… | |
… | |
14 | |
14 | |
15 | AnyEvent::Handle - non-blocking I/O on file handles via AnyEvent |
15 | AnyEvent::Handle - non-blocking I/O on file handles via AnyEvent |
16 | |
16 | |
17 | =cut |
17 | =cut |
18 | |
18 | |
19 | our $VERSION = 4.33; |
19 | our $VERSION = 4.45; |
20 | |
20 | |
21 | =head1 SYNOPSIS |
21 | =head1 SYNOPSIS |
22 | |
22 | |
23 | use AnyEvent; |
23 | use AnyEvent; |
24 | use AnyEvent::Handle; |
24 | use AnyEvent::Handle; |
… | |
… | |
27 | |
27 | |
28 | my $handle = |
28 | my $handle = |
29 | AnyEvent::Handle->new ( |
29 | AnyEvent::Handle->new ( |
30 | fh => \*STDIN, |
30 | fh => \*STDIN, |
31 | on_eof => sub { |
31 | on_eof => sub { |
32 | $cv->broadcast; |
32 | $cv->send; |
33 | }, |
33 | }, |
34 | ); |
34 | ); |
35 | |
35 | |
36 | # send some request line |
36 | # send some request line |
37 | $handle->push_write ("getinfo\015\012"); |
37 | $handle->push_write ("getinfo\015\012"); |
… | |
… | |
63 | |
63 | |
64 | =head1 METHODS |
64 | =head1 METHODS |
65 | |
65 | |
66 | =over 4 |
66 | =over 4 |
67 | |
67 | |
68 | =item B<new (%args)> |
68 | =item $handle = B<new> AnyEvent::TLS fh => $filehandle, key => value... |
69 | |
69 | |
70 | The constructor supports these arguments (all as key => value pairs). |
70 | The constructor supports these arguments (all as C<< key => value >> pairs). |
71 | |
71 | |
72 | =over 4 |
72 | =over 4 |
73 | |
73 | |
74 | =item fh => $filehandle [MANDATORY] |
74 | =item fh => $filehandle [MANDATORY] |
75 | |
75 | |
… | |
… | |
127 | and no read request is in the queue (unlike read queue callbacks, this |
127 | and no read request is in the queue (unlike read queue callbacks, this |
128 | callback will only be called when at least one octet of data is in the |
128 | callback will only be called when at least one octet of data is in the |
129 | read buffer). |
129 | read buffer). |
130 | |
130 | |
131 | To access (and remove data from) the read buffer, use the C<< ->rbuf >> |
131 | To access (and remove data from) the read buffer, use the C<< ->rbuf >> |
132 | method or access the C<$handle->{rbuf}> member directly. |
132 | method or access the C<$handle->{rbuf}> member directly. Note that you |
|
|
133 | must not enlarge or modify the read buffer, you can only remove data at |
|
|
134 | the beginning from it. |
133 | |
135 | |
134 | When an EOF condition is detected then AnyEvent::Handle will first try to |
136 | When an EOF condition is detected then AnyEvent::Handle will first try to |
135 | feed all the remaining data to the queued callbacks and C<on_read> before |
137 | feed all the remaining data to the queued callbacks and C<on_read> before |
136 | calling the C<on_eof> callback. If no progress can be made, then a fatal |
138 | calling the C<on_eof> callback. If no progress can be made, then a fatal |
137 | error will be raised (with C<$!> set to C<EPIPE>). |
139 | error will be raised (with C<$!> set to C<EPIPE>). |
… | |
… | |
235 | |
237 | |
236 | This will not work for partial TLS data that could not be encoded |
238 | This will not work for partial TLS data that could not be encoded |
