AnyEvent
view release on metacpan or search on metacpan
lib/AnyEvent/TLS.pm view on Meta::CPAN
=item cert => $string
The local certificate in PEM format (might be a combined
certificate/private key file). See C<cert_file>.
The idea behind being able to specify a string is to avoid blocking in
I/O. Unfortunately, Net::SSLeay fails to implement any interface to the
needed OpenSSL functionality, this is currently implemented by writing to
a temporary file.
=item cert_password => $string | $callback->($tls)
The certificate password - if the certificate is password-protected, then
you can specify its password here.
Instead of providing a password directly (which is not so recommended),
you can also provide a password-query callback. The callback will be
called whenever a password is required to decode a local certificate, and
is supposed to return the password.
=item dh_file => $path
Path to a file containing Diffie-Hellman parameters in PEM format, for
use in servers. See also C<dh> on how to specify them directly, or use a
pre-generated set.
Diffie-Hellman key exchange generates temporary encryption keys that
are not transferred over the connection, which means that even if the
certificate key(s) are made public at a later time and a full dump of the
lib/AnyEvent/TLS.pm view on Meta::CPAN
$self->{session_ticket} = $arg{session_ticket}
if exists $arg{session_ticket};
$self->{debug} = $ENV{PERL_ANYEVENT_TLS_DEBUG}
if length $ENV{PERL_ANYEVENT_TLS_DEBUG};
$self->{debug} = $arg{debug}
if exists $arg{debug};
my $pw = $arg{cert_password};
Net::SSLeay::CTX_set_default_passwd_cb ($ctx, ref $pw ? $pw : sub { $pw });
if ($self->{verify_mode}) {
if (exists $arg{ca_file} or exists $arg{ca_path} or exists $arg{ca_cert}) {
# either specified: use them
if (exists $arg{ca_cert}) {
my ($ca_file, $g1) = _tmpfile delete $arg{ca_cert};
Net::SSLeay::CTX_load_verify_locations ($ctx, $ca_file, undef);
}
if (exists $arg{ca_file} or exists $arg{ca_path}) {
( run in 0.454 second using v1.01-cache-2.11-cpan-49f99fa48dc )