blob: 36cb3a2b50f4af0d19e69c1e784119363c6b1ec2 [file] [log] [blame]
// Copyright (c) 2013, the Dart project authors. Please see the AUTHORS file
// for details. All rights reserved. Use of this source code is governed by a
// BSD-style license that can be found in the LICENSE file.
//
// OtherResources=certificates/server_chain.pem
// OtherResources=certificates/server_key.pem
// OtherResources=secure_socket_renegotiate_client.dart
// @dart = 2.9
// This test verifies that client certificates work, if the client and server
// are in separate processes, and that connection renegotiation works, and
// can request a client certificate to be sent.
import "dart:async";
import "dart:convert";
import "dart:io";
import "package:expect/expect.dart";
import "package:path/path.dart";
const HOST_NAME = "localhost";
String localFile(path) => Platform.script.resolve(path).toFilePath();
SecurityContext serverContext = new SecurityContext()
..useCertificateChain(localFile('certificates/server_chain.pem'))
..usePrivateKey(localFile('certificates/server_key.pem'),
password: 'dartdart');
Future<SecureServerSocket> runServer() {
return SecureServerSocket.bind(HOST_NAME, 0, serverContext)
.then((SecureServerSocket server) {
server.listen((SecureSocket socket) {
Expect.isNull(socket.peerCertificate);
StreamIterator<String> input = new StreamIterator(
utf8.decoder.bind(socket).transform(new LineSplitter()));
input.moveNext().then((success) {
Expect.isTrue(success);
Expect.equals('first', input.current);
socket.writeln('first reply');
return input.moveNext();
}).then((success) {
Expect.isTrue(success);
Expect.equals('renegotiated', input.current);
Expect.isNull(socket.peerCertificate);
socket.renegotiate(
requestClientCertificate: true,
requireClientCertificate: true,
useSessionCache: false);
socket.writeln('server renegotiated');
return input.moveNext();
}).then((success) {
Expect.isTrue(success);
Expect.equals('second', input.current);
X509Certificate certificate = socket.peerCertificate;
Expect.isNotNull(certificate);
Expect.equals("CN=localhost", certificate.subject);
Expect.equals("CN=myauthority", certificate.issuer);
server.close();
socket.close();
});
});
return server;
});
}
void main() {
runServer().then((SecureServerSocket server) {
var clientScript = Platform.script
.resolve('secure_socket_renegotiate_client.dart')
.toFilePath();
Process.run(
Platform.executable,
[]
..addAll(Platform.executableArguments)
..addAll([clientScript, server.port.toString()]))
.then((ProcessResult result) {
if (result.exitCode != 0) {
print("Client failed, stdout:");
print(result.stdout);
print(" stderr:");
print(result.stderr);
Expect.fail('Client subprocess exit code: ${result.exitCode}');
}
});
});
}