237 | yet. This data will be lost. Calling the C<stoptls> method in time might |
239 | yet. This data will be lost. Calling the C<stoptls> method in time might |
238 | help. |
240 | help. |
239 | |
241 | |
|
|
242 | =item common_name => $string |
|
|
243 | |
|
|
244 | The common name used by some verification methods (most notably SSL/TLS) |
|
|
245 | associated with this connection. Usually this is the remote hostname used |
|
|
246 | to connect, but can be almost anything. |
|
|
247 | |
240 | =item tls => "accept" | "connect" | Net::SSLeay::SSL object |
248 | =item tls => "accept" | "connect" | Net::SSLeay::SSL object |
241 | |
249 | |
242 | When this parameter is given, it enables TLS (SSL) mode, that means |
250 | When this parameter is given, it enables TLS (SSL) mode, that means |
243 | AnyEvent will start a TLS handshake as soon as the conenction has been |
251 | AnyEvent will start a TLS handshake as soon as the conenction has been |
244 | established and will transparently encrypt/decrypt data afterwards. |
252 | established and will transparently encrypt/decrypt data afterwards. |
… | |
… | |
253 | mode. |
261 | mode. |
254 | |
262 | |
255 | You can also provide your own TLS connection object, but you have |
263 | You can also provide your own TLS connection object, but you have |
256 | to make sure that you call either C<Net::SSLeay::set_connect_state> |
264 | to make sure that you call either C<Net::SSLeay::set_connect_state> |
257 | or C<Net::SSLeay::set_accept_state> on it before you pass it to |
265 | or C<Net::SSLeay::set_accept_state> on it before you pass it to |
258 | AnyEvent::Handle. |
266 | AnyEvent::Handle. Also, this module will take ownership of this connection |
|
|
267 | object. |
|
|
268 | |
|
|
269 | At some future point, AnyEvent::Handle might switch to another TLS |
|
|
270 | implementation, then the option to use your own session object will go |
|
|
271 | away. |
|
|
272 | |
|
|
273 | B<IMPORTANT:> since Net::SSLeay "objects" are really only integers, |
|
|
274 | passing in the wrong integer will lead to certain crash. This most often |
|
|
275 | happens when one uses a stylish C<< tls => 1 >> and is surprised about the |
|
|
276 | segmentation fault. |
259 | |
277 | |
260 | See the C<< ->starttls >> method for when need to start TLS negotiation later. |
278 | See the C<< ->starttls >> method for when need to start TLS negotiation later. |
261 | |
279 | |
262 | =item tls_ctx => $ssl_ctx |
280 | =item tls_ctx => $anyevent_tls |
263 | |
281 | |
264 | Use the given C<Net::SSLeay::CTX> object to create the new TLS connection |
282 | Use the given C<AnyEvent::TLS> object to create the new TLS connection |
265 | (unless a connection object was specified directly). If this parameter is |
283 | (unless a connection object was specified directly). If this parameter is |
266 | missing, then AnyEvent::Handle will use C<AnyEvent::Handle::TLS_CTX>. |
284 | missing, then AnyEvent::Handle will use C<AnyEvent::Handle::TLS_CTX>. |
|
|
285 | |
|
|
286 | Instead of an object, you can also specify a hash reference with C<< key |
|
|
287 | => value >> pairs. Those will be passed to L<AnyEvent::TLS> to create a |
|
