1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
|
// This may look like C, but it's really -*- C++ -*-
//
// $Id$
#include "SSLIOP_Endpoint.h"
#include "SSLIOP_Connection_Handler.h"
#include "tao/IIOP_Endpoint.h"
ACE_RCSID (SSLIOP,
SSLIOP_Endpoint,
"$Id$")
#if !defined (__ACE_INLINE__)
# include "SSLIOP_Endpoint.i"
#endif /* __ACE_INLINE__ */
TAO_SSLIOP_Endpoint::TAO_SSLIOP_Endpoint (const SSLIOP::SSL *ssl_component,
TAO_IIOP_Endpoint *iiop_endp)
: TAO_Endpoint (TAO_TAG_IIOP_PROFILE),
object_addr_ (),
next_ (0),
iiop_endpoint_ (iiop_endp)
{
if (ssl_component != 0)
{
// Copy the security association options in the IOR's SSL tagged
// component.
this->ssl_component_.target_supports = ssl_component->target_supports;
this->ssl_component_.target_requires = ssl_component->target_requires;
this->ssl_component_.port = ssl_component->port;
}
else
{
// No SSL tagged component is available so construct a default
// set of security association options, in addition to the IANA
// assigned IIOP over SSL port (684). This is generally a
// client side issue.
// Clear all bits in the SSLIOP::SSL association option fields.
this->ssl_component_.target_supports = 0;
this->ssl_component_.target_requires = 0;
// SSLIOP requires these Security::AssociationOptions by default.
ACE_SET_BITS (this->ssl_component_.target_requires,
Security::Integrity
| Security::Confidentiality
| Security::NoDelegation);
// SSLIOP supports these Security::AssociationOptions by
// default.
//
// Note that the Security::NoProtection bit is set since we
// can't be sure if the server supports SSL, and TAO's SSLIOP
// implementation must support IIOP over SSL and plain IIOP.
ACE_SET_BITS (this->ssl_component_.target_supports,
Security::Integrity
| Security::Confidentiality
| Security::EstablishTrustInTarget
| Security::NoProtection
| Security::NoDelegation);
// Initialize the default SSL port to the IANA assigned IIOP
// over SSL port. We usually only get here if we're creating a
// profile on the client side.
this->ssl_component_.port = 684;
}
}
TAO_SSLIOP_Endpoint::~TAO_SSLIOP_Endpoint (void)
{
}
int
TAO_SSLIOP_Endpoint::addr_to_string (char *buffer, size_t length)
{
// @@ Marina, this is broken. You're returning the IIOP address,
// not the SSLIOP one, meaning that the port will be incorrect.
return
this->iiop_endpoint_->addr_to_string (buffer, length);
}
void
TAO_SSLIOP_Endpoint::reset_hint (void)
{
this->iiop_endpoint_->reset_hint ();
// @@ Who is doing the locking here!
/*if (this->ssl_hint_)
{
this->ssl_hint_->cleanup_hint ();
this->ssl_hint_ = 0;
}*/
}
TAO_Endpoint *
TAO_SSLIOP_Endpoint::next (void)
{
return this->next_;
}
CORBA::Boolean
TAO_SSLIOP_Endpoint::is_equivalent (const TAO_Endpoint *other_endpoint)
{
TAO_Endpoint *endpt = ACE_const_cast (TAO_Endpoint *,
other_endpoint);
TAO_SSLIOP_Endpoint *endpoint =
ACE_dynamic_cast (TAO_SSLIOP_Endpoint *, endpt);
if (endpoint == 0)
return 0;
if (this->ssl_component_.port != 0
&& endpoint->ssl_component_.port != 0
&& this->ssl_component_.port != endpoint->ssl_component_.port)
return 0;
return
this->iiop_endpoint_->is_equivalent (endpoint->iiop_endpoint_);
}
TAO_Endpoint *
TAO_SSLIOP_Endpoint::duplicate (void)
{
TAO_SSLIOP_Endpoint *endpoint = 0;
ACE_NEW_RETURN (endpoint,
TAO_SSLIOP_Endpoint (&this->ssl_component_,
this->iiop_endpoint_),
0);
return endpoint;
}
CORBA::ULong
TAO_SSLIOP_Endpoint::hash (void)
{
return this->iiop_endpoint_->hash () + this->ssl_component_.port;
}
|
