puma--puma/lib/puma/minissl.rb

module Puma
  module MiniSSL
    class Socket
      def initialize(socket, engine)
        @socket = socket
        @engine = engine
        @peercert = nil
      end

      def to_io
        @socket
      end

      def readpartial(size)
        while true
          output = @engine.read
          return output if output

          data = @socket.readpartial(size)
          @engine.inject(data)
          output = @engine.read

          return output if output

          while neg_data = @engine.extract
            @socket.write neg_data
          end
        end
      end

      def engine_read_all
        output = @engine.read
        while output and additional_output = @engine.read
          output << additional_output
        end
        output
      end

      def read_nonblock(size)
        while true
          output = engine_read_all
          return output if output

          data = @socket.read_nonblock(size)

          @engine.inject(data)
          output = engine_read_all

          return output if output

          while neg_data = @engine.extract
            @socket.write neg_data
          end
        end
      end

      def write(data)
        need = data.bytesize

        while true
          wrote = @engine.write data
          enc = @engine.extract

          while enc
            @socket.write enc
            enc = @engine.extract
          end

          need -= wrote

          return data.bytesize if need == 0

          data = data[wrote..-1]
        end
      end

      alias_method :syswrite, :write

      def flush
        @socket.flush
      end

      def close
        begin
          # Try to setup (so that we can then close them) any
          # partially initialized sockets.
          while @engine.init?
            # Don't let this socket hold this loop forever.
            # If it can't send more packets within 1s, then
            # give up.
            return unless IO.select([@socket], nil, nil, 1)
            begin
              read_nonblock(1024)
            rescue Errno::EAGAIN
            end
          end

          done = @engine.shutdown

          while true
            enc = @engine.extract
            @socket.write enc

            notify = @socket.sysread(1024)

            @engine.inject notify
            done = @engine.shutdown

            break if done
          end
        rescue IOError, SystemCallError
          # nothing
        ensure
          @socket.close
        end
      end

      def peeraddr
        @socket.peeraddr
      end

      def peercert
        return @peercert if @peercert

        raw = @engine.peercert
        return nil unless raw

        @peercert = OpenSSL::X509::Certificate.new raw
      end
    end

    if defined?(JRUBY_VERSION)
      class SSLError < StandardError
        # Define this for jruby even though it isn't used.
      end

      def self.check; end
    end

    class Context
      attr_accessor :verify_mode

      if defined?(JRUBY_VERSION)
        # jruby-specific Context properties: java uses a keystore and password pair rather than a cert/key pair
        attr_reader :keystore
        attr_accessor :keystore_pass

        def keystore=(keystore)
          raise ArgumentError, "No such keystore file '#{keystore}'" unless File.exist? keystore
          @keystore = keystore
        end

        def check
          raise "Keystore not configured" unless @keystore
        end

      else
        # non-jruby Context properties
        attr_reader :key
        attr_reader :cert
        attr_reader :ca

        def key=(key)
          raise ArgumentError, "No such key file '#{key}'" unless File.exist? key
          @key = key
        end

        def cert=(cert)
          raise ArgumentError, "No such cert file '#{cert}'" unless File.exist? cert
          @cert = cert
        end

        def ca=(ca)
          raise ArgumentError, "No such ca file '#{ca}'" unless File.exist? ca
          @ca = ca
        end

        def check
          raise "Key not configured" unless @key
          raise "Cert not configured" unless @cert
        end
      end
    end

    VERIFY_NONE = 0
    VERIFY_PEER = 1
    VERIFY_FAIL_IF_NO_PEER_CERT = 2

    class Server
      def initialize(socket, ctx)
        @socket = socket
        @ctx = ctx
      end

      def to_io
        @socket
      end

      def accept
        @ctx.check
        io = @socket.accept
        engine = Engine.server @ctx

        Socket.new io, engine
      end

      def accept_nonblock
        @ctx.check
        io = @socket.accept_nonblock
        engine = Engine.server @ctx

