ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/AnyEvent/lib/AnyEvent/Handle.pm
(Generate patch)

Comparing AnyEvent/lib/AnyEvent/Handle.pm (file contents):
Revision 1.117 by root, Tue Feb 10 14:22:59 2009 UTC vs.
Revision 1.139 by root, Sun Jul 5 23:39:48 2009 UTC

14 14
15AnyEvent::Handle - non-blocking I/O on file handles via AnyEvent 15AnyEvent::Handle - non-blocking I/O on file handles via AnyEvent
16 16
17=cut 17=cut
18 18
19our $VERSION = 4.331; 19our $VERSION = 4.452;
20 20
21=head1 SYNOPSIS 21=head1 SYNOPSIS
22 22
23 use AnyEvent; 23 use AnyEvent;
24 use AnyEvent::Handle; 24 use AnyEvent::Handle;
63 63
64=head1 METHODS 64=head1 METHODS
65 65
66=over 4 66=over 4
67 67
68=item B<new (%args)> 68=item $handle = B<new> AnyEvent::TLS fh => $filehandle, key => value...
69 69
70The constructor supports these arguments (all as key => value pairs). 70The constructor supports these arguments (all as C<< key => value >> pairs).
71 71
72=over 4 72=over 4
73 73
74=item fh => $filehandle [MANDATORY] 74=item fh => $filehandle [MANDATORY]
75 75
95waiting for data. 95waiting for data.
96 96
97If an EOF condition has been detected but no C<on_eof> callback has been 97If an EOF condition has been detected but no C<on_eof> callback has been
98set, then a fatal error will be raised with C<$!> set to <0>. 98set, then a fatal error will be raised with C<$!> set to <0>.
99 99
100=item on_error => $cb->($handle, $fatal) 100=item on_error => $cb->($handle, $fatal, $message)
101 101
102This is the error callback, which is called when, well, some error 102This is the error callback, which is called when, well, some error
103occured, such as not being able to resolve the hostname, failure to 103occured, such as not being able to resolve the hostname, failure to
104connect or a read error. 104connect or a read error.
105 105
107fatal errors the handle object will be shut down and will not be usable 107fatal errors the handle object will be shut down and will not be usable
108(but you are free to look at the current C<< ->rbuf >>). Examples of fatal 108(but you are free to look at the current C<< ->rbuf >>). Examples of fatal
109errors are an EOF condition with active (but unsatisifable) read watchers 109errors are an EOF condition with active (but unsatisifable) read watchers
110(C<EPIPE>) or I/O errors. 110(C<EPIPE>) or I/O errors.
111 111
112AnyEvent::Handle tries to find an appropriate error code for you to check
113against, but in some cases (TLS errors), this does not work well. It is
114recommended to always output the C<$message> argument in human-readable
115error messages (it's usually the same as C<"$!">).
116
112Non-fatal errors can be retried by simply returning, but it is recommended 117Non-fatal errors can be retried by simply returning, but it is recommended
113to simply ignore this parameter and instead abondon the handle object 118to simply ignore this parameter and instead abondon the handle object
114when this callback is invoked. Examples of non-fatal errors are timeouts 119when this callback is invoked. Examples of non-fatal errors are timeouts
115C<ETIMEDOUT>) or badly-formatted data (C<EBADMSG>). 120C<ETIMEDOUT>) or badly-formatted data (C<EBADMSG>).
116 121
117On callback entrance, the value of C<$!> contains the operating system 122On callback entrance, the value of C<$!> contains the operating system
118error (or C<ENOSPC>, C<EPIPE>, C<ETIMEDOUT> or C<EBADMSG>). 123error code (or C<ENOSPC>, C<EPIPE>, C<ETIMEDOUT>, C<EBADMSG> or
124C<EPROTO>).
119 125
120While not mandatory, it is I<highly> recommended to set this callback, as 126While not mandatory, it is I<highly> recommended to set this callback, as
121you will not be notified of errors otherwise. The default simply calls 127you will not be notified of errors otherwise. The default simply calls
122C<croak>. 128C<croak>.
