// Copyright Joyent, Inc. and other Node contributors. // // Permission is hereby granted, free of charge, to any person obtaining a // copy of this software and associated documentation files (the // "Software"), to deal in the Software without restriction, including // without limitation the rights to use, copy, modify, merge, publish, // distribute, sublicense, and/or sell copies of the Software, and to permit // persons to whom the Software is furnished to do so, subject to the // following conditions: // // The above copyright notice and this permission notice shall be included // in all copies or substantial portions of the Software. // // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS // OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN // NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, // DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR // OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE // USE OR OTHER DEALINGS IN THE SOFTWARE. var common = require('../common'); var assert = require('assert'); var fs = require('fs'); var net = require('net'); var have_openssl; try { var crypto = require('crypto'); have_openssl = true; } catch (e) { have_openssl = false; console.log('Not compiled with OPENSSL support.'); process.exit(); } var caPem = fs.readFileSync(common.fixturesDir + '/test_ca.pem', 'ascii'); var certPem = fs.readFileSync(common.fixturesDir + '/test_cert.pem', 'ascii'); var keyPem = fs.readFileSync(common.fixturesDir + '/test_key.pem', 'ascii'); try { var credentials = crypto.createCredentials( { key: keyPem, cert: certPem, ca: caPem }); } catch (e) { console.log('Not compiled with OPENSSL support.'); process.exit(); } var testData = 'TEST123'; var serverData = ''; var clientData = ''; var gotSecureServer = false; var gotSecureClient = false; var secureServer = net.createServer(function(connection) { var self = this; connection.setSecure(credentials); connection.setEncoding('UTF8'); connection.on('secure', function() { gotSecureServer = true; var verified = connection.verifyPeer(); var peerDN = JSON.stringify(connection.getPeerCertificate()); assert.equal(verified, true); assert.equal(peerDN, '{"subject":"/C=UK/ST=Acknack Ltd/L=Rhys Jones' + '/O=node.js/OU=Test TLS Certificate/CN=localhost",' + '"issuer":"/C=UK/ST=Acknack Ltd/L=Rhys Jones/O=node.js' + '/OU=Test TLS Certificate/CN=localhost",' + '"valid_from":"Nov 11 09:52:22 2009 GMT",' + '"valid_to":"Nov 6 09:52:22 2029 GMT",' + '"fingerprint":"2A:7A:C2:DD:E5:F9:CC:53:72:35:99:7A:02:' + '5A:71:38:52:EC:8A:DF"}'); }); connection.on('data', function(chunk) { serverData += chunk; connection.write(chunk); }); connection.on('end', function() { assert.equal(serverData, testData); connection.end(); self.close(); }); }); secureServer.listen(common.PORT); secureServer.on('listening', function() { var secureClient = net.createConnection(common.PORT); secureClient.setEncoding('UTF8'); secureClient.on('connect', function() { secureClient.setSecure(credentials); }); secureClient.on('secure', function() { gotSecureClient = true; var verified = secureClient.verifyPeer(); var peerDN = JSON.stringify(secureClient.getPeerCertificate()); assert.equal(verified, true); assert.equal(peerDN, '{"subject":"/C=UK/ST=Acknack Ltd/L=Rhys Jones' + '/O=node.js/OU=Test TLS Certificate/CN=localhost",' + '"issuer":"/C=UK/ST=Acknack Ltd/L=Rhys Jones/O=node.js' + '/OU=Test TLS Certificate/CN=localhost",' + '"valid_from":"Nov 11 09:52:22 2009 GMT",' + '"valid_to":"Nov 6 09:52:22 2029 GMT",' + '"fingerprint":"2A:7A:C2:DD:E5:F9:CC:53:72:35:99:7A:02:' + '5A:71:38:52:EC:8A:DF"}'); secureClient.write(testData); secureClient.end(); }); secureClient.on('data', function(chunk) { clientData += chunk; }); secureClient.on('end', function() { assert.equal(clientData, testData); }); }); process.on('exit', function() { assert.ok(gotSecureServer, 'Did not get secure event for server'); assert.ok(gotSecureClient, 'Did not get secure event for client'); });