ruby-core

Group registration still takes ages, even with that from. We went through it for Sinatra, where we needed to in order to claim or channel (no ops in there), even with being a priority (due to channel already existing) and bothering the freenode team every view days to weeks, it took over six months to officially become a group. Apparently a single person is in charge of dealing with group registration in his/her spare time.

[#41698] Re: Ruby IRC Presence Problem — Steve Klabnik <steve@...> 2011/12/16

Recently, they changed something with group registration stuff. I

[#41702] [ruby-trunk - Feature #3620] Add Queue, SIzedQueue and ConditionVariable implementations in C in addition to ruby ones — Eric Wong <normalperson@...>

1 message 2011/12/17

[#41703] security disclosure policy — Ryan Davis <ryand-ruby@...>

In short, I think:

2 messages 2011/12/17

[#41746] Re: security disclosure policy — "NARUSE, Yui" <naruse@...> 2011/12/20

Current one is https://bugs.ruby-lang.org/projects/ruby/wiki/SecurityFixProcess

[#41710] [ruby-trunk - Bug #5773][Open] bigdecimal comparison raises SystemStackError — Aaron Patterson <aaron@...>

1 message 2011/12/18

[#41711] [ruby-trunk - Bug #5774][Open] [PATCH] xmlrpc client handling cookies — Roman Riha <redmine@...>

2 messages 2011/12/18

[#55287] [ruby-trunk - Bug #5774] [PATCH] xmlrpc client handling cookies — "zzak (Zachary Scott)" <zachary@...> 2013/06/04

[#41713] [ruby-trunk - Bug #5775][Open] BigDecimal does not follow Allocation Framework — Nobuyoshi Nakada <nobu@...>

1 message 2011/12/18

[#41717] Feature : optional argument in File.join — Michel Demazure <michel@...>

In Windows, when using File.join, one often ends with a path containing

13 messages 2011/12/19

[#41719] Re: Feature : optional argument in File.join — Luis Lavena <luislavena@...> 2011/12/19

On Mon, Dec 19, 2011 at 6:09 AM, Michel Demazure <michel@demazure.com> wrote:

[#41720] Re: Feature : optional argument in File.join — Michel Demazure <michel@...> 2011/12/19

Luis Lavena wrote in post #1037331:

[#41727] Re: Feature : optional argument in File.join — Luis Lavena <luislavena@...> 2011/12/19

On Mon, Dec 19, 2011 at 12:52 PM, Michel Demazure <michel@demazure.com> wrote:

[#41729] Re: Feature : optional argument in File.join — Nikolai Weibull <now@...> 2011/12/19

On Mon, Dec 19, 2011 at 20:46, Luis Lavena <luislavena@gmail.com> wrote:

[#41737] Re: Feature : optional argument in File.join — Nobuyoshi Nakada <nobu@...> 2011/12/20

Hi,

[#41740] Re: Feature : optional argument in File.join — Nikolai Weibull <now@...> 2011/12/20

On Tue, Dec 20, 2011 at 02:12, Nobuyoshi Nakada <nobu@ruby-lang.org> wrote:

[#41742] Re: Feature : optional argument in File.join — Nobuyoshi Nakada <nobu@...> 2011/12/20

Hi,

[#41744] Re: Feature : optional argument in File.join — Nikolai Weibull <now@...> 2011/12/20

On Tue, Dec 20, 2011 at 08:17, Nobuyoshi Nakada <nobu@ruby-lang.org> wrote:

[#41750] Re: Feature : optional argument in File.join — Michel Demazure <michel@...> 2011/12/20

Nikolai Weibull wrote in post #1037488:

[#41751] Re: Feature : optional argument in File.join — Nikolai Weibull <now@...> 2011/12/20

On Tue, Dec 20, 2011 at 11:24, Michel Demazure <michel@demazure.com> wrote:

[#41752] Re: Feature : optional argument in File.join — Michel Demazure <michel@...> 2011/12/20

Nikolai Weibull wrote in post #1037513:

[#41722] Re: Feature : optional argument in File.join — Michel Demazure <michel@...> 2011/12/19

> I think I will just use the ordinary File.join, then gsub('/', '\')

[#41718] [ruby-trunk - Bug #5777][Open] class_eval/module_eval works differently when given a string than when given a block in 1.9.2 and 1.9.3 — George MacKerron <redmine@...>

4 messages 2011/12/19

[#41726] [ruby-trunk - Bug #5777] class_eval/module_eval works differently when given a string than when given a block in 1.9.2 and 1.9.3 — Yehuda Katz <wycats@...> 2011/12/19

[#41768] [ruby-trunk - Bug #5777] class_eval/module_eval works differently when given a string than when given a block in 1.9.2 and 1.9.3 — George MacKerron <redmine@...> 2011/12/21

[#43332] [ruby-trunk - Bug #5777] class_eval/module_eval works differently when given a string than when given a block in 1.9.2 and 1.9.3 — Shugo Maeda <redmine@...> 2012/03/16

[#41721] Ruby and oniguruma relation. — V咜 Ondruch <v.ondruch@...>

Hi everybody,

5 messages 2011/12/19

[#41723] Re: Ruby and oniguruma relation. — Ammar Ali <ammarabuali@...> 2011/12/19

On Mon, Dec 19, 2011 at 5:54 PM, V鱈t Ondruch <v.ondruch@gmail.com> wrote:

[#41724] Re: Ruby and oniguruma relation. — KOSAKI Motohiro <kosaki.motohiro@...> 2011/12/19

(12/19/11 11:13 AM), Ammar Ali wrote:

[#41730] Re: Ruby and oniguruma relation. — Vít Ondruch <v.ondruch@...> 2011/12/19

Dne 19.12.2011 17:36, KOSAKI Motohiro napsal(a):

[#41745] Re: Ruby and oniguruma relation. — "NARUSE, Yui" <naruse@...> 2011/12/20

2011/12/20 V咜 Ondruch <v.ondruch@gmail.com>:

[#41725] [ruby-trunk - Feature #5778][Open] Allow WEBrick::HTTPResponse to send IO-duck-typed bodies — Alex Young <alex@...>

6 messages 2011/12/19

[#43869] [ruby-trunk - Feature #5778] Allow WEBrick::HTTPResponse to send IO-duck-typed bodies — "mame (Yusuke Endoh)" <mame@...> 2012/03/29

[#87535] [Ruby trunk Feature#5778] Allow WEBrick::HTTPResponse to send IO-duck-typed bodies — mame@... 2018/06/20

Issue #5778 has been updated by mame (Yusuke Endoh).