123 129
127and no read request is in the queue (unlike read queue callbacks, this 133and no read request is in the queue (unlike read queue callbacks, this
128callback will only be called when at least one octet of data is in the 134callback will only be called when at least one octet of data is in the
129read buffer). 135read buffer).
130 136
131To access (and remove data from) the read buffer, use the C<< ->rbuf >> 137To access (and remove data from) the read buffer, use the C<< ->rbuf >>
132method or access the C<$handle->{rbuf}> member directly. Note that you 138method or access the C<< $handle->{rbuf} >> member directly. Note that you
133must not enlarge or modify the read buffer, you can only remove data at 139must not enlarge or modify the read buffer, you can only remove data at
134the beginning from it. 140the beginning from it.
135 141
136When an EOF condition is detected then AnyEvent::Handle will first try to 142When an EOF condition is detected then AnyEvent::Handle will first try to
137feed all the remaining data to the queued callbacks and C<on_read> before 143feed all the remaining data to the queued callbacks and C<on_read> before
237 243
238This will not work for partial TLS data that could not be encoded 244This will not work for partial TLS data that could not be encoded
239yet. This data will be lost. Calling the C<stoptls> method in time might 245yet. This data will be lost. Calling the C<stoptls> method in time might
240help. 246help.
241 247
248=item peername => $string
249
250A string used to identify the remote site - usually the DNS hostname
251(I<not> IDN!) used to create the connection, rarely the IP address.
252
253Apart from being useful in error messages, this string is also used in TLS
254peername verification (see C<verify_peername> in L<AnyEvent::TLS>).
255
242=item tls => "accept" | "connect" | Net::SSLeay::SSL object 256=item tls => "accept" | "connect" | Net::SSLeay::SSL object
243 257
244When this parameter is given, it enables TLS (SSL) mode, that means 258When this parameter is given, it enables TLS (SSL) mode, that means
245AnyEvent will start a TLS handshake as soon as the conenction has been 259AnyEvent will start a TLS handshake as soon as the conenction has been
246established and will transparently encrypt/decrypt data afterwards. 260established and will transparently encrypt/decrypt data afterwards.
261
262All TLS protocol errors will be signalled as C<EPROTO>, with an
263appropriate error message.
247 264
248TLS mode requires Net::SSLeay to be installed (it will be loaded 265TLS mode requires Net::SSLeay to be installed (it will be loaded
249automatically when you try to create a TLS handle): this module doesn't 266automatically when you try to create a TLS handle): this module doesn't
250have a dependency on that module, so if your module requires it, you have 267have a dependency on that module, so if your module requires it, you have
251to add the dependency yourself. 268to add the dependency yourself.
255mode. 272mode.
256 273
257You can also provide your own TLS connection object, but you have 274You can also provide your own TLS connection object, but you have
258to make sure that you call either C<Net::SSLeay::set_connect_state> 275to make sure that you call either C<Net::SSLeay::set_connect_state>
259or C<Net::SSLeay::set_accept_state> on it before you pass it to 276or C<Net::SSLeay::set_accept_state> on it before you pass it to
260AnyEvent::Handle. 277AnyEvent::Handle. Also, this module will take ownership of this connection
278object.
279
280At some future point, AnyEvent::Handle might switch to another TLS
281implementation, then the option to use your own session object will go
282away.
261 283
262B<IMPORTANT:> since Net::SSLeay "objects" are really only integers, 284B<IMPORTANT:> since Net::SSLeay "objects" are really only integers,
263passing in the wrong integer will lead to certain crash. This most often 285passing in the wrong integer will lead to certain crash. This most often
264happens when one uses a stylish C<< tls => 1 >> and is surprised about the 286happens when one uses a stylish C<< tls => 1 >> and is surprised about the
265segmentation fault. 287segmentation fault.
