diff options
Diffstat (limited to 'cpp/test/IceSSL/certificateVerification/Client.cpp')
| -rw-r--r-- | cpp/test/IceSSL/certificateVerification/Client.cpp | 223 |
1 files changed, 0 insertions, 223 deletions
diff --git a/cpp/test/IceSSL/certificateVerification/Client.cpp b/cpp/test/IceSSL/certificateVerification/Client.cpp deleted file mode 100644 index aeab0bf195a..00000000000 --- a/cpp/test/IceSSL/certificateVerification/Client.cpp +++ /dev/null @@ -1,223 +0,0 @@ -// ********************************************************************** -// -// Copyright (c) 2003-2006 ZeroC, Inc. All rights reserved. -// -// This copy of Ice is licensed to you under the terms described in the -// ICE_LICENSE file included in this distribution. -// -// ********************************************************************** - -#include <Ice/Ice.h> -#include <IceSSL/Plugin.h> -#include <IceSSL/Exception.h> -#include <TestCommon.h> -#include <Pinger.h> - -using namespace std; -using namespace Test; - -int -run(int argc, char* argv[], const Ice::CommunicatorPtr& communicator) -{ - const string ref1 = "pinger:ssl -p 12010 -t 10000"; - const string ref2 = "pinger:ssl -p 12011 -t 10000"; - const string ref3 = "pinger:ssl -p 12347 -t 10000"; - const string ref4 = "pinger:ssl -p 12348 -t 10000"; - const string ref5 = "pinger:ssl -p 12349 -t 10000"; - - KeyManagerPrx km = KeyManagerPrx::checkedCast(communicator->stringToProxy("keyManager:tcp -p 12344 -t 10000")); - - Ice::ByteSeq serverTrustedCert; - Ice::ByteSeq serverUntrustedCert; - Ice::ByteSeq clientTrustedKey; - Ice::ByteSeq clientTrustedCert; - Ice::ByteSeq clientUntrustedKey; - Ice::ByteSeq clientUntrustedCert; - - km->getServerCerts(serverTrustedCert,serverUntrustedCert); - km->getTrustedClientKeys(clientTrustedKey,clientTrustedCert); - km->getUntrustedClientKeys(clientUntrustedKey,clientUntrustedCert); - - Ice::PluginPtr plugin = communicator->getPluginManager()->getPlugin("IceSSL"); - IceSSL::PluginPtr sslPlugin = IceSSL::PluginPtr::dynamicCast(plugin); - - Ice::PropertiesPtr properties = communicator->getProperties(); - - // Use test related paths - override values in TestUtil.py - std::string clientCertPath = properties->getProperty("TestSSL.Client.CertPath"); - std::string serverCertPath = properties->getProperty("TestSSL.Server.CertPath"); - properties->setProperty("IceSSL.Client.CertPath", clientCertPath); - properties->setProperty("IceSSL.Server.CertPath", serverCertPath); - - bool singleCertVerifier = false; - if(properties->getProperty("TestSSL.Client.CertificateVerifier") == "singleCert") - { - singleCertVerifier = true; - } - - if(!singleCertVerifier) - { - cout << "client and server trusted, client using stock certificate... " << flush; - - properties->setProperty("IceSSL.Client.Config", "sslconfig_6.xml"); - sslPlugin->configure(IceSSL::Client); - sslPlugin->addTrustedCertificate(IceSSL::Client, serverTrustedCert); - try - { - Ice::ObjectPrx pinger1 = communicator->stringToProxy(ref1); - pinger1->ice_ping(); - cout << "ok" << endl; - } - catch(const Ice::LocalException& ex) - { - cout << ex << endl; - km->shutdown(); - test(false); - } - } - - properties->setProperty("IceSSL.Client.Config", "sslconfig_7.xml"); - - cout << "client and server do not trust each other... " << flush; - - // Neither Client nor Server will trust. - sslPlugin->configure(IceSSL::Client); - sslPlugin->addTrustedCertificate(IceSSL::Client, serverUntrustedCert); - if(singleCertVerifier) - { - IceSSL::CertificateVerifierPtr certVerifier = sslPlugin->getSingleCertVerifier(serverUntrustedCert); - sslPlugin->setCertificateVerifier(IceSSL::Client, certVerifier); - } - sslPlugin->setRSAKeys(IceSSL::Client, clientUntrustedKey, clientUntrustedCert); - try - { - Ice::ObjectPrx pinger2 = communicator->stringToProxy(ref2); - pinger2->ice_ping(); - km->shutdown(); - test(false); - } - catch(const IceSSL::CertificateVerificationException&) - { - cout << "ok" << endl; - } - catch(const Ice::LocalException& ex) - { - cout << ex << endl; - km->shutdown(); - test(false); - } - - cout << "client trusted, server not trusted... " << flush; - - // Client will not trust Server, but Server will trust Client. - sslPlugin->setRSAKeys(IceSSL::Client, clientTrustedKey, clientTrustedCert); - try - { - Ice::ObjectPrx pinger3 = communicator->stringToProxy(ref3); - pinger3->ice_ping(); - km->shutdown(); - test(false); - } - catch(const IceSSL::CertificateVerificationException&) - { - cout << "ok" << endl; - } - catch(const Ice::LocalException& ex) - { - cout << ex << endl; - km->shutdown(); - test(false); - } - - cout << "client trusts server, server does not trust client... " << flush; - - // Client trusts, Server does not. - sslPlugin->configure(IceSSL::Client); - sslPlugin->addTrustedCertificate(IceSSL::Client, serverTrustedCert); - if(singleCertVerifier) - { - IceSSL::CertificateVerifierPtr certVerifier = sslPlugin->getSingleCertVerifier(serverTrustedCert); - sslPlugin->setCertificateVerifier(IceSSL::Client, certVerifier); - } - sslPlugin->setRSAKeys(IceSSL::Client, clientUntrustedKey, clientUntrustedCert); - try - { - Ice::ObjectPrx pinger4 = communicator->stringToProxy(ref4); - pinger4->ice_ping(); - km->shutdown(); - test(false); - } - catch(const IceSSL::ProtocolException&) - { - // Note: We expect that the server will send an alert 48 back to the client, - // generating this exception. - cout << "ok" << endl; - } - catch(const Ice::LocalException& ex) - { - cout << ex << endl; - km->shutdown(); - test(false); - } - - cout << "both client and server trust each other... " << flush; - - // Both Client and Server trust. - sslPlugin->setRSAKeys(IceSSL::Client, clientTrustedKey, clientTrustedCert); - - try - { - Ice::ObjectPrx pinger5 = communicator->stringToProxy(ref5); - pinger5->ice_ping(); - cout << "ok" << endl; - } - catch(const Ice::LocalException& ex) - { - cout << ex << endl; - km->shutdown(); - test(false); - } - - cout << "shutting down... " << flush; - km->shutdown(); - cout << "ok" << endl; - - return EXIT_SUCCESS; -} - -int -main(int argc, char* argv[]) -{ - int status; - Ice::CommunicatorPtr communicator; - - try - { - communicator = Ice::initialize(argc, argv); - Ice::PropertiesPtr properties = communicator->getProperties(); - Ice::StringSeq args = Ice::argsToStringSeq(argc, argv); - args = properties->parseCommandLineOptions("TestSSL", args); - Ice::stringSeqToArgs(args, argc, argv); - status = run(argc, argv, communicator); - } - catch(const Ice::Exception& ex) - { - cerr << ex << endl; - status = EXIT_FAILURE; - } - - if(communicator) - { - try - { - communicator->destroy(); - } - catch(const Ice::Exception& ex) - { - cerr << ex << endl; - status = EXIT_FAILURE; - } - } - - return status; -} |