Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove support for OpenSSL < 1.0.1 #86

Merged
merged 1 commit into from
Dec 22, 2016
Merged

Remove support for OpenSSL < 1.0.1 #86

merged 1 commit into from
Dec 22, 2016

Conversation

rhenium
Copy link
Member

@rhenium rhenium commented Dec 2, 2016

Currently, we are skipping all tests if built with < 1.0.01. This is really bad. Probably we can fix them. ...but who really uses such an out-dated version?

Support for OpenSSL 0.9.8/1.0.0 series from the OpenSSL development team has finally ended last year, on 2015-122.

We have kept basic compatibility (no missing symbols, SSL seems to work) with OpenSSL 0.9.8 mainly for RHEL 5 (and its derivatives) that ships with heavily modified OpenSSL 0.9.8e. The RHEL 5 will reach EOL on 2017-03. We are already ignoring 0.9.8 bundled in OS X3. As far as I know, there are no other public re-distributions of OpenSSL 0.9.8 or 1.0.0 series with security bug fixes, so, it must be safe to assume nobody is still using them.

I'm not going to merge immediately, and thinking of doing this after Ruby 2.4 release.

Thoughts?

@hsbt
Copy link
Member

hsbt commented Dec 2, 2016

I agreed. We should merge this after Ruby 2.4.0 release.

The RHEL 5 will reach EOL on 2017-03.

It's enough for our decision.

@rhenium rhenium force-pushed the topic/drop-openssl-098-and-100 branch from 4843650 to 92a1ebe Compare December 15, 2016 02:38
@rhenium rhenium force-pushed the topic/drop-openssl-098-and-100 branch 2 times, most recently from 1335f2c to 7afec32 Compare December 22, 2016 05:35
@rhenium
Remove support for OpenSSL 0.9.8 and 1.0.0
4eb4b32 
They are no longer receiving security updates from the OpenSSL
development team since 2015-12.

We have kept basic compatibility until now because RHEL 5 still uses an
(heavily modified) OpenSSL 0.9.8e. The RHEL 5 will reach EOL on 2017-03,
thus it is now safe to assume nobody is still using such old versions of
OpenSSL.
@rhenium rhenium force-pushed the topic/drop-openssl-098-and-100 branch from 7afec32 to 4eb4b32 Compare December 22, 2016 05:48
@rhenium
Copy link
Member Author

rhenium commented Dec 22, 2016

Will merge to master. -400 lines!

@rhenium rhenium merged commit 4eb4b32 into ruby:master Dec 22, 2016
@zzak
Copy link
Member

zzak commented Dec 22, 2016

Great work, @rhenium!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@rhenium @hsbt @zzak