        Socket.new io, engine
      end

      def close
        @socket.close
      end
    end
  end
end
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`module Puma`
			`module MiniSSL`
			`class Socket`
			`def initialize(socket, engine)`
			`@socket = socket`
			`@engine = engine`
ssl: Add Client Side Certificate Auth Add Client Side Certificate Auth feature and handling to puma's MiniSSL. Also exposes SSL errors to puma/apps. compatibility notes: MRI only shell example: puma -b 'ssl://127.0.0.1:9292?key=path_to_key&cert=path_to_cert&ca=path_to_ca&verify_mode=force_peer' code example: (examples/client_side_ssl) app = proc {\|env\| p env['puma.peercert']; [200, {}, ["hey"]] } events = SSLEvents.new($stdout, $stderr) server = Puma::Server.new(app, events) admin_context = Puma::MiniSSL::Context.new admin_context.key = KEY_PATH admin_context.cert = CERT_PATH admin_context.ca = CA_CERT_PATH admin_context.verify_mode = Puma::MiniSSL::VERIFY_PEER \| Puma::MiniSSL::VERIFY_FAIL_IF_NO_PEER_CERT server.add_ssl_listener("0.0.0.0", ADMIN_PORT, admin_context) server.min_threads = MIN_THREADS server.max_threads = MAX_THREADS server.persistent_timeout = IDLE_TIMEOUT server.run.join additional credits: Andy Alness <andy.alness@gmail.com> 2015-01-13 23:11:26 -05:00			`@peercert = nil`
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def to_io`
			`@socket`
			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def readpartial(size)`
			`while true`
			`output = @engine.read`
			`return output if output`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`data = @socket.readpartial(size)`
			`@engine.inject(data)`
			`output = @engine.read`
Handle SSL eof and nonblocking 2012-08-23 01:34:10 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`return output if output`
Handle SSL eof and nonblocking 2012-08-23 01:34:10 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`while neg_data = @engine.extract`
			`@socket.write neg_data`
			`end`
Handle SSL eof and nonblocking 2012-08-23 01:34:10 -04:00			`end`
			`end`

Fix for issue 350. Within MiniSSL#read_nonblock it was possible for all data to be read from the network connection but only partially read from the engine on the first attempt. This could lead to a hang during a later IO.select call because no more data was being sent over the socket but the request could not be processed because all the data hadn't been read from the engine. Changed read nonblock to repeatedly attempt to read from the engine until there is nothing more ready to read. 2013-11-24 22:57:12 -05:00			`def engine_read_all`
			`output = @engine.read`
			`while output and additional_output = @engine.read`
			`output << additional_output`
			`end`
			`output`
			`end`

Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def read_nonblock(size)`
			`while true`
Fix for issue 350. Within MiniSSL#read_nonblock it was possible for all data to be read from the network connection but only partially read from the engine on the first attempt. This could lead to a hang during a later IO.select call because no more data was being sent over the socket but the request could not be processed because all the data hadn't been read from the engine. Changed read nonblock to repeatedly attempt to read from the engine until there is nothing more ready to read. 2013-11-24 22:57:12 -05:00			`output = engine_read_all`
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`return output if output`
Handle SSL eof and nonblocking 2012-08-23 01:34:10 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`data = @socket.read_nonblock(size)`
Handle SSL eof and nonblocking 2012-08-23 01:34:10 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`@engine.inject(data)`
Fix for issue 350. Within MiniSSL#read_nonblock it was possible for all data to be read from the network connection but only partially read from the engine on the first attempt. This could lead to a hang during a later IO.select call because no more data was being sent over the socket but the request could not be processed because all the data hadn't been read from the engine. Changed read nonblock to repeatedly attempt to read from the engine until there is nothing more ready to read. 2013-11-24 22:57:12 -05:00			`output = engine_read_all`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`return output if output`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`while neg_data = @engine.extract`
			`@socket.write neg_data`
			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00			`end`
			`end`

Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def write(data)`
Make sure to use bytesize instead of size when writing data in the MiniSSL's write. @engine.write reports bytes written, not characters written. 2013-05-06 14:32:03 -04:00			`need = data.bytesize`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`while true`
			`wrote = @engine.write data`
			`enc = @engine.extract`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Handle all engine data when possible. Fixes #251. 2013-06-18 02:20:54 -04:00			`while enc`
			`@socket.write enc`
			`enc = @engine.extract`
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`need -= wrote`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Make sure to use bytesize instead of size when writing data in the MiniSSL's write. @engine.write reports bytes written, not characters written. 2013-05-06 14:32:03 -04:00			`return data.bytesize if need == 0`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Add SSL support for JRuby - Implement MiniSSL for JRuby - Modify `Binder` and `MiniSSL::Context` to to accommodate the fact that Java SSL demands a java keystore rather than a key/cert pair - Change the MiniSSL native extension interface to take a `MiniSSL::Context` rather than a key/cert pair so that each extension can grab keys off the context as appropriate 2014-05-05 17:30:15 -04:00			`data = data[wrote..-1]`
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00			`end`

Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`alias_method :syswrite, :write`
Add proper methods for nonblocking 2012-09-10 11:50:43 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def flush`
			`@socket.flush`
			`end`
Get OpenSSL driven version working 2012-08-23 00:43:40 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def close`
More gracefully deal with SSL sessions. Fixes #1002 The problem was a few points: * We were not clearing the reactor on a normal stop, which is what is used in a phased restart. * On close, SSL sockets were not sending the shutdown message. * SSL sockets that were completely uninitialized ended up sitting in reactor and could not actually be shutdown because there were not initialized. 2016-07-25 20:20:17 -04:00			`begin`
			`# Try to setup (so that we can then close them) any`
			`# partially initialized sockets.`
			`while @engine.init?`
			`# Don't let this socket hold this loop forever.`
			`# If it can't send more packets within 1s, then`
			`# give up.`
			`return unless IO.select([@socket], nil, nil, 1)`
			`begin`
			`read_nonblock(1024)`
			`rescue Errno::EAGAIN`
			`end`
			`end`

			`done = @engine.shutdown`

			`while true`
			`enc = @engine.extract`
			`@socket.write enc`

			`notify = @socket.sysread(1024)`

			`@engine.inject notify`
			`done = @engine.shutdown`

			`break if done`
			`end`
			`rescue IOError, SystemCallError`
			`# nothing`
			`ensure`
			`@socket.close`
			`end`
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`end`
Get OpenSSL driven version working 2012-08-23 00:43:40 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def peeraddr`
			`@socket.peeraddr`
			`end`
ssl: Add Client Side Certificate Auth Add Client Side Certificate Auth feature and handling to puma's MiniSSL. Also exposes SSL errors to puma/apps. compatibility notes: MRI only shell example: puma -b 'ssl://127.0.0.1:9292?key=path_to_key&cert=path_to_cert&ca=path_to_ca&verify_mode=force_peer' code example: (examples/client_side_ssl) app = proc {\|env\| p env['puma.peercert']; [200, {}, ["hey"]] } events = SSLEvents.new($stdout, $stderr) server = Puma::Server.new(app, events) admin_context = Puma::MiniSSL::Context.new admin_context.key = KEY_PATH admin_context.cert = CERT_PATH admin_context.ca = CA_CERT_PATH admin_context.verify_mode = Puma::MiniSSL::VERIFY_PEER \| Puma::MiniSSL::VERIFY_FAIL_IF_NO_PEER_CERT server.add_ssl_listener("0.0.0.0", ADMIN_PORT, admin_context) server.min_threads = MIN_THREADS server.max_threads = MAX_THREADS server.persistent_timeout = IDLE_TIMEOUT server.run.join additional credits: Andy Alness <andy.alness@gmail.com> 2015-01-13 23:11:26 -05:00
			`def peercert`
			`return @peercert if @peercert`

			`raw = @engine.peercert`
			`return nil unless raw`

			`@peercert = OpenSSL::X509::Certificate.new raw`
			`end`
			`end`

			`if defined?(JRUBY_VERSION)`
			`class SSLError < StandardError`
			`# Define this for jruby even though it isn't used.`
			`end`
Make building with SSL support optional 2015-09-18 12:43:51 -04:00
			`def self.check; end`
Get OpenSSL driven version working 2012-08-23 00:43:40 -04:00			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`class Context`
			`attr_accessor :verify_mode`
made MiniSSL validate key/cert file existence Previously, MiniSSL accepted invalid paths for the key/cert file and timed out on the first request. Now, MiniSSL raises an ArgumentError if one of these files does not exist. Fix for puma/puma#168 2012-11-30 07:47:47 -05:00
Add SSL support for JRuby - Implement MiniSSL for JRuby - Modify `Binder` and `MiniSSL::Context` to to accommodate the fact that Java SSL demands a java keystore rather than a key/cert pair - Change the MiniSSL native extension interface to take a `MiniSSL::Context` rather than a key/cert pair so that each extension can grab keys off the context as appropriate 2014-05-05 17:30:15 -04:00			`if defined?(JRUBY_VERSION)`
			`# jruby-specific Context properties: java uses a keystore and password pair rather than a cert/key pair`
			`attr_reader :keystore`
			`attr_accessor :keystore_pass`
made MiniSSL validate key/cert file existence Previously, MiniSSL accepted invalid paths for the key/cert file and timed out on the first request. Now, MiniSSL raises an ArgumentError if one of these files does not exist. Fix for puma/puma#168 2012-11-30 07:47:47 -05:00
Add SSL support for JRuby - Implement MiniSSL for JRuby - Modify `Binder` and `MiniSSL::Context` to to accommodate the fact that Java SSL demands a java keystore rather than a key/cert pair - Change the MiniSSL native extension interface to take a `MiniSSL::Context` rather than a key/cert pair so that each extension can grab keys off the context as appropriate 2014-05-05 17:30:15 -04:00			`def keystore=(keystore)`
			`raise ArgumentError, "No such keystore file '#{keystore}'" unless File.exist? keystore`
			`@keystore = keystore`
			`end`
Check SSLContext better. Fixes #828 2016-07-24 17:29:23 -04:00
			`def check`
			`raise "Keystore not configured" unless @keystore`
			`end`