[#87609] Re: [Ruby trunk Feature#5778] Allow WEBrick::HTTPResponse to send IO-duck-typed bodies — Eric Wong <normalperson@...> 2018/06/23

mame@ruby-lang.org wrote:

[#43802] [ruby-trunk - Feature #5778][Assigned] Allow WEBrick::HTTPResponse to send IO-duck-typed bodies — "mame (Yusuke Endoh)" <mame@...> 2012/03/28

[#43836] [ruby-trunk - Feature #5778] Allow WEBrick::HTTPResponse to send IO-duck-typed bodies — "nahi (Hiroshi Nakamura)" <nakahiro@...> 2012/03/29

[#41728] [ruby-trunk - Feature #5781][Open] Query attributes (attribute methods ending in `?` mark) — Thomas Sawyer <transfire@...>

15 messages 2011/12/19

[#41755] [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — Yukihiro Matsumoto <matz@...> 2011/12/20

[#41756] Re: [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — Jeremy Bopp <jeremy@...> 2011/12/20

On 12/20/2011 08:03 AM, Yukihiro Matsumoto wrote:

[#41757] Re: [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — Anurag Priyam <anurag08priyam@...> 2011/12/20

On Tue, Dec 20, 2011 at 8:17 PM, Jeremy Bopp <jeremy@bopp.net> wrote:

[#41760] [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — Thomas Sawyer <transfire@...> 2011/12/20

[#48362] [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — "ko1 (Koichi Sasada)" <redmine@...> 2012/10/26

[#51098] [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — "trans (Thomas Sawyer)" <transfire@...> 2012/12/23

[#93739] [Ruby master Feature#5781] Query attributes (attribute methods ending in `?` mark) — eregontp@... 2019/07/13

Issue #5781 has been updated by Eregon (Benoit Daloze).

[#93785] [Ruby master Feature#5781] Query attributes (attribute methods ending in `?` mark) — sudo.nice@... 2019/07/15

Issue #5781 has been updated by sudo (Sudo Nice).

[#41754] [ruby-trunk - Feature #5781][Assigned] Query attributes (attribute methods ending in `?` mark) — Yui NARUSE <naruse@...> 2011/12/20

[#41759] [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — Thomas Sawyer <transfire@...> 2011/12/20

[#41761] [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — Benoit Daloze <redmine@...> 2011/12/20

[#41766] [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — Joshua Ballanco <jballanc@...> 2011/12/21

[#51108] [ruby-trunk - Feature #5781] Query attributes (attribute methods ending in `?` mark) — "trans (Thomas Sawyer)" <transfire@...> 2012/12/24

[#96755] [Ruby master Feature#5781] Query attributes (attribute methods ending in `?` mark) — abaelter@... 2020/01/10

Issue #5781 has been updated by anders (Anders B舁ter).

[#41767] backport requests for related commits? — Jon <jon.forums@...>

Should each of these related revision pairs be submitted as 1.9.3 backport requests, or should each revision be submitted as a separate backport request...4 or 8 backport requests?

2 messages 2011/12/21

[#41770] Re: backport requests for related commits? — "NARUSE, Yui" <naruse@...> 2011/12/22

2011/12/22 Jon <jon.forums@gmail.com>:

[#41769] [ruby-trunk - Feature #5787][Assigned] OpenSSL::X509::Name#to_a Improvement (Patch Attached) — Martin Bosslet <Martin.Bosslet@...>

1 message 2011/12/22

[#41773] [Archive91 - Backport #1942][Closed] irb not running after installation — Kouji Takao <kouji@...7.net>

1 message 2011/12/22

[#41774] [ruby-trunk - Feature #5788][Open] Thread#at_exit — Masaki Matsushita <glass.saga@...>

10 messages 2011/12/22

[#41785] [ruby-trunk - Feature #5788][Feedback] Thread#at_exit — Nobuyoshi Nakada <nobu@...> 2011/12/22

[#41793] [ruby-trunk - Feature #5788] Thread#at_exit — Shota Fukumori <sorah@...> 2011/12/24

[#41798] [ruby-trunk - Feature #5788] Thread#at_exit — Masaki Matsushita <glass.saga@...> 2011/12/24

[#41823] [ruby-trunk - Feature #5788] Thread#at_exit — Nobuyoshi Nakada <nobu@...> 2011/12/27

[#42309] [ruby-trunk - Feature #5788] Thread#at_exit — Masaki Matsushita <glass.saga@...> 2012/02/01

[#41796] [ruby-trunk - Feature #5788] Thread#at_exit — Motohiro KOSAKI <kosaki.motohiro@...> 2011/12/24

[#41826] Re: [ruby-trunk - Feature #5788] Thread#at_exit — Eric Wong <normalperson@...> 2011/12/27

Motohiro KOSAKI <kosaki.motohiro@gmail.com> wrote:

[#41827] Re: [ruby-trunk - Feature #5788] Thread#at_exit — KOSAKI Motohiro <kosaki.motohiro@...> 2011/12/27

2011/12/27 Eric Wong <normalperson@yhbt.net>:

[#49686] [ruby-trunk - Feature #5788] Thread#at_exit — "mame (Yusuke Endoh)" <mame@...> 2012/11/20

[#41775] require_relative in eval — Matthias Wächter <matthias@...>

eval() [http://www.ruby-doc.org/core-1.9.3/Kernel.html#method-i-eval]