|
288 | new TLS context object. |
267 | |
289 | |
268 | =item json => JSON or JSON::XS object |
290 | =item json => JSON or JSON::XS object |
269 | |
291 | |
270 | This is the json coder object used by the C<json> read and write types. |
292 | This is the json coder object used by the C<json> read and write types. |
271 | |
293 | |
… | |
… | |
280 | |
302 | |
281 | =cut |
303 | =cut |
282 | |
304 | |
283 | sub new { |
305 | sub new { |
284 | my $class = shift; |
306 | my $class = shift; |
285 | |
|
|
286 | my $self = bless { @_ }, $class; |
307 | my $self = bless { @_ }, $class; |
287 | |
308 | |
288 | $self->{fh} or Carp::croak "mandatory argument fh is missing"; |
309 | $self->{fh} or Carp::croak "mandatory argument fh is missing"; |
289 | |
310 | |
290 | AnyEvent::Util::fh_nonblocking $self->{fh}, 1; |
311 | AnyEvent::Util::fh_nonblocking $self->{fh}, 1; |
|
|
312 | |
|
|
313 | $self->{_activity} = AnyEvent->now; |
|
|
314 | $self->_timeout; |
|
|
315 | |
|
|
316 | $self->no_delay (delete $self->{no_delay}) if exists $self->{no_delay}; |
291 | |
317 | |
292 | $self->starttls (delete $self->{tls}, delete $self->{tls_ctx}) |
318 | $self->starttls (delete $self->{tls}, delete $self->{tls_ctx}) |
293 | if $self->{tls}; |
319 | if $self->{tls}; |
294 | |
320 | |
295 | $self->{_activity} = AnyEvent->now; |
|
|
296 | $self->_timeout; |
|
|
297 | |
|
|
298 | $self->on_drain (delete $self->{on_drain}) if exists $self->{on_drain}; |
321 | $self->on_drain (delete $self->{on_drain}) if exists $self->{on_drain}; |
299 | $self->no_delay (delete $self->{no_delay}) if exists $self->{no_delay}; |
|
|
300 | |
322 | |
301 | $self->start_read |
323 | $self->start_read |
302 | if $self->{on_read}; |
324 | if $self->{on_read}; |
303 | |
325 | |
304 | $self |
326 | $self->{fh} && $self |
305 | } |
327 | } |
306 | |
328 | |
307 | sub _shutdown { |
329 | sub _shutdown { |
308 | my ($self) = @_; |
330 | my ($self) = @_; |
309 | |
331 | |
310 | delete $self->{_tw}; |
332 | delete @$self{qw(_tw _rw _ww fh rbuf wbuf on_read _queue)}; |
311 | delete $self->{_rw}; |
333 | $self->{_eof} = 1; # tell starttls et. al to stop trying |
312 | delete $self->{_ww}; |
|
|
313 | delete $self->{fh}; |
|
|
314 | |
334 | |
315 | &_freetls; |
335 | &_freetls; |
316 | |
|
|
317 | delete $self->{on_read}; |
|
|
318 | delete $self->{_queue}; |
|
|
319 | } |
336 | } |
320 | |
337 | |
321 | sub _error { |
338 | sub _error { |
322 | my ($self, $errno, $fatal) = @_; |
339 | my ($self, $errno, $fatal) = @_; |
323 | |
340 | |
… | |
… | |
762 | ) { |
779 | ) { |
763 | $self->_error (&Errno::ENOSPC, 1), return; |
780 | $self->_error (&Errno::ENOSPC, 1), return; |
764 | } |
781 | } |
765 | |
782 | |
766 | while () { |
783 | while () { |
|
|
784 | # we need to use a separate tls read buffer, as we must not receive data while |
|
|
785 | # we are draining the buffer, and this can only happen with TLS. |
|
|
786 | $self->{rbuf} .= delete $self->{_tls_rbuf} if exists $self->{_tls_rbuf}; |
|
|
787 | |
767 | my $len = length $self->{rbuf}; |
788 | my $len = length $self->{rbuf}; |
768 | |
789 | |
769 | if (my $cb = shift @{ $self->{_queue} }) { |
