Tests: Add a basic test for the Tls* API.

	* tests/giomm_tls_client/main.cc:  The test basically works though it
	would be good to test more thoroughly the TlsDatabase API.

1 files changed, 144 insertions, 0 deletions

diff --git a/tests/giomm_tls_client/main.cc b/tests/giomm_tls_client/main.cc
new file mode 100644
index 00000000..dc69a4a2
--- /dev/null
+++ b/tests/giomm_tls_client/main.cc
@@ -0,0 +1,144 @@
+#include <giomm.h>
+#include <iostream>
+#include <cstdlib>
+
+bool on_accept_certificate(const Glib::RefPtr<const Gio::TlsCertificate>& cert, Gio::TlsCertificateFlags)
+{
+  std::cout << "Handshake is ocurring." << std::endl
+    << "The server is requesting that its certificate be accepted." <<
+    std::endl;
+
+  std::cout << "Outputing certificate data:" << std::endl <<
+    cert->property_certificate_pem().get_value();
+
+  Glib::RefPtr<const Gio::TlsCertificate> issuer = cert->get_issuer();
+
+  std::cout << "Outputing the issuer's certificate data:" << std::endl <<
+    issuer->property_certificate_pem().get_value();
+
+  std::cout << "Accepting the certificate." << std::endl;
+  return true;
+}
+
+int main(int, char**)
+{
+  Gio::init();
+
+  const Glib::ustring test_host = "www.google.com";
+
+  std::vector< Glib::RefPtr<Gio::InetAddress> > inet_addresses =
+    Gio::Resolver::get_default()->lookup_by_name(test_host);
+
+  if(inet_addresses.size() == 0)
+  {
+    std::cout << "Could not resolve test host '" << test_host << "'." <<
+      std::endl;
+    return EXIT_FAILURE;
+  }
+
+  std::cout << "Successfully resolved address of test host '" << test_host <<
+    "'." << std::endl;
+
+  Glib::RefPtr<Gio::InetAddress> first_inet_address = inet_addresses[0];
+
+  std::cout << "First address of test host is " <<
+    first_inet_address->to_string() << "." << std::endl;
+
+  Glib::RefPtr<Gio::Socket> socket =
+    Gio::Socket::create(Gio::SOCKET_FAMILY_IPV4, Gio::SOCKET_TYPE_STREAM,
+    Gio::SOCKET_PROTOCOL_TCP);
+
+  Glib::RefPtr<Gio::InetSocketAddress> address =
+    Gio::InetSocketAddress::create(first_inet_address, 443);
+
+  socket->connect(address);
+
+  if(!socket->is_connected())
+  {
+    std::cout << "Could not connect socket to " <<
+      address->get_address()->to_string() << ":" << address->get_port() <<
+      "." << std::endl;
+  }
+
+  Glib::RefPtr<Gio::TcpConnection> conn = Glib::RefPtr<Gio::TcpConnection>::cast_dynamic(Gio::SocketConnection::create(socket));
+
+  if(!conn || !conn->is_connected())
+  {
+    std::cout << "Could not establish connection to " <<
+      address->get_address()->to_string() << ":" << address->get_port() <<
+      "." << std::endl;
+    socket->close();
+    return EXIT_FAILURE;
+  }
+
+  std::cout << "Successfully established connection to " <<
+    address->get_address()->to_string() << ":" << address->get_port() <<
+    "." << std::endl;
+
+  Glib::RefPtr<Gio::TlsClientConnection> tls_connection;
+
+  try
+  {
+    Glib::RefPtr<Gio::TlsClientConnection> tls_connection =
+      Gio::TlsClientConnection::create(conn, address);
+
+    tls_connection->signal_accept_certificate().connect(
+      sigc::ptr_fun(&on_accept_certificate));
+
+    tls_connection->handshake(); 
+
+    Glib::RefPtr<Gio::TlsCertificate> certificate =
+      tls_connection->get_peer_certificate();
+
+    if(!certificate)
+    {
+      std::cout << "Could not get the peer's certificate." << std::endl;
+    }
+
+    std::cout << "Successfully got the peer's certificate." << std::endl;
+    std::cout << "Getting the certificate's issuer." << std::endl;
+
+    Glib::RefPtr<Gio::TlsCertificate> issuer = certificate->get_issuer();
+
+    if(!issuer)
+    {
+      std::cout << "Could not get the peer's certificate." << std::endl;
+    }
+
+    std::cout << "Successfully got the peer's certificate issuer." << std::endl;
+
+    std::cout << "Attempting to use the connection's database." << std::endl;
+
+    Glib::RefPtr<Gio::TlsDatabase> database = tls_connection->get_database();
+
+    Glib::RefPtr<const Gio::SocketConnectable> connectable = address;
+
+    database->verify_chain(certificate, G_TLS_DATABASE_PURPOSE_AUTHENTICATE_SERVER, connectable);
+
+    database->verify_chain(certificate, G_TLS_DATABASE_PURPOSE_AUTHENTICATE_SERVER, Glib::RefPtr<const Gio::SocketConnectable>::cast_static(address));
+
+    std::cout << "Looking up the main certificate's issuer in the "
+      "database." << std::endl;
+
+    Glib::RefPtr<Gio::TlsCertificate> db_certificate = database->lookup_certificate_issuer(certificate);
+
+    if(!db_certificate)
+    {
+      std::cout << "No certificate found in the database." << std::endl;
+    }
+    else
+    {
+      std::cout << "Successfully found the issuer's certificate in the "
+        "database." << std::endl;
+    }
+  }
+  catch (const Gio::TlsError& error)
+  {
+    std::cout << "Exception caught: " << error.what() << "." << std::endl;
+    return EXIT_FAILURE;
+  }
+
+  conn->close();
+
+  return EXIT_SUCCESS;
+}