266 288
267See the C<< ->starttls >> method for when need to start TLS negotiation later. 289See the C<< ->starttls >> method for when need to start TLS negotiation later.
268 290
269=item tls_ctx => $ssl_ctx 291=item tls_ctx => $anyevent_tls
270 292
271Use the given C<Net::SSLeay::CTX> object to create the new TLS connection 293Use the given C<AnyEvent::TLS> object to create the new TLS connection
272(unless a connection object was specified directly). If this parameter is 294(unless a connection object was specified directly). If this parameter is
273missing, then AnyEvent::Handle will use C<AnyEvent::Handle::TLS_CTX>. 295missing, then AnyEvent::Handle will use C<AnyEvent::Handle::TLS_CTX>.
296
297Instead of an object, you can also specify a hash reference with C<< key
298=> value >> pairs. Those will be passed to L<AnyEvent::TLS> to create a
299new TLS context object.
274 300
275=item json => JSON or JSON::XS object 301=item json => JSON or JSON::XS object
276 302
277This is the json coder object used by the C<json> read and write types. 303This is the json coder object used by the C<json> read and write types.
278 304
287 313
288=cut 314=cut
289 315
290sub new { 316sub new {
291 my $class = shift; 317 my $class = shift;
292
293 my $self = bless { @_ }, $class; 318 my $self = bless { @_ }, $class;
294 319
295 $self->{fh} or Carp::croak "mandatory argument fh is missing"; 320 $self->{fh} or Carp::croak "mandatory argument fh is missing";
296 321
297 AnyEvent::Util::fh_nonblocking $self->{fh}, 1; 322 AnyEvent::Util::fh_nonblocking $self->{fh}, 1;
323
324 $self->{_activity} = AnyEvent->now;
325 $self->_timeout;
326
327 $self->no_delay (delete $self->{no_delay}) if exists $self->{no_delay};
298 328
299 $self->starttls (delete $self->{tls}, delete $self->{tls_ctx}) 329 $self->starttls (delete $self->{tls}, delete $self->{tls_ctx})
300 if $self->{tls}; 330 if $self->{tls};
301 331
302 $self->{_activity} = AnyEvent->now;
303 $self->_timeout;
304
305 $self->on_drain (delete $self->{on_drain}) if exists $self->{on_drain}; 332 $self->on_drain (delete $self->{on_drain}) if exists $self->{on_drain};
306 $self->no_delay (delete $self->{no_delay}) if exists $self->{no_delay};
307 333
308 $self->start_read 334 $self->start_read
309 if $self->{on_read}; 335 if $self->{on_read};
310 336
311 $self 337 $self->{fh} && $self
312} 338}
313 339
314sub _shutdown { 340sub _shutdown {
315 my ($self) = @_; 341 my ($self) = @_;
316 342
317 delete $self->{_tw}; 343 delete @$self{qw(_tw _rw _ww fh wbuf on_read _queue)};
318 delete $self->{_rw}; 344 $self->{_eof} = 1; # tell starttls et. al to stop trying
319 delete $self->{_ww};
320 delete $self->{fh};
321 345
322 &_freetls; 346 &_freetls;
323
324 delete $self->{on_read};
325 delete $self->{_queue};
326} 347}
327 348
328sub _error { 349sub _error {
329 my ($self, $errno, $fatal) = @_; 350 my ($self, $errno, $fatal, $message) = @_;
330 351
331 $self->_shutdown 352 $self->_shutdown
332 if $fatal; 353 if $fatal;
333 354
334 $! = $errno; 355 $! = $errno;
356 $message ||= "$!";
335 357
336 if ($self->{on_error}) { 358 if ($self->{on_error}) {
337 $self->{on_error}($self, $fatal); 359 $self->{on_error}($self, $fatal, $message);
338 } elsif ($self->{fh}) { 360 } elsif ($self->{fh}) {
339 Carp::croak "AnyEvent::Handle uncaught error: $!"; 361 Carp::croak "AnyEvent::Handle uncaught error: $message";
340 } 362 }
341} 363}
342 364
343=item $fh = $handle->fh 365=item $fh = $handle->fh
344 366
656 678
657 pack "w/a*", Storable::nfreeze ($ref) 679 pack "w/a*", Storable::nfreeze ($ref)
658}; 680};
659 681
660=back 682=back
683
684=item $handle->push_shutdown
685
686Sometimes you know you want to close the socket after writing your data
687before it was actually written. One way to do that is to replace your
688C<on_drain> handler by a callback that shuts down the socket. This method
689is a shorthand for just that, and replaces the C<on_drain> callback with:
690
691 sub { shutdown $_[0]{fh}, 1 } # for push_shutdown
692
693This simply shuts down the write side and signals an EOF condition to the
694the peer.