2 messages 2011/12/22

[#41776] Re: require_relative in eval — Nikolai Weibull <now@...> 2011/12/22

2011/12/22 Matthias Wächter <matthias@waechter.wiz.at>:

[#41778] [Backport93 - Backport #5791][Open] Please backport r34043, r34045 — Jon Forums <redmine@...>

5 messages 2011/12/22

[#41784] [Backport93 - Backport #5791] Please backport r34043, r34045 — Jon Forums <redmine@...> 2011/12/22

[#41880] [Backport93 - Backport #5791] Please backport r34043, r34045 (Unexpected error of STDIN#read with non-ascii input) — Motohiro KOSAKI <kosaki.motohiro@...> 2012/01/03

[#41879] [Backport93 - Backport #5791] Please backport r34043, r34045 — Motohiro KOSAKI <kosaki.motohiro@...> 2012/01/03

[#42101] [Backport93 - Backport #5791] Please backport r34043, r34045 (Unexpected error of STDIN#read with non-ascii input) — Luis Lavena <luislavena@...> 2012/01/13

[#41779] [Backport93 - Backport #5792][Open] Please backport r33946, r33981 — Jon Forums <redmine@...>

4 messages 2011/12/22

[#41783] [Backport93 - Backport #5792] Please backport r33946, r33981 — Jon Forums <redmine@...> 2011/12/22

[#42083] [Backport93 - Backport #5792] Please backport r33946, r33981 (Use GZip::GzReader.open instead of GZip::GzReader.new with File.new) — Ayumu AIZAWA <ayumu.aizawa@...> 2012/01/12

[#42100] [Backport93 - Backport #5792] Please backport r33946, r33981 (Use GZip::GzReader.open instead of GZip::GzReader.new with File.new) — Luis Lavena <luislavena@...> 2012/01/13

[#41780] [Backport93 - Backport #5793][Open] Please backport r33662, r33666 — Jon Forums <redmine@...>

8 messages 2011/12/22

[#41782] [Backport93 - Backport #5793] Please backport r33662, r33666 — Jon Forums <redmine@...> 2011/12/22

[#41876] [Backport93 - Backport #5793] Please backport r33662, r33666 — Motohiro KOSAKI <kosaki.motohiro@...> 2012/01/03

[#41877] [Backport93 - Backport #5793] Please backport r33662, r33666 (ECONV_NEWLINE_DECORATOR_{READ,WRITE}_MASK) — Motohiro KOSAKI <kosaki.motohiro@...> 2012/01/03

[#42092] [Backport93 - Backport #5793] Please backport r33662, r33666 (ECONV_NEWLINE_DECORATOR_{READ,WRITE}_MASK) — Jon Forums <redmine@...> 2012/01/12

[#42099] [Backport93 - Backport #5793] Please backport r33662, r33666 (ECONV_NEWLINE_DECORATOR_{READ,WRITE}_MASK) — Luis Lavena <luislavena@...> 2012/01/13

[#42485] [Backport93 - Backport #5793] Please backport r33662, r33666 (ECONV_NEWLINE_DECORATOR_{READ,WRITE}_MASK) — Yui NARUSE <naruse@...> 2012/02/10

[#42486] Re: [Backport93 - Backport #5793] Please backport r33662, r33666 (ECONV_NEWLINE_DECORATOR_{READ,WRITE}_MASK) — Luis Lavena <luislavena@...> 2012/02/10

Have too much work on my plate and traveling. Hiroshi is the author,

[#41781] [Backport93 - Backport #5794][Open] Please backport r33200 — Jon Forums <redmine@...>

3 messages 2011/12/22

[#41875] [Backport93 - Backport #5794] Please backport r33200 (transcode.c: enabled econv newline option) — Motohiro KOSAKI <kosaki.motohiro@...> 2012/01/03

[#42098] [Backport93 - Backport #5794] Please backport r33200 (transcode.c: enabled econv newline option) — Luis Lavena <luislavena@...> 2012/01/13

[#41786] [ruby-trunk - Bug #5796][Open] main.c is not compiled during cross compilation — Luis Lavena <luislavena@...>

1 message 2011/12/22

[#41787] Breaking while loading — Nikolai Weibull <now@...>

Hi!

4 messages 2011/12/22

[#41788] Re: Breaking while loading — Satoshi Shiba <shiba@...> 2011/12/23

[#41789] Re: Breaking while loading — Nikolai Weibull <now@...> 2011/12/23

On Fri, Dec 23, 2011 at 07:17, Satoshi Shiba <shiba@rvm.jp> wrote:

[#41790] Re: Breaking while loading — Satoshi Shiba <shiba@...> 2011/12/23

Nikolai Weibull wrote:

[#41792] [ruby-trunk - Bug #5804][Open] Cannot cross compile trunk using Ruby 1.9.3 as BASERUBY — Luis Lavena <luislavena@...>

3 messages 2011/12/23

[#41824] [ruby-trunk - Bug #5804][Closed] Cannot cross compile trunk using Ruby 1.9.3 as BASERUBY — Nobuyoshi Nakada <nobu@...> 2011/12/27

[#41825] [ruby-trunk - Bug #5804] Cannot cross compile trunk using Ruby 1.9.3 as BASERUBY — Nobuyoshi Nakada <nobu@...> 2011/12/27

[#41794] Re: [ruby-changes:22069] luislavena:r34118 (trunk): * configure.in: add --with-ntver option to match win32/configure.bat — KOSAKI Motohiro <kosaki.motohiro@...>

Hi Luis,

2 messages 2011/12/24

[#41795] Re: [ruby-changes:22069] luislavena:r34118 (trunk): * configure.in: add --with-ntver option to match win32/configure.bat — Luis Lavena <luislavena@...> 2011/12/24

On Sat, Dec 24, 2011 at 11:41 AM, KOSAKI Motohiro

[#41797] [ruby-trunk - Feature #5805][Open] object_hexid — Thomas Sawyer <transfire@...>

9 messages 2011/12/24

[#41806] [ruby-trunk - Feature #5805] object_hexid — Thomas Sawyer <transfire@...> 2011/12/25

