summaryrefslogtreecommitdiff
path: root/lib/rubygems/security.rb
diff options
context:
space:
mode:
Diffstat (limited to 'lib/rubygems/security.rb')
-rw-r--r--lib/rubygems/security.rb13
1 files changed, 10 insertions, 3 deletions
diff --git a/lib/rubygems/security.rb b/lib/rubygems/security.rb
index 6963ca156f..4690dd9230 100644
--- a/lib/rubygems/security.rb
+++ b/lib/rubygems/security.rb
@@ -340,7 +340,9 @@ module Gem::Security
# Digest algorithm used to sign gems
DIGEST_ALGORITHM =
- if defined?(OpenSSL::Digest::SHA1) then
+ if defined?(OpenSSL::Digest::SHA256) then
+ OpenSSL::Digest::SHA256
+ elsif defined?(OpenSSL::Digest::SHA1) then
OpenSSL::Digest::SHA1
end
@@ -363,7 +365,7 @@ module Gem::Security
##
# Length of keys created by KEY_ALGORITHM
- KEY_LENGTH = 2048
+ KEY_LENGTH = 3072
##
# Cipher used to encrypt the key pair used to sign gems.
@@ -372,9 +374,14 @@ module Gem::Security
KEY_CIPHER = OpenSSL::Cipher.new('AES-256-CBC') if defined?(OpenSSL::Cipher)
##
+ # One day in seconds
+
+ ONE_DAY = 86400
+
+ ##
# One year in seconds
- ONE_YEAR = 86400 * 365
+ ONE_YEAR = ONE_DAY * 365
##
# The default set of extensions are:
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-14 04:56:28 +0000