forked from noxxi/p5-io-socket-ssl
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathMakefile.PL
181 lines (161 loc) · 5.84 KB
/
Makefile.PL
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
# vim: set sts=4 sw=4 ts=8 ai:
use 5.008;
use ExtUtils::MakeMaker;
# Test to make sure that Net::SSLeay can be properly seeded!
unless (defined $ENV{EGD_PATH}) {
foreach (qw(/var/run/egd-pool /dev/egd-pool /etc/egd-pool /etc/entropy)) {
if (-S) { $ENV{EGD_PATH}=$_; last }
}
}
$| = 1;
my $yesno = sub {
my ($msg,$default) = @_;
return $default if defined $default && $ENV{PERL_MM_USE_DEFAULT};
# Taken from ExtUtils::MakeMaker 6.16 (Michael Schwern) so that
# the prompt() function can be emulated for older versions of ExtUtils::MakeMaker.
while ( -t STDIN && (-t STDOUT || !(-f STDOUT || -c STDOUT))) {
print "$msg ";
my $choice = <STDIN>;
$choice =~s{\s+$}{};
$choice ||= $default;
next if $choice !~m{^\s*([yn])}i;
return lc($1);
}
return $default;
};
{
# issue warning, if Net::SSLeay cannot find random generator
# redefine __WARN__ only locally to allow detection of failures
# in PREREQ_PM
local $SIG{__WARN__} = sub {
undef $SIG{__WARN__};
my $warning = shift;
return unless $warning =~ /random/i;
print "Net::SSLeay could not find a random number generator on\n";
print "your system. This will likely cause most of the tests\n";
print "to fail. Please see the README file for more information.\n";
print "the message from Net::SSLeay was: $warning\n";
$yesno->("Do you REALLY want to continue? y/[N]","n") eq 'y'
or die "Install cancelled.\n";
};
if (! defined $ENV{SKIP_RNG_TEST}) {
eval { require Net::SSLeay; $Net::SSLeay::trace=1; Net::SSLeay::randomize(); };
die $@ if $@ =~ /cancelled/;
} else {
print "Random Number Generator test skipped.\n";
}
}
if (my $compiled = eval {
require Net::SSLeay;
Net::SSLeay::OPENSSL_VERSION_NUMBER()
}) {
# don't support too old OpenSSL versions anymore, only causes trouble
die sprintf(
"minimal required version for OpenSSL is 0.9.8, but your Net::SSLeay reports 0x%08x",
$compiled) if $compiled < 0x00908000;
my $linked = Net::SSLeay::SSLeay();
# OpenSSL 1.1.1e introduced behavior changes breaking various code
# will likely be reverted in 1.1.1f - enforce to not use this version
if ($linked == 0x1010105f) {
die "detected OpenSSL 1.1.1e - please use a different version\n";
}
# For old versions we need to be rather strict, however OpenSSL explicitly
# declares that from 3.0 on x.y versions are for all y ABI-compatible.
# https://www.openssl.org/policies/releasestrat.html
if ($linked < 0x30000000) {
if (($compiled ^ $linked) >= 0x00001000) {
die sprintf("API-different OpenSSL versions compiled in (0x%08x) vs linked (0x%08x)",
$compiled,$linked);
}
} else {
if (($compiled ^ $linked) >= 0x10000000) {
die sprintf("API-different OpenSSL versions compiled in (0x%08x) vs linked (0x%08x)",
$compiled,$linked);
}
}
}
# make sure that we have dualvar from the XS Version of Scalar::Util
if ( eval { require Scalar::Util } ) {
eval { Scalar::Util::dualvar( 0,'' ) };
die "You need the XS Version of Scalar::Util for dualvar() support" if ($@);
}
# check if we have something which handles IDN
if ( ! eval { require Net::IDN::Encode } and ! eval { require Net::LibIDN } and ! eval { require URI; URI->VERSION(1.50) }) {
warn <<'EOM';
WARNING
No library for handling international domain names found.
It will work but croak if you try to verify an international name against
a certificate.
It's recommended to install URI version>=1.50.
Net::IDN::Encode and Net::LibIDN are also still supported.
EOM
}
# check if we have usable CA store
# on windows we might need to install Mozilla::CA
# settings for default path from openssl crypto/cryptlib.h
my %usable_ca;
{
my $openssldir = eval {
require Net::SSLeay;
Net::SSLeay::SSLeay_version(5) =~m{^OPENSSLDIR: "(.+)"$} && $1 || '';
};
my $dir = $ENV{SSL_CERT_DIR}
|| ( $^O =~m{vms}i ? "SSLCERTS:":"$openssldir/certs" );
if ( opendir(my $dh,$dir)) {
FILES: for my $f ( grep { m{^[a-f\d]{8}(\.\d+)?$} } readdir($dh) ) {
open( my $fh,'<',"$dir/$f") or next;
while (<$fh>) {
m{^-+BEGIN (X509 |TRUSTED |)CERTIFICATE-} or next;
$usable_ca{SSL_ca_path} = $dir;
last FILES;
}
}
}
my $file = $ENV{SSL_CERT_FILE}
|| ( $^O =~m{vms}i ? "SSLCERTS:cert.pem":"$openssldir/cert.pem" );
if ( open(my $fh,'<',$file)) {
while (<$fh>) {
m{^-+BEGIN (X509 |TRUSTED |)CERTIFICATE-} or next;
$usable_ca{SSL_ca_file} = $file;
last;
}
}
}
my $xt = $ENV{NO_NETWORK_TESTING} && 'n';
$xt ||= $yesno->( "Should I do external tests?\n".
"These test will detect if there are network problems and fail soft,\n".
"so please disable them only if you definitely don't want to have any\n".
"network traffic to external sites. [Y/n]", 'y' );
# See lib/ExtUtils/MakeMaker.pm for details of how to influence
# the contents of the Makefile that is written.
WriteMakefile(
'NAME' => 'IO::Socket::SSL',
'ABSTRACT' => 'Nearly transparent SSL encapsulation for IO::Socket::INET.',
'AUTHOR' => 'Steffen Ullrich <[email protected]>, Peter Behroozi, Marko Asplund',
'LICENSE' => 'perl',
'DISTNAME' => 'IO-Socket-SSL',
'VERSION_FROM' => 'lib/IO/Socket/SSL.pm',
'PREREQ_PM' => {
'Net::SSLeay' => 1.46,
'Scalar::Util' => 0,
! %usable_ca ? ( 'Mozilla::CA' => 0 ):(),
},
'dist' => { COMPRESS => 'gzip', SUFFIX => 'gz', },
$xt eq 'y' ? ( test => { TESTS => 't/*.t t/external/*.t' }):(),
$ExtUtils::MakeMaker::VERSION >= 6.46 ? (
'META_MERGE' => {
resources => {
license => 'http://dev.perl.org/licenses/',
repository => 'https://github.com/noxxi/p5-io-socket-ssl',
homepage => 'https://github.com/noxxi/p5-io-socket-ssl',
bugtracker => 'https://github.com/noxxi/p5-io-socket-ssl/issues',
},
},
):(),
$ExtUtils::MakeMaker::VERSION >= 6.52 ? (
'CONFIGURE_REQUIRES' => {
"ExtUtils::MakeMaker" => 0,
'Net::SSLeay' => 1.46,
},
):(),
);