790 | if (my $cb = shift @{ $self->{_queue} }) { |
770 | unless ($cb->($self)) { |
791 | unless ($cb->($self)) { |
771 | if ($self->{_eof}) { |
792 | if ($self->{_eof}) { |
… | |
… | |
832 | |
853 | |
833 | =item $handle->rbuf |
854 | =item $handle->rbuf |
834 | |
855 | |
835 | Returns the read buffer (as a modifiable lvalue). |
856 | Returns the read buffer (as a modifiable lvalue). |
836 | |
857 | |
837 | You can access the read buffer directly as the C<< ->{rbuf} >> member, if |
858 | You can access the read buffer directly as the C<< ->{rbuf} >> |
838 | you want. |
859 | member, if you want. However, the only operation allowed on the |
|
|
860 | read buffer (apart from looking at it) is removing data from its |
|
|
861 | beginning. Otherwise modifying or appending to it is not allowed and will |
|
|
862 | lead to hard-to-track-down bugs. |
839 | |
863 | |
840 | NOTE: The read buffer should only be used or modified if the C<on_read>, |
864 | NOTE: The read buffer should only be used or modified if the C<on_read>, |
841 | C<push_read> or C<unshift_read> methods are used. The other read methods |
865 | C<push_read> or C<unshift_read> methods are used. The other read methods |
842 | automatically manage the read buffer. |
866 | automatically manage the read buffer. |
843 | |
867 | |
… | |
… | |
1139 | } |
1163 | } |
1140 | }; |
1164 | }; |
1141 | |
1165 | |
1142 | =item json => $cb->($handle, $hash_or_arrayref) |
1166 | =item json => $cb->($handle, $hash_or_arrayref) |
1143 | |
1167 | |
1144 | Reads a JSON object or array, decodes it and passes it to the callback. |
1168 | Reads a JSON object or array, decodes it and passes it to the |
|
|
1169 | callback. When a parse error occurs, an C<EBADMSG> error will be raised. |
1145 | |
1170 | |
1146 | If a C<json> object was passed to the constructor, then that will be used |
1171 | If a C<json> object was passed to the constructor, then that will be used |
1147 | for the final decode, otherwise it will create a JSON coder expecting UTF-8. |
1172 | for the final decode, otherwise it will create a JSON coder expecting UTF-8. |
1148 | |
1173 | |
1149 | This read type uses the incremental parser available with JSON version |
1174 | This read type uses the incremental parser available with JSON version |
… | |
… | |
1166 | my $rbuf = \$self->{rbuf}; |
1191 | my $rbuf = \$self->{rbuf}; |
1167 | |
1192 | |
1168 | my $json = $self->{json} ||= JSON->new->utf8; |
1193 | my $json = $self->{json} ||= JSON->new->utf8; |
1169 | |
1194 | |
1170 | sub { |
1195 | sub { |
1171 | my $ref = $json->incr_parse ($self->{rbuf}); |
1196 | my $ref = eval { $json->incr_parse ($self->{rbuf}) }; |
1172 | |
1197 | |
1173 | if ($ref) { |
1198 | if ($ref) { |
1174 | $self->{rbuf} = $json->incr_text; |
1199 | $self->{rbuf} = $json->incr_text; |
1175 | $json->incr_text = ""; |
1200 | $json->incr_text = ""; |
1176 | $cb->($self, $ref); |
1201 | $cb->($self, $ref); |
1177 | |
1202 | |
1178 | 1 |
1203 | 1 |
|
|
1204 | } elsif ($@) { |
|
|
1205 | # error case |
|
|
1206 | $json->incr_skip; |
|
|
1207 | |
|
|
1208 | $self->{rbuf} = $json->incr_text; |
|
|
1209 | $json->incr_text = ""; |
