixed inconsistent Certificate verification behavior
-- JRUBY-5060: Avoid NPE from to_pem for empty X509 Objects
-- JRUBY-5059: SSLSocket ignores Timeout (Fixed)
-- JRUBY-4965: implemented OpenSSL::Config
-- JRUBY-5023: make Certificate#signature_algorithm return correct algo
-  name; "sha1WithRSAEncryption" instead of "SHA1"
-- JRUBY-5024: let HMAC.new accept a String as a digest name
-- JRUBY-5018: SSLSocket holds selectors, keys, preventing quick
-  cleanup of resources when dereferenced
-
-== 0.7.1
-
-- NOTE: Now BouncyCastle jars has moved out to its own gem
-  "bouncy-castle-java" (http://rubygems.org/gems/bouncy-castle-java).
-  You don't need to care about it because "jruby-openssl" gem depends
-  on it from now on.
-
-=== SSL bugfix
-
-- JRUBY-4826 net/https client possibly raises "rbuf_fill': End of file
-  reached (EOFError)" for HTTP chunked read.
-
-=== Misc
-
-- JRUBY-4900: Set proper String to OpenSSL::OPENSSL_VERSION. Make sure
-  it's not an OpenSSL artifact: "OpenSSL 0.9.8b 04 May 2006
-  (JRuby-OpenSSL fake)" -> "jruby-ossl 0.7.1"
-- JRUBY-4975: Moving BouncyCastle jars out to its own gem.
-
-== 0.7
-
-- Follow MRI 1.8.7 openssl API changes
-- Fixes so that jruby-openssl can run on appengine
-- Many bug and compatibility fixes, see below.
-- This is the last release that will be compatible with JRuby 1.4.x.
-- Compatibility issues
--- JRUBY-4342: Follow ruby-openssl of CRuby 1.8.7.
--- JRUBY-4346: Sync tests with tests for ruby-openssl of CRuby 1.8.7.
--- JRUBY-4444: OpenSSL crash running RubyGems tests
--- JRUBY-4075: Net::SSH gives OpenSSL::Cipher::CipherError "No message
-   available"
--- JRUBY-4076: Net::SSH padding error using 3des-cbc on Solaris
--- JRUBY-4541: jruby-openssl doesn't load on App Engine.
--- JRUBY-4077: Net::SSH "all authorization methods failed" Solaris -> Solaris
--- JRUBY-4535: Issues with the BouncyCastle provider
--- JRUBY-4510: JRuby-OpenSSL crashes when JCE fails a initialise bcprov
--- JRUBY-4343: Update BouncyCastle jar to upstream version; jdk14-139 ->
-   jdk15-144
-- Cipher issues
--- JRUBY-4012: Initialization vector length handled differently than in MRI
-   (longer IV sequence are trimmed to fit the required)
--- JRUBY-4473: Implemented DSA key generation
--- JRUBY-4472: Cipher does not support RC4 and CAST
--- JRUBY-4577: InvalidParameterException 'Wrong keysize: must be equal to 112 or
-   168' for DES3 + SunJCE
-- SSL and X.509(PKIX) issues
--- JRUBY-4384: TCP socket connection causes busy loop of SSL server
--- JRUBY-4370: Implement SSLContext#ciphers
--- JRUBY-4688: SSLContext#ciphers does not accept 'DEFAULT'
--- JRUBY-4357: SSLContext#{setup,ssl_version=} are not implemented
--- JRUBY-4397: SSLContext#extra_chain_cert and SSLContext#client_ca
--- JRUBY-4684: SSLContext#verify_depth is ignored
--- JRUBY-4398: SSLContext#options does not affect to SSL sessions
--- JRUBY-4360: Implement SSLSocket#verify_result and dependents
--- JRUBY-3829: SSLSocket#read should clear given buffer before concatenating
-   (ByteBuffer.java:328:in `allocate': java.lang.IllegalArgumentException when
-   returning SOAP queries over a certain size) 
--- JRUBY-4686: SSLSocket can drop last chunk of data just before inbound channel
-   close
--- JRUBY-4369: X509Store#verify_callback is not called
--- JRUBY-4409: OpenSSL::X509::Store#add_file corrupts when it includes
-   certificates which have the same subject (problem with
-   ruby-openid-apps-discovery (github jruby-openssl issue #2))
--- JRUBY-4333: PKCS#8 formatted privkey read
--- JRUBY-4454: Loading Key file as a Certificate causes NPE
--- JRUBY-4455: calling X509::Certificate#sign for the Certificate initialized