[#41810] [ruby-trunk - Feature #5805] object_hexid — Nobuyoshi Nakada <nobu@...> 2011/12/26

[#41802] [ruby-trunk - Feature #5805][Feedback] object_hexid — Nobuyoshi Nakada <nobu@...> 2011/12/25

[#41803] Re: [ruby-trunk - Feature #5805][Feedback] object_hexid — Urabe Shyouhei <shyouhei@...> 2011/12/25

On 2011年12月25日 14:38, Nobuyoshi Nakada wrote:

[#41807] [ruby-trunk - Feature #5805] object_hexid — Thomas Sawyer <transfire@...> 2011/12/25

[#41990] [ruby-trunk - Feature #5805] object_hexid — Thomas Sawyer <transfire@...> 2012/01/08

[#41991] Re: [ruby-trunk - Feature #5805] object_hexid — Nikolai Weibull <now@...> 2012/01/08

On Sun, Jan 8, 2012 at 17:33, Thomas Sawyer <transfire@gmail.com> wrote:

[#49682] [ruby-trunk - Feature #5805] object_hexid — "mame (Yusuke Endoh)" <mame@...> 2012/11/20

[#41799] Best way to separate implementation specific code? — Luis Lavena <luislavena@...>

Hello,

15 messages 2011/12/24

[#41800] Re: Best way to separate implementation specific code? — KOSAKI Motohiro <kosaki.motohiro@...> 2011/12/24

2011/12/24 Luis Lavena <luislavena@gmail.com>:

[#41801] Re: Best way to separate implementation specific code? — Steve Klabnik <steve@...> 2011/12/24

The way that this is done in shoes is with a native.h that contains

[#41811] Re: Best way to separate implementation specific code? — "U.Nakamura" <usa@...> 2011/12/26

Hello,

[#41817] Re: Best way to separate implementation specific code? — Luis Lavena <luislavena@...> 2011/12/26

On Sun, Dec 25, 2011 at 10:51 PM, U.Nakamura <usa@garbagecollect.jp> wrote:

[#41828] Re: Best way to separate implementation specific code? — Luis Lavena <luislavena@...> 2011/12/27

Hello,

[#41830] Re: Best way to separate implementation specific code? — "U.Nakamura" <usa@...> 2011/12/28

Hello,

[#41831] Re: Best way to separate implementation specific code? — Yukihiro Matsumoto <matz@...> 2011/12/28

Hi,

[#41832] Re: Best way to separate implementation specific code? — Luis Lavena <luislavena@...> 2011/12/28

On Tue, Dec 27, 2011 at 11:21 PM, Yukihiro Matsumoto <matz@ruby-lang.org> wrote:

[#41833] Re: Best way to separate implementation specific code? — Yukihiro Matsumoto <matz@...> 2011/12/28

Hi,

[#41840] Re: Best way to separate implementation specific code? — Luis Lavena <luislavena@...> 2011/12/29

On Tue, Dec 27, 2011 at 11:44 PM, Yukihiro Matsumoto <matz@ruby-lang.org> wrote:

[#41844] Re: Best way to separate implementation specific code? — KOSAKI Motohiro <kosaki.motohiro@...> 2011/12/29

>> For only load_file_ok refactoring, I thought file restructuring is not

[#41918] Re: Best way to separate implementation specific code? — Luis Lavena <luislavena@...> 2012/01/05

On Thu, Dec 29, 2011 at 2:18 PM, KOSAKI Motohiro

[#41838] Re: Best way to separate implementation specific code? — Luis Lavena <luislavena@...> 2011/12/28

On Tue, Dec 27, 2011 at 11:44 PM, Yukihiro Matsumoto <matz@ruby-lang.org> wrote:

[#42895] Re: Best way to separate implementation specific code? — SASADA Koichi <ko1@...> 2012/02/25

(2011/12/25 1:21), Luis Lavena wrote:

[#41804] [ruby-trunk - Bug #5798] Range#include? needs some optimization — Alexey Muranov <redmine@...>

1 message 2011/12/25

[#41808] [Archive91 - Backport #5807][Open] "define_method" not consistent with "def" — Silvio Cordeiro <redmine@...>

2 messages 2011/12/25

[#41809] [Archive91 - Backport #5807][Rejected] "define_method" not consistent with "def" — Nobuyoshi Nakada <nobu@...> 2011/12/25

[#41812] [ruby-trunk - Feature #5809][Open] Benchmark#bm: remove the label_width parameter — Benoit Daloze <redmine@...>

11 messages 2011/12/26

[#41837] [ruby-trunk - Feature #5809] Benchmark#bm: remove the label_width parameter — Yui NARUSE <naruse@...> 2011/12/28

[#41872] [ruby-trunk - Feature #5809][Open] Benchmark#bm: remove the label_width parameter — Benoit Daloze <eregontp@...> 2012/01/02

Yui NARUSE wrote:

[#41907] [ruby-trunk - Feature #5809] Benchmark#bm: remove the label_width parameter — Yui NARUSE <naruse@...> 2012/01/05

[#43933] [ruby-trunk - Feature #5809][Feedback] Benchmark#bm: remove the label_width parameter — "naruse (Yui NARUSE)" <naruse@...> 2012/03/30

[#41819] [ruby-trunk - Feature #5809] Benchmark#bm: remove the label_width parameter — Benoit Daloze <redmine@...> 2011/12/26

[#41816] [ruby-trunk - Feature #5809] Benchmark#bm: remove the label_width parameter — Thomas Sawyer <transfire@...> 2011/12/26

[#43805] [ruby-trunk - Feature #5809][Assigned] Benchmark#bm: remove the label_width parameter — "mame (Yusuke Endoh)" <mame@...> 2012/03/28

[#43852] [ruby-trunk - Feature #5809] Benchmark#bm: remove the label_width parameter — "Eregon (Benoit Daloze)" <redmine@...> 2012/03/29

[#49727] [ruby-trunk - Feature #5809] Benchmark#bm: remove the label_width parameter — "mame (Yusuke Endoh)" <mame@...> 2012/11/20

[#66148] [ruby-trunk - Feature #5809] [Closed] Benchmark#bm: remove the label_width parameter — eregontp@... 2014/11/08

Issue #5809 has been updated by Benoit Daloze.