|
|
1210 | |
|
|
1211 | $self->_error (&Errno::EBADMSG); |
|
|
1212 | |
|
|
1213 | () |
1179 | } else { |
1214 | } else { |
1180 | $self->{rbuf} = ""; |
1215 | $self->{rbuf} = ""; |
|
|
1216 | |
1181 | () |
1217 | () |
1182 | } |
1218 | } |
1183 | } |
1219 | } |
1184 | }; |
1220 | }; |
1185 | |
1221 | |
… | |
… | |
1326 | delete $self->{_rw}; |
1362 | delete $self->{_rw}; |
1327 | $self->{_eof} = 1; |
1363 | $self->{_eof} = 1; |
1328 | &_freetls; |
1364 | &_freetls; |
1329 | } |
1365 | } |
1330 | |
1366 | |
1331 | $self->{rbuf} .= $tmp; |
1367 | $self->{_tls_rbuf} .= $tmp; |
1332 | $self->_drain_rbuf unless $self->{_in_drain}; |
1368 | $self->_drain_rbuf unless $self->{_in_drain}; |
1333 | $self->{tls} or return; # tls session might have gone away in callback |
1369 | $self->{tls} or return; # tls session might have gone away in callback |
1334 | } |
1370 | } |
1335 | |
1371 | |
1336 | $tmp = Net::SSLeay::get_error ($self->{tls}, -1); |
1372 | $tmp = Net::SSLeay::get_error ($self->{tls}, -1); |
1337 | |
1373 | |
1338 | if ($tmp != Net::SSLeay::ERROR_WANT_READ ()) { |
1374 | if ($tmp != Net::SSLeay::ERROR_WANT_READ ()) { |
1339 | if ($tmp == Net::SSLeay::ERROR_SYSCALL ()) { |
1375 | if ($tmp == Net::SSLeay::ERROR_SYSCALL ()) { |
1340 | return $self->_error ($!, 1); |
1376 | return $self->_error ($!, 1); |
1341 | } elsif ($tmp == Net::SSLeay::ERROR_SSL ()) { |
1377 | } elsif ($tmp == Net::SSLeay::ERROR_SSL ()) { |
1342 | return $self->_error (&Errno::EIO, 1); |
1378 | return $self->_error (&Errno::EIO, 1); |
1343 | } |
1379 | } |
1344 | |
1380 | |
1345 | # all other errors are fine for our purposes |
1381 | # all other errors are fine for our purposes |
1346 | } |
1382 | } |
… | |
… | |
1358 | C<starttls>. |
1394 | C<starttls>. |
1359 | |
1395 | |
1360 | The first argument is the same as the C<tls> constructor argument (either |
1396 | The first argument is the same as the C<tls> constructor argument (either |
1361 | C<"connect">, C<"accept"> or an existing Net::SSLeay object). |
1397 | C<"connect">, C<"accept"> or an existing Net::SSLeay object). |
1362 | |
1398 | |
1363 | The second argument is the optional C<Net::SSLeay::CTX> object that is |
1399 | The second argument is the optional C<AnyEvent::TLS> object that is used |
1364 | used when AnyEvent::Handle has to create its own TLS connection object. |
1400 | when AnyEvent::Handle has to create its own TLS connection object, or |
|
|
1401 | a hash reference with C<< key => value >> pairs that will be used to |
|
|
1402 | construct a new context. |
1365 | |
1403 | |
1366 | The TLS connection object will end up in C<< $handle->{tls} >> after this |
1404 | The TLS connection object will end up in C<< $handle->{tls} >>, the TLS |
1367 | call and can be used or changed to your liking. Note that the handshake |
1405 | context in C<< $handle->{tls_ctx} >> after this call and can be used or |
1368 | might have already started when this function returns. |
1406 | changed to your liking. Note that the handshake might have already started |
|
|
1407 | when this function returns. |
1369 | |
1408 | |
1370 | If it an error to start a TLS handshake more than once per |