-   from PEM causes IllegalStateException 
-- PKCS#7 issues
--- JRUBY-4379: PKCS7#sign failed for DES3 cipher algorithm
--- JRUBY-4428: Allow to use DES-EDE3-CBC in PKCS#7 w/o the Policy Files (rake
-   test doesn't finish on JDK5 w/o policy files update) 
--  Misc
--- JRUBY-4574: jruby-openssl deprecation warning cleanup
--- JRUBY-4591: jruby-1.4 support
-
-== 0.6
-
-- This is a recommended upgrade to jruby-openssl. A security problem
-  involving peer certificate verification was found where failed
-  verification silently did nothing, making affected applications
-  vulnerable to attackers. Attackers could lead a client application
-  to believe that a secure connection to a rogue SSL server is
-  legitimate. Attackers could also penetrate client-validated SSL
-  server applications with a dummy certificate. Your application would
-  be vulnerable if you're using the 'net/https' library with
-  OpenSSL::SSL::VERIFY_PEER mode and any version of jruby-openssl
-  prior to 0.6. Thanks to NaHi (NAKAMURA Hiroshi) for finding the
-  problem and providing the fix. See
-  http://www.jruby.org/2009/12/07/vulnerability-in-jruby-openssl.html
-  for details.
-- This release addresses CVE-2009-4123 which was reserved for the
-  above vulnerability.
-- Many fixes from NaHi, including issues related to certificate
-  verification and certificate store purpose verification.
-  - implement OpenSSL::X509::Store#set_default_paths
-  - MRI compat. fix: OpenSSL::X509::Store#add_file
-  - Fix nsCertType handling.
-  - Fix Cipher#key_len for DES-EDE3: 16 should be 24.
-  - Modified test expectations around Cipher#final.
-- Public keys are lazily instantiated when the
-  X509::Certificate#public_key method is called (Dave Garcia)
-
-== 0.5.2
-
-* Multiple bugs fixed:
-** JRUBY-3895	Could not verify server signature with net-ssh against Cygwin
-** JRUBY-3864	jruby-openssl depends on Base64Coder from JvYAMLb
-** JRUBY-3790	JRuby-OpenSSL test_post_connection_check is not passing
-** JRUBY-3767	OpenSSL ssl implementation doesn't support client auth
-** JRUBY-3673	jRuby-OpenSSL does not properly load certificate authority file
-
-== 0.5.1
-
-* Multiple fixes by Brice Figureau to get net/ssh working. Requires JRuby 1.3.1
-  to be 100%
-* Fix by Frederic Jean for a character-decoding issue for some certificates
-
-== 0.5
-
-* Fixed JRUBY-3614: Unsupported HMAC algorithm (HMACSHA-256)
-* Fixed JRUBY-3570: ActiveMerchant's AuthorizeNet Gateway throws OpenSSL Cert
-  Validation Error, when there should be no error
-* Fixed JRUBY-3557 Class cast exception in PKeyRSA.java
-* Fixed JRUBY-3468 X.509 certificates: subjectKeyIdentifier corrupted
-* Fixed JRUBY-3285 Unsupported HMAC algorithm (HMACSHA1) error when generating
-  digest
-* Misc code cleanup
-
-== 0.2
-
-- Enable remaining tests; fix a nil string issue in SSLSocket.sysread
-  (JRUBY-1888)
-- Fix socket buffering issue by setting socket IO sync = true
-- Fix bad file descriptor issue caused by unnecessary close (JRUBY-2152)
-- Fix AES key length (JRUBY-2187)
-- Fix cipher initialization (JRUBY-1100)
-- Now, only compatible with JRuby 1.1
-
-== 0.1.1
-
-- Fixed blocker issue preventing HTTPS/SSL from working (JRUBY-1222)
-
-== 0.1
-
-- PLEASE NOTE: This release is not compatible with JRuby releases earlier than
-  1.0.3 or 1.1b2. If you must use JRuby 1.0.2 or earlier, please install the
-  0.6 release.
-- Release coincides with JRuby 1.0.3 and JRuby 1.1b2 releases
-- Simultaneous support for JRuby trunk and 1.0 branch
-- Start of support for OpenSSL::BN
-
-== 0.0.5 and prior
-
-- Initial versions with maintenance updates