[#41821] [ruby-trunk - Bug #5813][Assigned] net/http's EOFError and Keep-Alive — Yui NARUSE <naruse@...>

1 message 2011/12/27

[#41829] [ruby-trunk - Bug #5817][Open] [mingw] ruby/test_file.rb error in test_chmod_m17n(TestFile) — Jon Forums <redmine@...>

1 message 2011/12/27

[#41836] [ruby-trunk - Feature #5818] Feature: Raiseable — Yukihiro Matsumoto <matz@...>

1 message 2011/12/28

[#41841] YAML has become very slow under 1.9 — j.wuttke <j.wuttke@...>

The simple script

7 messages 2011/12/29

[#41843] Re: YAML has become very slow under 1.9 — "NARUSE, Yui" <naruse@...> 2011/12/29

(2011/12/30 1:46), j.wuttke wrote:

[#41842] Re: YAML has become very slow under 1.9 — Rodrigo Rosenfeld Rosas <rr.rosas@...> 2011/12/29

Em 29-12-2011 14:46, j.wuttke escreveu:

[#41853] Re: YAML has become very slow under 1.9 — Aaron Patterson <tenderlove@...> 2011/12/30

On Fri, Dec 30, 2011 at 01:46:11AM +0900, j.wuttke wrote:

[#41854] another YAML problem: read-write cycle messes up human readability — "Joachim Wuttke <j.wuttke@...>" <j.wuttke@...> 2011/12/30

Out of desperation, I am currently storing data lines like

[#41855] Re: YAML has become very slow under 1.9 — "Joachim Wuttke <j.wuttke@...>" <j.wuttke@...> 2011/12/30

Aaron, thank you for your answer.

[#41857] Re: YAML has become very slow under 1.9 — Zachary Scott <zachary@...> 2011/12/30

Here are some benchmarks:

[#41845] Fwd: redmine cert expired — Ryan Davis <ryand-ruby@...>

1 message 2011/12/30

[#41847] Exposing rb_hash_start(), rb_hash_uint(), and rb_hash_end() as Hash::Value — Nikolai Weibull <now@...>

Hi!

1 message 2011/12/30

[#41848] [ruby-trunk - Feature #5826][Open] When the RUBY API_VERSION will be increased? — Ayumu AIZAWA <ayumu.aizawa@...>

5 messages 2011/12/30

[#41856] [ruby-trunk - Feature #5826] When the RUBY API_VERSION will be increased? — Ayumu AIZAWA <ayumu.aizawa@...> 2011/12/30

[#41921] [ruby-trunk - Feature #5826][Assigned] When the RUBY API_VERSION will be increased? — Ayumu AIZAWA <ayumu.aizawa@...> 2012/01/05

[#41926] Re: [ruby-trunk - Feature #5826][Assigned] When the RUBY API_VERSION will be increased? — KOSAKI Motohiro <kosaki.motohiro@...> 2012/01/05

> I think RUBY_API_VERSION should be 2.0.0 for Ruby2.0.0.

[#41942] [ruby-trunk - Feature #5826][Closed] When the RUBY API_VERSION will be increased? — Ayumu AIZAWA <ayumu.aizawa@...> 2012/01/06

[#41850] [ruby-trunk - Feature #5825] Sweet instance var assignment in the object initializer — Eero Saynatkari <redmine@...>

1 message 2011/12/30

[#41851] [ruby-trunk - Feature #5825] Sweet instance var assignment in the object initializer — Rodrigo Rosenfeld Rosas <rr.rosas@...>

1 message 2011/12/30

[#41858] [ruby-trunk - Bug #5828][Open] Non anonymous classes can't be frozen, cloned and then inspected — Andrew Grimm <andrew.j.grimm@...>

5 messages 2011/12/31

[#62418] [ruby-trunk - Bug #5828] [Feedback] Non anonymous classes can't be frozen, cloned and then inspected — akr@... 2014/05/06

Issue #5828 has been updated by Akira Tanaka.

[#62432] [ruby-trunk - Bug #5828] Non anonymous classes can't be frozen, cloned and then inspected — andrew.j.grimm@... 2014/05/06

Issue #5828 has been updated by Andrew Grimm.

[#62973] [ruby-trunk - Bug #5828] [Closed] Non anonymous classes can't be frozen, cloned and then inspected — akr@... 2014/06/07

Issue #5828 has been updated by Akira Tanaka.

[#62974] [ruby-trunk - Bug #5828] Non anonymous classes can't be frozen, cloned and then inspected — akr@... 2014/06/07

Issue #5828 has been updated by Akira Tanaka.

[#41859] [ruby-trunk - Feature #5825] Sweet instance var assignment in the object initializer — Shyouhei Urabe <shyouhei@...>

1 message 2011/12/31

[#41860] [ruby-trunk - Bug #5830][Open] "".byteslice(0) != "".byteslice(0, 0) — Brian Ford <brixen@...>

3 messages 2011/12/31

[#41861] [ruby-trunk - Bug #5830][Rejected] "".byteslice(0) != "".byteslice(0, 0) — Yui NARUSE <naruse@...> 2011/12/31

[#41864] Re: [ruby-trunk - Bug #5830][Open] "".byteslice(0) != "".byteslice(0, 0) — Gary Wright <gwtmp01@...> 2011/12/31

[#41862] [ruby-trunk - Feature #2340] Removing YAML/Syck — Alexey Muranov <redmine@...>

1 message 2011/12/31

[#41863] RB_GC_GUARD complaint — Roger Pack <rogerdpack2@...>

Probably old news, but thought I'd point out that Kurt Stephens:

3 messages 2011/12/31

[#41923] Re: RB_GC_GUARD complaint — Roger Pack <rogerdpack2@...> 2012/01/05

> thinks that this type of bug:

[#41964] Re: RB_GC_GUARD complaint — Nikolai Weibull <now@...> 2012/01/07

On Thu, Jan 5, 2012 at 17:38, Roger Pack <rogerdpack2@gmail.com> wrote:

[ruby-core:41736] [ruby-trunk - Feature #5741] Secure Erasure of Passwords

From: Martin Bosslet <Martin.Bosslet@...>

Date: 2011-12-20 00:09:06 UTC

List: ruby-core #41736

Issue #5741 has been updated by Martin Bosslet.