695
696You can rely on the normal read queue and C<on_eof> handling
697afterwards. This is the cleanest way to close a connection.
698
699=cut
700
701sub push_shutdown {
702 $_[0]->{on_drain} = sub { shutdown $_[0]{fh}, 1 };
703}
661 704
662=item AnyEvent::Handle::register_write_type type => $coderef->($handle, @args) 705=item AnyEvent::Handle::register_write_type type => $coderef->($handle, @args)
663 706
664This function (not method) lets you add your own types to C<push_write>. 707This function (not method) lets you add your own types to C<push_write>.
665Whenever the given C<type> is used, C<push_write> will invoke the code 708Whenever the given C<type> is used, C<push_write> will invoke the code
1173=cut 1216=cut
1174 1217
1175register_read_type json => sub { 1218register_read_type json => sub {
1176 my ($self, $cb) = @_; 1219 my ($self, $cb) = @_;
1177 1220
1178 require JSON; 1221 my $json = $self->{json} ||=
1222 eval { require JSON::XS; JSON::XS->new->utf8 }
1223 || do { require JSON; JSON->new->utf8 };
1179 1224
1180 my $data; 1225 my $data;
1181 my $rbuf = \$self->{rbuf}; 1226 my $rbuf = \$self->{rbuf};
1182
1183 my $json = $self->{json} ||= JSON->new->utf8;
1184 1227
1185 sub { 1228 sub {
1186 my $ref = eval { $json->incr_parse ($self->{rbuf}) }; 1229 my $ref = eval { $json->incr_parse ($self->{rbuf}) };
1187 1230
1188 if ($ref) { 1231 if ($ref) {
1332 } 1375 }
1333 }); 1376 });
1334 } 1377 }
1335} 1378}
1336 1379
1380our $ERROR_SYSCALL;
1381our $ERROR_WANT_READ;
1382our $ERROR_ZERO_RETURN;
1383
1384sub _tls_error {
1385 my ($self, $err) = @_;
1386
1387 return $self->_error ($!, 1)
1388 if $err == Net::SSLeay::ERROR_SYSCALL ();
1389
1390 my $err =Net::SSLeay::ERR_error_string (Net::SSLeay::ERR_get_error ());
1391
1392 # reduce error string to look less scary
1393 $err =~ s/^error:[0-9a-fA-F]{8}:[^:]+:([^:]+):/\L$1: /;
1394
1395 $self->_error (&Errno::EPROTO, 1, $err);
1396}
1397
1337# poll the write BIO and send the data if applicable 1398# poll the write BIO and send the data if applicable
1399# also decode read data if possible
1400# this is basiclaly our TLS state machine
1401# more efficient implementations are possible with openssl,
1402# but not with the buggy and incomplete Net::SSLeay.
