You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 

135 lines
4.6 KiB

// Copyright Joyent, Inc. and other Node contributors.
//
// Permission is hereby granted, free of charge, to any person obtaining a
// copy of this software and associated documentation files (the
// "Software"), to deal in the Software without restriction, including
// without limitation the rights to use, copy, modify, merge, publish,
// distribute, sublicense, and/or sell copies of the Software, and to permit
// persons to whom the Software is furnished to do so, subject to the
// following conditions:
//
// The above copyright notice and this permission notice shall be included
// in all copies or substantial portions of the Software.
//
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
// USE OR OTHER DEALINGS IN THE SOFTWARE.
var common = require('../common');
var assert = require('assert');
var fs = require('fs');
var net = require('net');
var have_openssl;
try {
var crypto = require('crypto');
have_openssl = true;
} catch (e) {
have_openssl = false;
console.log('Not compiled with OPENSSL support.');
process.exit();
}
var caPem = fs.readFileSync(common.fixturesDir + '/test_ca.pem', 'ascii');
var certPem = fs.readFileSync(common.fixturesDir + '/test_cert.pem', 'ascii');
var keyPem = fs.readFileSync(common.fixturesDir + '/test_key.pem', 'ascii');
try {
var credentials = crypto.createCredentials(
{ key: keyPem,
cert: certPem,
ca: caPem
});
} catch (e) {
console.log('Not compiled with OPENSSL support.');
process.exit();
}
var testData = 'TEST123';
var serverData = '';
var clientData = '';
var gotSecureServer = false;
var gotSecureClient = false;
var secureServer = net.createServer(function(connection) {
var self = this;
connection.setSecure(credentials);
connection.setEncoding('UTF8');
connection.on('secure', function() {
gotSecureServer = true;
var verified = connection.verifyPeer();
var peerDN = JSON.stringify(connection.getPeerCertificate());
assert.equal(verified, true);
assert.equal(peerDN,
'{"subject":"/C=UK/ST=Acknack Ltd/L=Rhys Jones' +
'/O=node.js/OU=Test TLS Certificate/CN=localhost",' +
'"issuer":"/C=UK/ST=Acknack Ltd/L=Rhys Jones/O=node.js' +
'/OU=Test TLS Certificate/CN=localhost",' +
'"valid_from":"Nov 11 09:52:22 2009 GMT",' +
'"valid_to":"Nov 6 09:52:22 2029 GMT",' +
'"fingerprint":"2A:7A:C2:DD:E5:F9:CC:53:72:35:99:7A:02:' +
'5A:71:38:52:EC:8A:DF"}');
});
connection.on('data', function(chunk) {
serverData += chunk;
connection.write(chunk);
});
connection.on('end', function() {
assert.equal(serverData, testData);
connection.end();
self.close();
});
});
secureServer.listen(common.PORT);
secureServer.on('listening', function() {
var secureClient = net.createConnection(common.PORT);
secureClient.setEncoding('UTF8');
secureClient.on('connect', function() {
secureClient.setSecure(credentials);
});
secureClient.on('secure', function() {
gotSecureClient = true;
var verified = secureClient.verifyPeer();
var peerDN = JSON.stringify(secureClient.getPeerCertificate());
assert.equal(verified, true);
assert.equal(peerDN,
'{"subject":"/C=UK/ST=Acknack Ltd/L=Rhys Jones' +
'/O=node.js/OU=Test TLS Certificate/CN=localhost",' +
'"issuer":"/C=UK/ST=Acknack Ltd/L=Rhys Jones/O=node.js' +
'/OU=Test TLS Certificate/CN=localhost",' +
'"valid_from":"Nov 11 09:52:22 2009 GMT",' +
'"valid_to":"Nov 6 09:52:22 2029 GMT",' +
'"fingerprint":"2A:7A:C2:DD:E5:F9:CC:53:72:35:99:7A:02:' +
'5A:71:38:52:EC:8A:DF"}');
secureClient.write(testData);
secureClient.end();
});
secureClient.on('data', function(chunk) {
clientData += chunk;
});
secureClient.on('end', function() {
assert.equal(clientData, testData);
});
});
process.on('exit', function() {
assert.ok(gotSecureServer, 'Did not get secure event for server');
assert.ok(gotSecureClient, 'Did not get secure event for client');
});