Thanks for your thoughts!

>  I think you're going to adopt opt-in way, so library/application
>  developers must add String#clear call after using the password, right?

Yes, I think opt-in is the only way to ensure there are no negative side 
effects on existing code.

>  If it's opt-in, new specific class would be enough I think.  In this
>  way, we can control the memory copy (part-of, of course) and eventually
>  we might be able to split buffers into multiple parts that have
>  different addresses.
>  
>  class SecureByteBuffer
>    def ==(rhs)
>      raise unless rhs.is_a?(SecureByteBuffer)
>      ...
>    end
>  
>    def clear
>      ...
>    end
>  end

That is an interesting approach, I'd love to catch up on this. So
far, I had four ideas for implementing such a thing.

1. String#clear 
+ it's at the "root" of the problem
+ adoption of the feature will merely ask for calling #clear on password variables at the right places
- invasive because rarely needed
- memory side effects of other string ops might be hard to keep in sync

2. Decorator/Visitor/Subclass of String
+ Unobtrusive
- But adoption requires a lot more code changes, not only the "erasure" part but also the parts
where the passwords are created

3. Module/Class function class, "helper function"
+ Unobtrusive
- Adoption requires only the additional calls at the place where erasure is needed
- Where to put this?

4. Separate class, not necessarily String-like
+ Unobtrusive
- Adoption again requires lots of changes (like in 2.)
- Will it be accepted by users?

If I understand correctly your proposal would tend towards 4.?
I'm open to anything, as long as there's something :) I haven't 
looked at the memory copy issue yet in detail, so I can't really
tell for sure whether it's possible at all to control it entirely.
Might as well be the case that we would need to document safe
handling of passwords properly to ensure the desired outcome. I'd
volunteer for that once we have found a stable solution.
 
>  But the most hard part I think is how we construct this Object...

I know... :)
  
>  Martin, do you have concrete examples which needs secure erasure of
>  passwords?  Only I can think of now is ossl_pem_passwd_cb in
>  ext/openssl.  It gets password as a String from a callback block but it
>  would be good to add a feature to read from STDIN directly, without
>  creating the String object.

Besides the cases within the OpenSSL extension that you mentioned, I was
mainly thinking about authentication in web apps. You typically retrieve
the password String from a request there. I need to dig deeper to come
up with some concrete examples but I assume the idea should be clear.

Besides that I kept thinking about what you said the other day, whether
I'm only concerned about passwords or also about private keys and the like.
I was only thinking passwords when I wrote this, but you're absolutely right,
private keys in memory are equally bad [1].

It happens a lot that we use private keys in this way, SSH, SSL, digital signatures,
encryption, you name it. And the biggest problem is that the private keys are
not strings in general, so the String solution wouldn't apply directly. But I'm
confident that we could at least apply the same technique. Fortunately, OpenSSL takes
care of this for us in all places where we rely on OpenSSL (with its OPENSSL_cleanse 
function), but still we should investigate if there aren't any loopholes left.

[1] http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.77.3297&rep=rep1&type=pdf

----------------------------------------
Feature #5741: Secure Erasure of Passwords
https://bugs.ruby-lang.org/issues/5741

Author: Martin Bosslet
Status: Open
Priority: Normal
Assignee: 
Category: 
Target version: 2.0.0


In other languages it is considered good practice to securely erase 
passwords immediately after they were used. Imagine authentication
in a web app - ultimately a String containing the password arrives
at the server, where it will be processed and compared to some 
previously stored value. After this is done, there is no need to
store these password Strings any longer, so they should be
discarded right away (more on why later).

In C, you would simply overwrite the array of bytes with zeroes or
random values. In Java, Strings are immutable, that's why there it
is common practice to use char[] for all things password and overwrite
them when done.

Currently, there is no way in Ruby to overwrite the memory that
was used by a String. String#clear and String#replace both use
str_discard internally, which only frees the underlying pointer 
without overwriting it.

The problem with not erasing passwords is this: the contents of the
String stay in memory until they are finally GC'ed. But even then
only the pointer will be freed, leaving the contents mostly intact
until the memory is reclaimed and overwritten later on.

This could be exploited if an attacker had access to the memory of
the server. This could happen in many ways: a core dump after a
crash, access to the host if the server runs in a VM, or even by
deep-freezing the DRAM :) [1]

It could be argued that given the examples above, much more 
devastating attacks would be possible since in all of those
cases you more or less have physical access to the machine. But
I would still consider this to be a valid concern, if not only
for the reason of never opening additional attack surfaces if
they can be avoided relatively easily.

I also found [2], which seems to show that Python deals with 
similar problems and it also contains more background info.

Eric Hodel and I discussed this yesterday and Eric came up with
a C extension that can be used to illustrate the problem (attached).

If you inspect the resulting core dump, you will find the following:

- the untouched String remains in memory fully intact
- the String#clear'ed String remains to a large extent, typically the
  first character is missing - so if you typed "PASSWORD", search for
  "ASSWORD" (unintentional pun) instead
- The String#clear_secure'ed will have been completely erased, no 
  traces remain

My questions:

1. Would you agree that we need this functionality?
2. Where would we ideally place it? I'm not sure whether
   String is the perfect place, but on the other hand, String
   is the only place where we have access to the implementation
   details.
3. Are there better alternative ways how we could achieve this?