1338sub _dotls { 1403sub _dotls {
1339 my ($self) = @_; 1404 my ($self) = @_;
1340 1405
1341 my $tmp; 1406 my $tmp;
1342 1407
1343 if (length $self->{_tls_wbuf}) { 1408 if (length $self->{_tls_wbuf}) {
1344 while (($tmp = Net::SSLeay::write ($self->{tls}, $self->{_tls_wbuf})) > 0) { 1409 while (($tmp = Net::SSLeay::write ($self->{tls}, $self->{_tls_wbuf})) > 0) {
1345 substr $self->{_tls_wbuf}, 0, $tmp, ""; 1410 substr $self->{_tls_wbuf}, 0, $tmp, "";
1346 } 1411 }
1412
1413 $tmp = Net::SSLeay::get_error ($self->{tls}, $tmp);
1414 return $self->_tls_error ($tmp)
1415 if $tmp != $ERROR_WANT_READ
1416 && ($tmp != $ERROR_SYSCALL || $!)
1417 && $tmp != $ERROR_ZERO_RETURN;
1347 } 1418 }
1348 1419
1349 while (defined ($tmp = Net::SSLeay::read ($self->{tls}))) { 1420 while (defined ($tmp = Net::SSLeay::read ($self->{tls}))) {
1350 unless (length $tmp) { 1421 unless (length $tmp) {
1351 # let's treat SSL-eof as we treat normal EOF 1422 # let's treat SSL-eof as we treat normal EOF
1358 $self->_drain_rbuf unless $self->{_in_drain}; 1429 $self->_drain_rbuf unless $self->{_in_drain};
1359 $self->{tls} or return; # tls session might have gone away in callback 1430 $self->{tls} or return; # tls session might have gone away in callback
1360 } 1431 }
1361 1432
1362 $tmp = Net::SSLeay::get_error ($self->{tls}, -1); 1433 $tmp = Net::SSLeay::get_error ($self->{tls}, -1);
1363
1364 if ($tmp != Net::SSLeay::ERROR_WANT_READ ()) {
1365 if ($tmp == Net::SSLeay::ERROR_SYSCALL ()) {
1366 return $self->_error ($!, 1); 1434 return $self->_tls_error ($tmp)
1367 } elsif ($tmp == Net::SSLeay::ERROR_SSL ()) { 1435 if $tmp != $ERROR_WANT_READ
1368 return $self->_error (&Errno::EIO, 1); 1436 && ($tmp != $ERROR_SYSCALL || $!)
1369 } 1437 && $tmp != $ERROR_ZERO_RETURN;
1370
1371 # all other errors are fine for our purposes
1372 }
1373 1438
1374 while (length ($tmp = Net::SSLeay::BIO_read ($self->{_wbio}))) { 1439 while (length ($tmp = Net::SSLeay::BIO_read ($self->{_wbio}))) {
1375 $self->{wbuf} .= $tmp; 1440 $self->{wbuf} .= $tmp;
1376 $self->_drain_wbuf; 1441 $self->_drain_wbuf;
1377 } 1442 }
1384C<starttls>. 1449C<starttls>.
1385 1450
1386The first argument is the same as the C<tls> constructor argument (either 1451The first argument is the same as the C<tls> constructor argument (either
1387C<"connect">, C<"accept"> or an existing Net::SSLeay object). 1452C<"connect">, C<"accept"> or an existing Net::SSLeay object).
1388 1453
1389The second argument is the optional C<Net::SSLeay::CTX> object that is 1454The second argument is the optional C<AnyEvent::TLS> object that is used
1390used when AnyEvent::Handle has to create its own TLS connection object. 1455when AnyEvent::Handle has to create its own TLS connection object, or
1456a hash reference with C<< key => value >> pairs that will be used to
1457construct a new context.
1391 1458
1392The TLS connection object will end up in C<< $handle->{tls} >> after this 1459The TLS connection object will end up in C<< $handle->{tls} >>, the TLS
1393call and can be used or changed to your liking. Note that the handshake 1460context in C<< $handle->{tls_ctx} >> after this call and can be used or
1394might have already started when this function returns. 1461changed to your liking. Note that the handshake might have already started
1462when this function returns.
1395 1463
1396If it an error to start a TLS handshake more than once per 1464If it an error to start a TLS handshake more than once per
1397AnyEvent::Handle object (this is due to bugs in OpenSSL). 1465AnyEvent::Handle object (this is due to bugs in OpenSSL).