1409 | If it an error to start a TLS handshake more than once per |
1371 | AnyEvent::Handle object (this is due to bugs in OpenSSL). |
1410 | AnyEvent::Handle object (this is due to bugs in OpenSSL). |
1372 | |
1411 | |
1373 | =cut |
1412 | =cut |
… | |
… | |
1377 | |
1416 | |
1378 | require Net::SSLeay; |
1417 | require Net::SSLeay; |
1379 | |
1418 | |
1380 | Carp::croak "it is an error to call starttls more than once on an AnyEvent::Handle object" |
1419 | Carp::croak "it is an error to call starttls more than once on an AnyEvent::Handle object" |
1381 | if $self->{tls}; |
1420 | if $self->{tls}; |
|
|
1421 | |
|
|
1422 | $ctx ||= $self->{tls_ctx}; |
|
|
1423 | |
|
|
1424 | if ("HASH" eq ref $ctx) { |
|
|
1425 | require AnyEvent::TLS; |
|
|
1426 | |
|
|
1427 | local $Carp::CarpLevel = 1; # skip ourselves when creating a new context |
|
|
1428 | $ctx = new AnyEvent::TLS %$ctx; |
|
|
1429 | } |
1382 | |
1430 | |
1383 | if ($ssl eq "accept") { |
1431 | $self->{tls_ctx} = $ctx || TLS_CTX (); |
1384 | $ssl = Net::SSLeay::new ($ctx || TLS_CTX ()); |
1432 | $self->{tls} = $ssl = $self->{tls_ctx}->_get_session ($ssl, $self); |
1385 | Net::SSLeay::set_accept_state ($ssl); |
|
|
1386 | } elsif ($ssl eq "connect") { |
|
|
1387 | $ssl = Net::SSLeay::new ($ctx || TLS_CTX ()); |
|
|
1388 | Net::SSLeay::set_connect_state ($ssl); |
|
|
1389 | } |
|
|
1390 | |
|
|
1391 | $self->{tls} = $ssl; |
|
|
1392 | |
1433 | |
1393 | # basically, this is deep magic (because SSL_read should have the same issues) |
1434 | # basically, this is deep magic (because SSL_read should have the same issues) |
1394 | # but the openssl maintainers basically said: "trust us, it just works". |
1435 | # but the openssl maintainers basically said: "trust us, it just works". |
1395 | # (unfortunately, we have to hardcode constants because the abysmally misdesigned |
1436 | # (unfortunately, we have to hardcode constants because the abysmally misdesigned |
1396 | # and mismaintained ssleay-module doesn't even offer them). |
1437 | # and mismaintained ssleay-module doesn't even offer them). |
… | |
… | |
1400 | # |
1441 | # |
1401 | # note that we do not try to keep the length constant between writes as we are required to do. |
1442 | # note that we do not try to keep the length constant between writes as we are required to do. |
1402 | # we assume that most (but not all) of this insanity only applies to non-blocking cases, |
1443 | # we assume that most (but not all) of this insanity only applies to non-blocking cases, |
1403 | # and we drive openssl fully in blocking mode here. Or maybe we don't - openssl seems to |
1444 | # and we drive openssl fully in blocking mode here. Or maybe we don't - openssl seems to |
1404 | # have identity issues in that area. |
1445 | # have identity issues in that area. |
1405 | Net::SSLeay::CTX_set_mode ($self->{tls}, |
1446 | # Net::SSLeay::CTX_set_mode ($ssl, |
1406 | (eval { local $SIG{__DIE__}; Net::SSLeay::MODE_ENABLE_PARTIAL_WRITE () } || 1) |
1447 | # (eval { local $SIG{__DIE__}; Net::SSLeay::MODE_ENABLE_PARTIAL_WRITE () } || 1) |
