aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_controller/metal/url_for.rb
diff options
context:
space:
mode:
authorVipul A M <vipulnsward@gmail.com>2016-05-29 11:07:22 -0700
committerVipul A M <vipulnsward@gmail.com>2016-06-27 17:43:55 -0700
commit8ee269cf51c58b0600a3fa536219637f240e888d (patch)
tree67b005a5f950d13b3e21bb2aacb759318d8ac46d /actionpack/lib/action_controller/metal/url_for.rb
parentcf8605ad28192af81af08296d4f170076362d281 (diff)
downloadrails-8ee269cf51c58b0600a3fa536219637f240e888d.tar.gz
rails-8ee269cf51c58b0600a3fa536219637f240e888d.tar.bz2
rails-8ee269cf51c58b0600a3fa536219637f240e888d.zip
We default to using aes-256-cbc as our verification/signing cipher. It can accept key lengths of 128, 192 or 256-bit, whereas currently we were providing twice the acceptable value.
ruby < 2.4 allowed accepting these values, as extra key bits were ignored. Since https://github.com/ruby/ruby/commit/ce635262f53b760284d56bb1027baebaaec175d1 this now has a strict checking on key length. Default to key length 32 bytes, to match the compatible length for aes-256-cbc Fixes #25185
Diffstat (limited to 'actionpack/lib/action_controller/metal/url_for.rb')
0 files changed, 0 insertions, 0 deletions