1398 1466
1399=cut 1467=cut
1400 1468
1469our %TLS_CACHE; #TODO not yet documented, should we?
1470
1401sub starttls { 1471sub starttls {
1402 my ($self, $ssl, $ctx) = @_; 1472 my ($self, $ssl, $ctx) = @_;
1403 1473
1404 require Net::SSLeay; 1474 require Net::SSLeay;
1405 1475
1406 Carp::croak "it is an error to call starttls more than once on an AnyEvent::Handle object" 1476 Carp::croak "it is an error to call starttls more than once on an AnyEvent::Handle object"
1407 if $self->{tls}; 1477 if $self->{tls};
1478
1479 $ERROR_SYSCALL = Net::SSLeay::ERROR_SYSCALL ();
1480 $ERROR_WANT_READ = Net::SSLeay::ERROR_WANT_READ ();
1481 $ERROR_ZERO_RETURN = Net::SSLeay::ERROR_ZERO_RETURN ();
1482
1483 $ctx ||= $self->{tls_ctx};
1484
1485 if ("HASH" eq ref $ctx) {
1486 require AnyEvent::TLS;
1487
1488 local $Carp::CarpLevel = 1; # skip ourselves when creating a new context
1489
1490 if ($ctx->{cache}) {
1491 my $key = $ctx+0;
1492 $ctx = $TLS_CACHE{$key} ||= new AnyEvent::TLS %$ctx;
1493 } else {
1494 $ctx = new AnyEvent::TLS %$ctx;
1495 }
1496 }
1408 1497
1409 if ($ssl eq "accept") { 1498 $self->{tls_ctx} = $ctx || TLS_CTX ();
1410 $ssl = Net::SSLeay::new ($ctx || TLS_CTX ()); 1499 $self->{tls} = $ssl = $self->{tls_ctx}->_get_session ($ssl, $self, $self->{peername});
1411 Net::SSLeay::set_accept_state ($ssl);
1412 } elsif ($ssl eq "connect") {
1413 $ssl = Net::SSLeay::new ($ctx || TLS_CTX ());
1414 Net::SSLeay::set_connect_state ($ssl);
1415 }
1416
1417 $self->{tls} = $ssl;
1418 1500
1419 # basically, this is deep magic (because SSL_read should have the same issues) 1501 # basically, this is deep magic (because SSL_read should have the same issues)
1420 # but the openssl maintainers basically said: "trust us, it just works". 1502 # but the openssl maintainers basically said: "trust us, it just works".
1421 # (unfortunately, we have to hardcode constants because the abysmally misdesigned 1503 # (unfortunately, we have to hardcode constants because the abysmally misdesigned
1422 # and mismaintained ssleay-module doesn't even offer them). 1504 # and mismaintained ssleay-module doesn't even offer them).
1426 # 1508 #
1427 # note that we do not try to keep the length constant between writes as we are required to do. 1509 # note that we do not try to keep the length constant between writes as we are required to do.
1428 # we assume that most (but not all) of this insanity only applies to non-blocking cases, 1510 # we assume that most (but not all) of this insanity only applies to non-blocking cases,
1429 # and we drive openssl fully in blocking mode here. Or maybe we don't - openssl seems to 1511 # and we drive openssl fully in blocking mode here. Or maybe we don't - openssl seems to
1430 # have identity issues in that area. 1512 # have identity issues in that area.