[1] http://www.schneier.com/blog/archives/2008/02/cold_boot_attac.html
[2] http://stackoverflow.com/questions/728164/securely-erasing-password-in-memory-python


-- 
http://redmine.ruby-lang.org

Thread

Prev Next

In This Thread

Prev Next

[#41421] [ruby-trunk - Feature #5653] "I strongly discourage the use of autoload in any standard libraries" (Re: autoload will be dead) — Stephen Touset <stephen@...>

[#41423] [ruby-trunk - Feature #5653] "I strongly discourage the use of autoload in any standard libraries" (Re: autoload will be dead) — Stephen Touset <stephen@...>

[#41425] [ruby-trunk - Feature #2740] Extend const_missing to pass in the nesting — Yehuda Katz <wycats@...>

[#41426] [ruby-trunk - Feature #5653] "I strongly discourage the use of autoload in any standard libraries" (Re: autoload will be dead) — Yehuda Katz <wycats@...>

[#41427] [ruby-trunk - Bug #5693][Assigned] clang warning in bigdecimal — Yui NARUSE <naruse@...>

[#41431] [ruby-trunk - Bug #5694][Open] Proc#arity doesn't take optional arguments into account. — Marc-Andre Lafortune <ruby-core@...>

[#41432] [ruby-trunk - Feature #5653] "I strongly discourage the use of autoload in any standard libraries" (Re: autoload will be dead) — Stephen Touset <stephen@...>

[#41435] [ruby-trunk - Feature #5695][Open] CoffeeScript "is" and "isnt" keywords — Suraj Kurapati <sunaku@...>

[#41437] [ruby-trunk - Bug #5696][Open] rexml BaseParser uses instance_eval unnecessarily on listener add — Charles Nutter <headius@...>

[#41438] [ruby-trunk - Bug #5697][Open] Wrong flag for enabling PIE executables with clang — Eric Hodel <drbrain@...7.net>

[#41440] [Ruby 1.8 - Bug #5698][Open] rexml Encoding logic creates unnecessary singleton classes, aliases at runtime — Charles Nutter <headius@...>

[#41456] [ruby-trunk - Bug #5700][Open] fork {} segfaults during VM cleanup when run inside Fiber — Eric Wong <normalperson@...>

[#41458] [ruby-trunk - Bug #5701][Open] Compilation under Lion with clang 2.1 fails — Cake Pie <7t3rf0x@...>

[#41463] [ruby-trunk - Bug #5703][Open] Ruby 1.9.3p0 segmentation fault (during autoload?) — Bryan Helmkamp <bryan@...>

[#41468] [Backport93 - Backport #5704][Open] Please backport r33937 — Luis Lavena <luislavena@...>

[#41475] [ruby-trunk - Bug #5706][Open] Build failure on io/wait extension with VC 2010 — Heesob Park <phasis@...>

[#41478] [ruby-trunk - Feature #5707][Open] temporary file creation without finalizer and delegate. — Akira Tanaka <akr@...>

[#41479] [ruby-trunk - Bug #5709][Open] Improve Regexp documentation — Sylvain Daubert <sylvain.daubert@...>

[#41486] [ruby-trunk - Feature #5710][Open] Enumerable#each( :method ) and Enumerable#map( :method ) — Matías Battocchia <matias@...>

[#41494] [ruby-trunk - Bug #5713][Open] Fixnum#** returns Infinity for 0 ** negative Bignum — John Firebaugh <john.firebaugh@...>

[#41496] [ruby-trunk - Bug #5714][Open] Unexpected error of STDIN#read with non-ascii input on Windows XP — Heesob Park <phasis@...>

[#41498] [ruby-trunk - Bug #5715][Open] +/-1 ** Bignum returns different results than +/-1 ** Fixnum — John Firebaugh <john.firebaugh@...>

[#41502] [ruby-trunk - Feature #5716][Open] duplicated when clause is ignored -> Report which clause it is specifically. — markus heiler <shevegen@...>

[#41511] [ruby-trunk - Bug #5719][Open] Hash::[] can't handle 100000+ args — Nick Quaranto <nick@...>

[#41520] [ruby-trunk - Bug #5720][Open] Exceptions can be caused via eval that evade exception handling — Gabriel Gironda <gabriel.gironda@...>

[#41522] [ruby-trunk - Bug #5721][Open] require_relative — rommel nocando <redmine@...>

[#41524] [ruby-trunk - Bug #5723][Open] Ruby fails when standard input is closed — Randal Moore <rdmoore@...>

[#41529] [ruby-trunk - Bug #5724][Open] date_core compiling issues with MinGW GCC 4.6 — Luis Lavena <luislavena@...>

[#41537] [ruby-trunk - Feature #2294] [PATCH] ruby_bind_stack() to embed Ruby in coroutine — Steve Hart <steve@...>

[#41541] [ruby-trunk - Feature #5726][Open] Process::EXIT_SUCCESS and Process::EXIT_FAILURE — Akira Tanaka <akr@...>

[#41545] [ruby-trunk - Bug #5727][Open] Hidden bug in load.c rb_feature_p — Yura Sokolov <funny.falcon@...>

[#41556] Error when loading a converter — Aaron Patterson <tenderlove@...>

[#41557] [ruby-trunk - Bug #5730][Open] Optinal block parameters assigns wrong — Yukihiro Matsumoto <matz@...>

[#41575] [ruby-trunk - Bug #5736][Open] Numeric#quo should convert with #to_r — John Firebaugh <john.firebaugh@...>

[#41579] rb_require, search_required and design questions — Luis Lavena <luislavena@...>

[#41581] [ruby-trunk - Bug #5737][Open] WEBrick doesn't support keep alive connections for 204 and 304 responses — Aaron Patterson <aaron@...>

[#41584] [ruby-trunk - Bug #5739] [BUG] object allocation during garbage collection phase — Fused Team <admins@...>

[#41585] [ruby-trunk - Bug #5740][Open] Trivial typo in ext/syslog.c — mathew murphy <meta@...>

[#41586] [ruby-trunk - Feature #5741][Open] Secure Erasure of Passwords — Martin Bosslet <Martin.Bosslet@...>