data/License.txt

@@ -1,30 +0,0 @@
-JRuby-OpenSSL is distributed under the same license as JRuby (http://www.jruby.org/).
-
-Version: EPL 1.0/GPL 2.0/LGPL 2.1
-
-The contents of this file are subject to the Common Public
-License Version 1.0 (the "License"); you may not use this file
-except in compliance with the License. You may obtain a copy of
-the License at http://www.eclipse.org/legal/cpl-v10.html
-
-Software distributed under the License is distributed on an "AS
-IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
-implied. See the License for the specific language governing
-rights and limitations under the License.
-
-Copyright (C) 2007 Ola Bini <ola.bini@gmail.com>
-
-Alternatively, the contents of this file may be used under the terms of
-either of the GNU General Public License Version 2 or later (the "GPL"),
-or the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
-in which case the provisions of the GPL or the LGPL are applicable instead
-of those above. If you wish to allow use of your version of this file only
-under the terms of either the GPL or the LGPL, and not to allow others to
-use your version of this file under the terms of the EPL, indicate your
-decision by deleting the provisions above and replace them with the notice
-and other provisions required by the GPL or the LGPL. If you do not delete
-the provisions above, a recipient may use your version of this file under
-the terms of any one of the EPL, the GPL or the LGPL.
-
-JRuby-OpenSSL includes software by the Legion of the Bouncy Castle
-(http://bouncycastle.org/license.html).

data/README.txt

@@ -1,13 +0,0 @@
-= JRuby-OpenSSL
-
-* https://github.com/jruby/jruby/tree/master/maven/gems/jruby-openssl
-
-== DESCRIPTION:
-
-JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library.
-
-Please report bugs and incompatibilities (preferably with testcases) to either the JRuby 
-mailing list [1] or the JRuby bug tracker [2].
-
-[1]: http://xircles.codehaus.org/projects/jruby/lists
-[2]: https://github.com/jruby/jruby/issues

data/TODO-1_9-support.txt

@@ -1,23 +0,0 @@
-TODO for 1.9 support
-
-* Implement some mehotds properly
-  * ASN1 (fix lots of failing tests)
-  * OpenSSL::ASN1::ObjectId.new for SHA-2 ids such as SHA224
-  * X509Name#cmp
-  * ASN.1 handling
-
-* Implement some methods
-  * PKey.read
-  * PKey::DH#public_key
-  * SSLSocket#sysread_nonblock
-  * SSLSocket#syswrite_nonblock
-  * OCSP
-  * config file
-  * SSLSocket#client_ca - can we get CertificateRequest* in ServerHello?
-  * SSL::Session - can we?
-  * @crlDisPts of tX509Extension
-
-* Fixes needed for JRuby
-  * Implement BasicSocket#connect_address for test_pair.rb
-  * Stop Socket#accept by Socket#shutdown, not by Socket#close
-  * busy loop for SSLSocket#read_nonblock (and revert net/protocol.rb)

data/lib/jopenssl18/openssl/bn.rb

@@ -1,35 +0,0 @@
-=begin
-= $RCSfile$ -- Ruby-space definitions that completes C-space funcs for BN
-
-= Info
-  'OpenSSL for Ruby 2' project
-  Copyright (C) 2002  Michal Rokos <m.rokos@sh.cvut.cz>
-  All rights reserved.
-
-= Licence
-  This program is licenced under the same licence as Ruby.
-  (See the file 'LICENCE'.)
-
-= Version
-  $Id$
-=end
-
-##
-# Should we care what if somebody require this file directly?
-#require 'openssl'
-
-module OpenSSL
-  class BN
-    include Comparable
-  end # BN
-end # OpenSSL
-
-##
-# Add double dispatch to Integer
-#
-class Integer
-  def to_bn
-    OpenSSL::BN::new(self.to_s(16), 16)
-  end
-end # Integer
-