Add SSL support for JRuby - Implement MiniSSL for JRuby - Modify `Binder` and `MiniSSL::Context` to to accommodate the fact that Java SSL demands a java keystore rather than a key/cert pair - Change the MiniSSL native extension interface to take a `MiniSSL::Context` rather than a key/cert pair so that each extension can grab keys off the context as appropriate 2014-05-05 17:30:15 -04:00			`else`
			`# non-jruby Context properties`
			`attr_reader :key`
			`attr_reader :cert`
ssl: Add Client Side Certificate Auth Add Client Side Certificate Auth feature and handling to puma's MiniSSL. Also exposes SSL errors to puma/apps. compatibility notes: MRI only shell example: puma -b 'ssl://127.0.0.1:9292?key=path_to_key&cert=path_to_cert&ca=path_to_ca&verify_mode=force_peer' code example: (examples/client_side_ssl) app = proc {\|env\| p env['puma.peercert']; [200, {}, ["hey"]] } events = SSLEvents.new($stdout, $stderr) server = Puma::Server.new(app, events) admin_context = Puma::MiniSSL::Context.new admin_context.key = KEY_PATH admin_context.cert = CERT_PATH admin_context.ca = CA_CERT_PATH admin_context.verify_mode = Puma::MiniSSL::VERIFY_PEER \| Puma::MiniSSL::VERIFY_FAIL_IF_NO_PEER_CERT server.add_ssl_listener("0.0.0.0", ADMIN_PORT, admin_context) server.min_threads = MIN_THREADS server.max_threads = MAX_THREADS server.persistent_timeout = IDLE_TIMEOUT server.run.join additional credits: Andy Alness <andy.alness@gmail.com> 2015-01-13 23:11:26 -05:00			`attr_reader :ca`
Add SSL support for JRuby - Implement MiniSSL for JRuby - Modify `Binder` and `MiniSSL::Context` to to accommodate the fact that Java SSL demands a java keystore rather than a key/cert pair - Change the MiniSSL native extension interface to take a `MiniSSL::Context` rather than a key/cert pair so that each extension can grab keys off the context as appropriate 2014-05-05 17:30:15 -04:00
			`def key=(key)`
			`raise ArgumentError, "No such key file '#{key}'" unless File.exist? key`
			`@key = key`
			`end`
made MiniSSL validate key/cert file existence Previously, MiniSSL accepted invalid paths for the key/cert file and timed out on the first request. Now, MiniSSL raises an ArgumentError if one of these files does not exist. Fix for puma/puma#168 2012-11-30 07:47:47 -05:00
Add SSL support for JRuby - Implement MiniSSL for JRuby - Modify `Binder` and `MiniSSL::Context` to to accommodate the fact that Java SSL demands a java keystore rather than a key/cert pair - Change the MiniSSL native extension interface to take a `MiniSSL::Context` rather than a key/cert pair so that each extension can grab keys off the context as appropriate 2014-05-05 17:30:15 -04:00			`def cert=(cert)`
			`raise ArgumentError, "No such cert file '#{cert}'" unless File.exist? cert`
			`@cert = cert`
			`end`
ssl: Add Client Side Certificate Auth Add Client Side Certificate Auth feature and handling to puma's MiniSSL. Also exposes SSL errors to puma/apps. compatibility notes: MRI only shell example: puma -b 'ssl://127.0.0.1:9292?key=path_to_key&cert=path_to_cert&ca=path_to_ca&verify_mode=force_peer' code example: (examples/client_side_ssl) app = proc {\|env\| p env['puma.peercert']; [200, {}, ["hey"]] } events = SSLEvents.new($stdout, $stderr) server = Puma::Server.new(app, events) admin_context = Puma::MiniSSL::Context.new admin_context.key = KEY_PATH admin_context.cert = CERT_PATH admin_context.ca = CA_CERT_PATH admin_context.verify_mode = Puma::MiniSSL::VERIFY_PEER \| Puma::MiniSSL::VERIFY_FAIL_IF_NO_PEER_CERT server.add_ssl_listener("0.0.0.0", ADMIN_PORT, admin_context) server.min_threads = MIN_THREADS server.max_threads = MAX_THREADS server.persistent_timeout = IDLE_TIMEOUT server.run.join additional credits: Andy Alness <andy.alness@gmail.com> 2015-01-13 23:11:26 -05:00
			`def ca=(ca)`
			`raise ArgumentError, "No such ca file '#{ca}'" unless File.exist? ca`
			`@ca = ca`