[#41592] My bug evaluation criteria — Marc-Andre Lafortune <ruby-core-mailing-list@...>

[#41594] [ruby-trunk - Bug #5746][Open] Proc#curry too strict about lambda's arity. — Marc-Andre Lafortune <ruby-core@...>

[#41597] [ruby-trunk - Bug #5747][Open] Proc#curry doesn't always detect too many arguments — Marc-Andre Lafortune <ruby-core@...>

[#41603] [ruby-trunk - Feature #5749][Open] new method String#match_all needed — Joey Zhou <yimutang@...>

[#41606] [ruby-trunk - Bug #5750][Open] Thread.current local-variables behavior — Julien A <schmurfy@...>

[#41612] Errors raised and rescued in Kernel#loaded file still propagate — Nikolai Weibull <now@...>

[#41613] [ruby-trunk - Bug #5751][Open] functions unable to handle hashes containing spaces unless wrapped in parenthesis — spencer roan <spencerroan@...>

[#41616] [ruby-trunk - Bug #5752][Open] Array#delete_if side effects due to changeset r32360 — Thomas Leitner <t_leitner@...>

[#41618] [ruby-trunk - Bug #5754][Open] Double require bug in 1.9.3 — Evan Phoenix <evan@...>

[#41625] [ruby-trunk - Bug #5755][Assigned] Errors raised and rescued in Kernel#loaded file still propagate — Tomoyuki Chikanaga <nagachika00@...>

[#41626] [ruby-trunk - Bug #5756][Open] crashs when Twitter.update_with_media with rails — SungHee Kang <paranoiase@...>

[#41630] redmine.ruby-lang.org -> bugs.ruby-lang.org — Shugo Maeda <shugo@...>

[#41634] [ruby-trunk - Bug #5759][Open] flatten calls to_ary on everything — Thomas Sawyer <transfire@...>

[#41645] [ruby-trunk - Bug #5761][Open] Array#flatten(N) calls to_ary on the (N+1)-level objects — Jon Leighton <j@...>

[#41656] [ruby-trunk - Bug #5763][Open] sprintf not throwing error for wrong number of arguments — NagaChaitanya Vellanki <me@...>

[#41657] [Ruby 1.8 - Bug #5764][Open] Net::HTTP should assume HTTP/0.9 on unexpected responses — Mike Styer <michael@...>

[#41662] [ruby-trunk - Bug #5765][Open] [PATCH] modernize Timeout usage in net/{http,pop,smtp,telnet} — Eric Wong <normalperson@...>

[#41668] [ruby-trunk - Feature #5766][Open] Hash.each_with_object should behave differently when block's arity is 3 — Rodrigo Rosenfeld Rosas <rr.rosas@...>

[#41672] [ruby-trunk - Feature #5767][Open] Cache expanded_load_path to reduce startup time — Yura Sokolov <funny.falcon@...>

[#41681] Documentation of the language itself (syntax, meanings, etc) — Rodrigo Rosenfeld Rosas <rr.rosas@...>

[#41691] Ruby IRC Presence Problem — Eero Saynatkari <ruby-ml@...>

[#41702] [ruby-trunk - Feature #3620] Add Queue, SIzedQueue and ConditionVariable implementations in C in addition to ruby ones — Eric Wong <normalperson@...>

[#41703] security disclosure policy — Ryan Davis <ryand-ruby@...>

[#41710] [ruby-trunk - Bug #5773][Open] bigdecimal comparison raises SystemStackError — Aaron Patterson <aaron@...>

[#41711] [ruby-trunk - Bug #5774][Open] [PATCH] xmlrpc client handling cookies — Roman Riha <redmine@...>

[#41713] [ruby-trunk - Bug #5775][Open] BigDecimal does not follow Allocation Framework — Nobuyoshi Nakada <nobu@...>

[#41717] Feature : optional argument in File.join — Michel Demazure <michel@...>

[#41718] [ruby-trunk - Bug #5777][Open] class_eval/module_eval works differently when given a string than when given a block in 1.9.2 and 1.9.3 — George MacKerron <redmine@...>

[#41721] Ruby and oniguruma relation. — V咜 Ondruch <v.ondruch@...>

[#41725] [ruby-trunk - Feature #5778][Open] Allow WEBrick::HTTPResponse to send IO-duck-typed bodies — Alex Young <alex@...>

[#41728] [ruby-trunk - Feature #5781][Open] Query attributes (attribute methods ending in `?` mark) — Thomas Sawyer <transfire@...>

[#41767] backport requests for related commits? — Jon <jon.forums@...>

[#41769] [ruby-trunk - Feature #5787][Assigned] OpenSSL::X509::Name#to_a Improvement (Patch Attached) — Martin Bosslet <Martin.Bosslet@...>

[#41773] [Archive91 - Backport #1942][Closed] irb not running after installation — Kouji Takao <kouji@...7.net>

[#41774] [ruby-trunk - Feature #5788][Open] Thread#at_exit — Masaki Matsushita <glass.saga@...>

[#41775] require_relative in eval — Matthias Wächter <matthias@...>

[#41778] [Backport93 - Backport #5791][Open] Please backport r34043, r34045 — Jon Forums <redmine@...>

[#41779] [Backport93 - Backport #5792][Open] Please backport r33946, r33981 — Jon Forums <redmine@...>

[#41780] [Backport93 - Backport #5793][Open] Please backport r33662, r33666 — Jon Forums <redmine@...>

[#41781] [Backport93 - Backport #5794][Open] Please backport r33200 — Jon Forums <redmine@...>

[#41786] [ruby-trunk - Bug #5796][Open] main.c is not compiled during cross compilation — Luis Lavena <luislavena@...>

[#41494] [ruby-trunk - Bug #5713][Open] Fixnum# returns Infinity for 0 negative Bignum — John Firebaugh <john.firebaugh@...>

[#41498] [ruby-trunk - Bug #5715][Open] +/-1 Bignum returns different results than +/-1 Fixnum — John Firebaugh <john.firebaugh@...>