|P is for Practical|
Trying to get SSL with client cert to work within POE environmentby Anonymous Monk
|on Nov 22, 2012 at 06:11 UTC||Need Help??|
Anonymous Monk has asked for the
wisdom of the Perl Monks concerning the following question:
Dear fellow perl users,
Here is a problem I've been trying to tackle since about 2007. I figured maybe someone on this group might know.
I'm trying to establish some SSL connection with self signed server and client certs between server and client, to establish encrypted authentication between different bits of software. These are daemons so I use the POE library.
No need to expand, just to give an idea of what I'm doing. I really want to do it with perl, node isn't mature enough yet in my experience and particularly with the libs I use, whereas perl mostly is.
Now I found how to do it with perl and cURL lib, but it's synchronous single thread, and I'd have to fork a separate interpreter to handle my connections. I tried with LWP just for kicks and kept getting some negotiations errors. At least cURL worked.
Anyway, I found this module: POE::Component::SSLify. Within the options, I can set a client cert, and a client key
But nowhere can I choose to verify things against a specific certificate authority or check for the cert of the server I'm connecting to.
Any ideas of how I could do that or find where to do it? Been looking on and off since 2007...
I really don't want to have to resort to porting the app to node.js to get SSL, because honestly it's a nightmare to debug and the libs are still changing, not to mention well written perl is so much cleaner than these piles of async callbacks that node imposes.
Thanks so much all in advance for your great ideas.