			`end`
Check SSLContext better. Fixes #828 2016-07-24 17:29:23 -04:00
			`def check`
			`raise "Key not configured" unless @key`
			`raise "Cert not configured" unless @cert`
			`end`
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`end`
made MiniSSL validate key/cert file existence Previously, MiniSSL accepted invalid paths for the key/cert file and timed out on the first request. Now, MiniSSL raises an ArgumentError if one of these files does not exist. Fix for puma/puma#168 2012-11-30 07:47:47 -05:00			`end`
Get OpenSSL driven version working 2012-08-23 00:43:40 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`VERIFY_NONE = 0`
			`VERIFY_PEER = 1`
ssl: Add Client Side Certificate Auth Add Client Side Certificate Auth feature and handling to puma's MiniSSL. Also exposes SSL errors to puma/apps. compatibility notes: MRI only shell example: puma -b 'ssl://127.0.0.1:9292?key=path_to_key&cert=path_to_cert&ca=path_to_ca&verify_mode=force_peer' code example: (examples/client_side_ssl) app = proc {\|env\| p env['puma.peercert']; [200, {}, ["hey"]] } events = SSLEvents.new($stdout, $stderr) server = Puma::Server.new(app, events) admin_context = Puma::MiniSSL::Context.new admin_context.key = KEY_PATH admin_context.cert = CERT_PATH admin_context.ca = CA_CERT_PATH admin_context.verify_mode = Puma::MiniSSL::VERIFY_PEER \| Puma::MiniSSL::VERIFY_FAIL_IF_NO_PEER_CERT server.add_ssl_listener("0.0.0.0", ADMIN_PORT, admin_context) server.min_threads = MIN_THREADS server.max_threads = MAX_THREADS server.persistent_timeout = IDLE_TIMEOUT server.run.join additional credits: Andy Alness <andy.alness@gmail.com> 2015-01-13 23:11:26 -05:00			`VERIFY_FAIL_IF_NO_PEER_CERT = 2`
Get OpenSSL driven version working 2012-08-23 00:43:40 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`class Server`
			`def initialize(socket, ctx)`
			`@socket = socket`
			`@ctx = ctx`
			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def to_io`
			`@socket`
			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def accept`
Check SSLContext better. Fixes #828 2016-07-24 17:29:23 -04:00			`@ctx.check`
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`io = @socket.accept`
Add SSL support for JRuby - Implement MiniSSL for JRuby - Modify `Binder` and `MiniSSL::Context` to to accommodate the fact that Java SSL demands a java keystore rather than a key/cert pair - Change the MiniSSL native extension interface to take a `MiniSSL::Context` rather than a key/cert pair so that each extension can grab keys off the context as appropriate 2014-05-05 17:30:15 -04:00			`engine = Engine.server @ctx`
Start MiniSSL 2012-08-22 19:53:25 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`Socket.new io, engine`
			`end`
Get OpenSSL driven version working 2012-08-23 00:43:40 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def accept_nonblock`
Check SSLContext better. Fixes #828 2016-07-24 17:29:23 -04:00			`@ctx.check`
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`io = @socket.accept_nonblock`
Add SSL support for JRuby - Implement MiniSSL for JRuby - Modify `Binder` and `MiniSSL::Context` to to accommodate the fact that Java SSL demands a java keystore rather than a key/cert pair - Change the MiniSSL native extension interface to take a `MiniSSL::Context` rather than a key/cert pair so that each extension can grab keys off the context as appropriate 2014-05-05 17:30:15 -04:00			`engine = Engine.server @ctx`
Add proper methods for nonblocking 2012-09-10 11:50:43 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`Socket.new io, engine`
			`end`
Add proper methods for nonblocking 2012-09-10 11:50:43 -04:00
Fixup some tests to pass in travis 2013-03-18 19:20:17 -04:00			`def close`
			`@socket.close`
			`end`
Get OpenSSL driven version working 2012-08-23 00:43:40 -04:00			`end`
Start MiniSSL 2012-08-22 19:53:25 -04:00			`end`
			`end`