Permalink
Commits on Nov 12, 2012
  1. Version 1.3 releng

    alexmv committed Nov 12, 2012
  2. Update to work with the Net::Server 2.0 API

    Net::Server 2.0, released after a long hiatus, broke backwards
    compatibility with the `proto_object` method which this module
    overloads.  Update to conform to the new API.
    
    Unfortunately, rt.cpan.org #31437 was improperly resolved, and thus the
    hotpatch to ->accept is still necessary.
    alexmv committed Nov 12, 2012
  3. Fix a POD syntax error

    guimard committed with alexmv Nov 12, 2012
Commits on Oct 29, 2011
  1. Version 1.2 releng

    alexmv committed Oct 29, 2011
  2. Make Net::SSLeay an optional dependency

    If Net::SSLeay is not installed, attempting to use the SSL proto, or use
    ->start_ssl to negotiate an SSL handshake over an existing TCP
    connection will result in a runtime error.
    
    This allows installing Net::Server::Coro on a machine without
    the OpenSSL header files, for instance.
    alexmv committed Oct 29, 2011
Commits on Sep 5, 2011
  1. Version 1.0 releng

    alexmv committed Sep 5, 2011
  2. Upgrade Module::Install

    alexmv committed Sep 5, 2011
  3. Catch and warn of possible CVE-2011-0411 attacks

    This class of attacks is possible when an existing connection is
    upgraded to use TLS after being established.  A malicious attacker could
    craft a man-in-the-middle attack wherein the "STARTTLS" command sent by
    the client has additional malicious application-level commands appended
    in the same packet.  The client and server are then left to complete the
    TLS handshake on their own.
    
    If the server does not clear the buffer during TLS authentication, it
    will assume that the remaining commands in the buffer (inserted by the
    attacker before TLS was established) were sent _after_ TLS was
    established, and possibly run them with elevated privileges.  This
    attack is particularly dangerous if the protocol makes use of SSL client
    certificates to authenticate the client.
    
    To prevent this, explicitly clear the handle's buffer while TLS is being
    negotiated.
    alexmv committed Sep 5, 2011
  4. Perl 5.14 deprecated TIEHANDLE calls on scalar typeglobs without an e…

    …xplicit *
    
    From perl5140delta.pod:
    
        =head2 Tie functions on scalars holding typeglobs
    
        Calling a tie function (C<tie>, C<tied>, C<untie>) with a scalar
        argument acts on a filehandle if the scalar happens to hold a
        typeglob.
    
        This is a long-standing bug that will be removed in Perl 5.16, as
        there is currently no way to tie the scalar itself when it holds a
        typeglob, and no way to untie a scalar that has had a typeglob
        assigned to it.
    
    Thus, make the typeglobs explicit, which is handily also backwards
    compatible.
    alexmv committed Sep 5, 2011
Commits on Nov 15, 2010
  1. Version 0.9 releng

    alexmv committed Nov 15, 2010
Commits on Nov 10, 2010
  1. Upgrade Module::Install

    alexmv committed Nov 10, 2010
  2. Wrap more tightly around Net::Server::Proto::TCP for SSL

    This replaces the previous scheme of "create bind as what we asked
    for, then re-bless" with a cleaner and tighter "create as TCP, handle
    our own bind" method.  This allows us to work around Net::Server
    0.99's breakage of Net::Server::Proto::SSL, and also intercept the new
    Net::Server::Proto::SSLEAY class as well.
    alexmv committed Nov 10, 2010
Commits on Jan 30, 2010
  1. Version 0.8 releng

    alexmv committed Jan 30, 2010
Commits on Dec 24, 2009
Commits on Dec 16, 2009
  1. Version 0.7 releng

    alexmv committed Dec 16, 2009
Commits on Dec 15, 2009
  1. Fix two minor documentation typos

    alexmv committed Dec 15, 2009
Commits on Oct 16, 2009
  1. Version 0.6 releng

    alexmv committed Oct 16, 2009
  2. Save certificate and key paths on the server object

    By saving certificate and key paths as part of the server and handle
    objects, both SSL and TLS can be used with specific certificate and
    key paths.  Based on a patch by Dan Keder.
    alexmv committed Oct 16, 2009
  3. Add a basic .gitignore

    alexmv committed Oct 16, 2009
  4. Version 0.5 releng

    alexmv committed Oct 16, 2009
Commits on Oct 1, 2009
Commits on Oct 22, 2008
  1. Hide Net::Server::Proto::TCP from PAUSE

    0.4 releng
    
    Missed the META.yml update
    alexmv committed Oct 22, 2008
  2. Final releng for 0.3

    alexmv committed Oct 22, 2008
Commits on Apr 11, 2008
Commits on Mar 27, 2008
  1. Net::Server closes $self->{server}{client}, which is not what you

       want if you have more than one client.
    alexmv committed Mar 27, 2008