Overview Repositories Revisions Requests Users Attributes Meta

Nearly transparent SSL encapsulation for IO::Socket::INET

Edit Package perl-IO-Socket-SSL

This module is a true drop-in replacement for IO::Socket::INET that uses
SSL to encrypt data before it is transferred to a remote server or client.
IO::Socket::SSL supports all the extra features that one needs to write a
full-featured SSL client or server application: multiple SSL contexts,
cipher selection, certificate verification, and SSL version selection. As
an extra bonus, it works perfectly with mod_perl.

If you have never used SSL before, you should read the appendix labelled
'Using SSL' before attempting to use this module.

If you have used this module before, read on, as versions 0.93 and above
have several changes from the previous IO::Socket::SSL versions (especially
see the note about return values).

If you are using non-blocking sockets read on, as version 0.98 added better
support for non-blocking.

If you are trying to use it with threads see the BUGS section.

  • Developed at devel:languages:perl
  • Sources inherited from project openSUSE:Factory
  • 3 derived packages
  • Download package
  • osc -A https://api.opensuse.org checkout openSUSE:Factory:PowerPC/perl-IO-Socket-SSL && cd $_
  • Create Badge
Refresh
Refresh
Source Files
Filename Size Changed
IO-Socket-SSL-1.951.tar.gz 0000090040 87.9 KB
perl-IO-Socket-SSL.changes 0000025199 24.6 KB
perl-IO-Socket-SSL.spec 0000002900 2.83 KB
Revision 57 (latest revision is 100)
Stephan Kulow's avatar Stephan Kulow (coolo) accepted request 184296 from Lars Vogdt's avatar Lars Vogdt (lrupp) (revision 57) 
- new version 0.951
  * better document builtin defaults for key,cert,CA and how they are depreceated
  * use Net::SSLeay::SSL_CTX_set_default_verify_paths to use
    openssl's builtin defaults for CA unless CA path/file was given
  * MAJOR BEHAVIOR CHANGE:
    ssl_verify_mode now defaults to verify_peer for client. Until
    now it used verify_none, but loudly complained since 1.79 about
    it. It will not complain any longer, but the connection might
    probably fail. Please don't simply disable ssl verification, but
    instead set SSL_ca_file etc so that verification succeeds!
  * MAJOR BEHAVIOR CHANGE:
    it will now complain if the builtin defaults of certs/my-ca.pem
    or ca/ for CA and certs/{server,client}-{key,cert}.pem for cert
    and key are used, e.g. no certificates are specified explicitly.
    In the future these insecure (relative path!) defaults will be
    removed and the CA replaced with the system defaults.
  * Makefile.PL reported wrong version of openssl, if Net::SSLeay was not
    installed instead of reporting missing dependency to Net::SSLeay.
  * need at least OpenSSL version 0.9.8 now, since last 0.9.7 was released 6
    years ago. Remove code to work around older releases.
  * changed AUTHOR in Makefile.PL from array back to string, because the
    array feature is not available in MakeMaker shipped with 5.8.9 (RT#85739)
  * Intercept: use sha1-fingerprint of original cert for id into cache unless 
    otherwise given
  * Fix pod error in IO::Socket::SSL::Utils RT#85733
  * added IO::Socket::SSL::Utils for easier manipulation of certificates and keys
  * moved SSL interception into IO::Socket::SSL::Intercept and simplified it 
    using IO::Socket::SSL::Utils
  * enhance meta information in Makefile.PL
  * RT#85290, support more digest, especially SHA-2. (forwarded request 182138 from lnussel)
Comments 0
openSUSE Build Service is sponsored by
Places