1431 Net::SSLeay::CTX_set_mode ($self->{tls}, 1513# Net::SSLeay::CTX_set_mode ($ssl,
1432 (eval { local $SIG{__DIE__}; Net::SSLeay::MODE_ENABLE_PARTIAL_WRITE () } || 1) 1514# (eval { local $SIG{__DIE__}; Net::SSLeay::MODE_ENABLE_PARTIAL_WRITE () } || 1)
1433 | (eval { local $SIG{__DIE__}; Net::SSLeay::MODE_ACCEPT_MOVING_WRITE_BUFFER () } || 2)); 1515# | (eval { local $SIG{__DIE__}; Net::SSLeay::MODE_ACCEPT_MOVING_WRITE_BUFFER () } || 2));
1516 Net::SSLeay::CTX_set_mode ($ssl, 1|2);
1434 1517
1435 $self->{_rbio} = Net::SSLeay::BIO_new (Net::SSLeay::BIO_s_mem ()); 1518 $self->{_rbio} = Net::SSLeay::BIO_new (Net::SSLeay::BIO_s_mem ());
1436 $self->{_wbio} = Net::SSLeay::BIO_new (Net::SSLeay::BIO_s_mem ()); 1519 $self->{_wbio} = Net::SSLeay::BIO_new (Net::SSLeay::BIO_s_mem ());
1437 1520
1438 Net::SSLeay::set_bio ($ssl, $self->{_rbio}, $self->{_wbio}); 1521 Net::SSLeay::set_bio ($ssl, $self->{_rbio}, $self->{_wbio});
1467sub _freetls { 1550sub _freetls {
1468 my ($self) = @_; 1551 my ($self) = @_;
1469 1552
1470 return unless $self->{tls}; 1553 return unless $self->{tls};
1471 1554
1472 Net::SSLeay::free (delete $self->{tls}); 1555 $self->{tls_ctx}->_put_session (delete $self->{tls});
1473 1556
1474 delete @$self{qw(_rbio _wbio _tls_wbuf)}; 1557 delete @$self{qw(_rbio _wbio _tls_wbuf)};
1475} 1558}
1476 1559
1477sub DESTROY { 1560sub DESTROY {
1478 my $self = shift; 1561 my ($self) = @_;
1479 1562
1480 &_freetls; 1563 &_freetls;
1481 1564
1482 my $linger = exists $self->{linger} ? $self->{linger} : 3600; 1565 my $linger = exists $self->{linger} ? $self->{linger} : 3600;
1483 1566
1527 %$self = (); 1610 %$self = ();
1528} 1611}
1529 1612
1530=item AnyEvent::Handle::TLS_CTX 1613=item AnyEvent::Handle::TLS_CTX
1531 1614
1532This function creates and returns the Net::SSLeay::CTX object used by 1615This function creates and returns the AnyEvent::TLS object used by default
1533default for TLS mode. 1616for TLS mode.
1534 1617
1535The context is created like this: 1618The context is created by calling L<AnyEvent::TLS> without any arguments.
1536
1537 Net::SSLeay::load_error_strings;
1538 Net::SSLeay::SSLeay_add_ssl_algorithms;
1539 Net::SSLeay::randomize;
1540
1541 my $CTX = Net::SSLeay::CTX_new;
1542
1543 Net::SSLeay::CTX_set_options $CTX, Net::SSLeay::OP_ALL
1544 1619
1545=cut 1620=cut
1546 1621
1547our $TLS_CTX; 1622our $TLS_CTX;
1548 1623
1549sub TLS_CTX() { 1624sub TLS_CTX() {
1550 $TLS_CTX || do { 1625 $TLS_CTX ||= do {
1551 require Net::SSLeay; 1626 require AnyEvent::TLS;
1552 1627
1553 Net::SSLeay::load_error_strings (); 1628 new AnyEvent::TLS
1554 Net::SSLeay::SSLeay_add_ssl_algorithms ();
1555 Net::SSLeay::randomize ();
1556
1557 $TLS_CTX = Net::SSLeay::CTX_new ();
1558
1559 Net::SSLeay::CTX_set_options ($TLS_CTX, Net::SSLeay::OP_ALL ());
1560
1561 $TLS_CTX
1562 } 1629 }
1563} 1630}
1564 1631
1565=back 1632=back
1566 1633

Diff Legend

Removed lines
+ Added lines
< Changed lines
> Changed lines