1407 | | (eval { local $SIG{__DIE__}; Net::SSLeay::MODE_ACCEPT_MOVING_WRITE_BUFFER () } || 2)); |
1448 | # | (eval { local $SIG{__DIE__}; Net::SSLeay::MODE_ACCEPT_MOVING_WRITE_BUFFER () } || 2)); |
|
|
1449 | Net::SSLeay::CTX_set_mode ($ssl, 1|2); |
1408 | |
1450 | |
1409 | $self->{_rbio} = Net::SSLeay::BIO_new (Net::SSLeay::BIO_s_mem ()); |
1451 | $self->{_rbio} = Net::SSLeay::BIO_new (Net::SSLeay::BIO_s_mem ()); |
1410 | $self->{_wbio} = Net::SSLeay::BIO_new (Net::SSLeay::BIO_s_mem ()); |
1452 | $self->{_wbio} = Net::SSLeay::BIO_new (Net::SSLeay::BIO_s_mem ()); |
1411 | |
1453 | |
1412 | Net::SSLeay::set_bio ($ssl, $self->{_rbio}, $self->{_wbio}); |
1454 | Net::SSLeay::set_bio ($ssl, $self->{_rbio}, $self->{_wbio}); |
… | |
… | |
1441 | sub _freetls { |
1483 | sub _freetls { |
1442 | my ($self) = @_; |
1484 | my ($self) = @_; |
1443 | |
1485 | |
1444 | return unless $self->{tls}; |
1486 | return unless $self->{tls}; |
1445 | |
1487 | |
1446 | Net::SSLeay::free (delete $self->{tls}); |
1488 | $self->{tls_ctx}->_put_session (delete $self->{tls}); |
1447 | |
1489 | |
1448 | delete @$self{qw(_rbio _wbio _tls_wbuf)}; |
1490 | delete @$self{qw(_rbio _wbio _tls_wbuf)}; |
1449 | } |
1491 | } |
1450 | |
1492 | |
1451 | sub DESTROY { |
1493 | sub DESTROY { |
1452 | my $self = shift; |
1494 | my ($self) = @_; |
1453 | |
1495 | |
1454 | &_freetls; |
1496 | &_freetls; |
1455 | |
1497 | |
1456 | my $linger = exists $self->{linger} ? $self->{linger} : 3600; |
1498 | my $linger = exists $self->{linger} ? $self->{linger} : 3600; |
1457 | |
1499 | |
… | |
… | |
1501 | %$self = (); |
1543 | %$self = (); |
1502 | } |
1544 | } |
1503 | |
1545 | |
1504 | =item AnyEvent::Handle::TLS_CTX |
1546 | =item AnyEvent::Handle::TLS_CTX |
1505 | |
1547 | |
1506 | This function creates and returns the Net::SSLeay::CTX object used by |
1548 | This function creates and returns the AnyEvent::TLS object used by default |
1507 | default for TLS mode. |
1549 | for TLS mode. |
1508 | |
1550 | |
1509 | The context is created like this: |
1551 | The context is created by calling L<AnyEvent::TLS> without any arguments. |
1510 | |
|
|
1511 | Net::SSLeay::load_error_strings; |
|
|
1512 | Net::SSLeay::SSLeay_add_ssl_algorithms; |
|
|
1513 | Net::SSLeay::randomize; |
|
|
1514 | |
|
|
1515 | my $CTX = Net::SSLeay::CTX_new; |
|
|
1516 | |
|
|
1517 | Net::SSLeay::CTX_set_options $CTX, Net::SSLeay::OP_ALL |
|
|
1518 | |
1552 | |
1519 | =cut |
1553 | =cut |
1520 | |
1554 | |
1521 | our $TLS_CTX; |
1555 | our $TLS_CTX; |
1522 | |
1556 | |
1523 | sub TLS_CTX() { |
1557 | sub TLS_CTX() { |
1524 | $TLS_CTX || do { |
1558 | $TLS_CTX ||= do { |
1525 | require Net::SSLeay; |
1559 | require AnyEvent::TLS; |
1526 | |
1560 | |
1527 | Net::SSLeay::load_error_strings (); |
1561 | new AnyEvent::TLS |
1528 | Net::SSLeay::SSLeay_add_ssl_algorithms (); |
|
|
1529 | Net::SSLeay::randomize (); |
|
|
1530 | |
|
|
1531 | $TLS_CTX = Net::SSLeay::CTX_new (); |
|
|
1532 | |
|
|
1533 | Net::SSLeay::CTX_set_options ($TLS_CTX, Net::SSLeay::OP_ALL ()); |
|
|
1534 | |
|
|
1535 | $TLS_CTX |
|
|
1536 | } |
1562 | } |
1537 | } |
1563 | } |
1538 | |
1564 | |
1539 | =back |
1565 | =back |
1540 | |
1566 | |