IO::Socket::SSL is a class implementing an object oriented
interface to SSL sockets. The class is a descendent of
IO::Socket::INET and provides a subset of the base class's
interface methods as well as SSL specific methods.
SUPPORTED INTERFACE
The following methods from the IO::Socket::INET interface are
supported, unimplemented and unsupported respectively:
This class method is used for initializing and setting
the global SSL settings. The following following arguments are
supported:
SSL_server
This option must be used when a SSL_Context is explicitly created
for server contexts.
SSL_use_cert
With server sockets a server certificate is always used. For client
sockets certificate use is optional. This attribute is set to true
if a certificate is to be used.
SSL_verify_mode
Type of verification process which is to be performed upon a peer
certificate. This can be a combination of 0x00 (don't verify),
0x01 (verify peer), 0x02 (fail verification if there's no peer
certificate), and 0x04 (verify client once). Default: verify peer.
SSL_key_file
Filename of the PEM encoded private key file. Default:
``certs/server-key.pem'' or ``certs/client-key.pem''.
SSL_cert_file
Filename of the PEM encoded certificate file. Default:
``certs/server-cert.pem'' or ``certs/client-cert.pem''.
SSL_ca_path
Pathname to the Certicate Authority certificate directory. If server
or client certificates are to be verified the trusted CA certificates
have to reside in this directory. The CA certificate filename that is
used for finding the certificate is a hash value generated from the
certificate with a .<serial number> suffix appended to it. The hash
value can be obtained with the command line: ssleay x509 -hash
< ca-cert.pem.
SSL_ca_file
Filename of the CA certificate.
new ( [ARGS] )
See IO::Socket::INET constructor's documentation for
details. The following additional per connection SSL options
are supported: