|
|
|
|
// Copyright Joyent, Inc. and other Node contributors.
|
|
|
|
|
//
|
|
|
|
|
// Permission is hereby granted, free of charge, to any person obtaining a
|
|
|
|
|
// copy of this software and associated documentation files (the
|
|
|
|
|
// "Software"), to deal in the Software without restriction, including
|
|
|
|
|
// without limitation the rights to use, copy, modify, merge, publish,
|
|
|
|
|
// distribute, sublicense, and/or sell copies of the Software, and to permit
|
|
|
|
|
// persons to whom the Software is furnished to do so, subject to the
|
|
|
|
|
// following conditions:
|
|
|
|
|
//
|
|
|
|
|
// The above copyright notice and this permission notice shall be included
|
|
|
|
|
// in all copies or substantial portions of the Software.
|
|
|
|
|
//
|
|
|
|
|
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
|
|
|
|
|
// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
|
|
|
|
|
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
|
|
|
|
|
// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
|
|
|
|
|
// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
|
|
|
|
|
// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
|
|
|
|
|
// USE OR OTHER DEALINGS IN THE SOFTWARE.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
var common = require('../common');
|
|
|
|
|
var assert = require('assert');
|
|
|
|
|
var fs = require('fs');
|
|
|
|
|
var net = require('net');
|
|
|
|
|
|
|
|
|
|
var have_openssl;
|
|
|
|
|
try {
|
|
|
|
|
var crypto = require('crypto');
|
|
|
|
|
have_openssl = true;
|
|
|
|
|
} catch (e) {
|
|
|
|
|
have_openssl = false;
|
|
|
|
|
console.log('Not compiled with OPENSSL support.');
|
|
|
|
|
process.exit();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var caPem = fs.readFileSync(common.fixturesDir + '/test_ca.pem', 'ascii');
|
|
|
|
|
var certPem = fs.readFileSync(common.fixturesDir + '/test_cert.pem', 'ascii');
|
|
|
|
|
var keyPem = fs.readFileSync(common.fixturesDir + '/test_key.pem', 'ascii');
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
var credentials = crypto.createCredentials(
|
|
|
|
|
{ key: keyPem,
|
|
|
|
|
cert: certPem,
|
|
|
|
|
ca: caPem
|
|
|
|
|
});
|
|
|
|
|
} catch (e) {
|
|
|
|
|
console.log('Not compiled with OPENSSL support.');
|
|
|
|
|
process.exit();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var testData = 'TEST123';
|
|
|
|
|
var serverData = '';
|
|
|
|
|
var clientData = '';
|
|
|
|
|
var gotSecureServer = false;
|
|
|
|
|
var gotSecureClient = false;
|
|
|
|
|
|
|
|
|
|
var secureServer = net.createServer(function(connection) {
|
|
|
|
|
var self = this;
|
|
|
|
|
connection.setSecure(credentials);
|
|
|
|
|
connection.setEncoding('UTF8');
|
|
|
|
|
|
|
|
|
|
connection.on('secure', function() {
|
|
|
|
|
gotSecureServer = true;
|
|
|
|
|
var verified = connection.verifyPeer();
|
|
|
|
|
var peerDN = JSON.stringify(connection.getPeerCertificate());
|
|
|
|
|
assert.equal(verified, true);
|
|
|
|
|
assert.equal(peerDN,
|
|
|
|
|
'{"subject":"/C=UK/ST=Acknack Ltd/L=Rhys Jones' +
|
|
|
|
|
'/O=node.js/OU=Test TLS Certificate/CN=localhost",' +
|
|
|
|
|
'"issuer":"/C=UK/ST=Acknack Ltd/L=Rhys Jones/O=node.js' +
|
|
|
|
|
'/OU=Test TLS Certificate/CN=localhost",' +
|
|
|
|
|
'"valid_from":"Nov 11 09:52:22 2009 GMT",' +
|
|
|
|
|
'"valid_to":"Nov 6 09:52:22 2029 GMT",' +
|
|
|
|
|
'"fingerprint":"2A:7A:C2:DD:E5:F9:CC:53:72:35:99:7A:02:' +
|
|
|
|
|
'5A:71:38:52:EC:8A:DF"}');
|
|
|
|
|
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
connection.on('data', function(chunk) {
|
|
|
|
|
serverData += chunk;
|
|
|
|
|
connection.write(chunk);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
connection.on('end', function() {
|
|
|
|
|
assert.equal(serverData, testData);
|
|
|
|
|
connection.end();
|
|
|
|
|
self.close();
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
secureServer.listen(common.PORT);
|
|
|
|
|
|
|
|
|
|
secureServer.on('listening', function() {
|
|
|
|
|
var secureClient = net.createConnection(common.PORT);
|
|
|
|
|
|
|
|
|
|
secureClient.setEncoding('UTF8');
|
|
|
|
|
secureClient.on('connect', function() {
|
|
|
|
|
secureClient.setSecure(credentials);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
secureClient.on('secure', function() {
|
|
|
|
|
gotSecureClient = true;
|
|
|
|
|
var verified = secureClient.verifyPeer();
|
|
|
|
|
var peerDN = JSON.stringify(secureClient.getPeerCertificate());
|
|
|
|
|
assert.equal(verified, true);
|
|
|
|
|
assert.equal(peerDN,
|
|
|
|
|
'{"subject":"/C=UK/ST=Acknack Ltd/L=Rhys Jones' +
|
|
|
|
|
'/O=node.js/OU=Test TLS Certificate/CN=localhost",' +
|
|
|
|
|
'"issuer":"/C=UK/ST=Acknack Ltd/L=Rhys Jones/O=node.js' +
|
|
|
|
|
'/OU=Test TLS Certificate/CN=localhost",' +
|
|
|
|
|
'"valid_from":"Nov 11 09:52:22 2009 GMT",' +
|
|
|
|
|
'"valid_to":"Nov 6 09:52:22 2029 GMT",' +
|
|
|
|
|
'"fingerprint":"2A:7A:C2:DD:E5:F9:CC:53:72:35:99:7A:02:' +
|
|
|
|
|
'5A:71:38:52:EC:8A:DF"}');
|
|
|
|
|
|
|
|
|
|
secureClient.write(testData);
|
|
|
|
|
secureClient.end();
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
secureClient.on('data', function(chunk) {
|
|
|
|
|
clientData += chunk;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
secureClient.on('end', function() {
|
|
|
|
|
assert.equal(clientData, testData);
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
process.on('exit', function() {
|
|
|
|
|
assert.ok(gotSecureServer, 'Did not get secure event for server');
|
|
|
|
|
assert.ok(gotSecureClient, 'Did not get secure event for client');
|
|
|
|
|
});
|
