1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
|
// Copyright (C) 2021 Internet Systems Consortium, Inc. ("ISC")
//
// This Source Code Form is subject to the terms of the Mozilla Public
// License, v. 2.0. If a copy of the MPL was not distributed with this
// file, You can obtain one at http://mozilla.org/MPL/2.0/.
#include <config.h>
#include <asiolink/asio_wrapper.h>
#include <asiolink/testutils/test_tls.h>
namespace isc {
namespace asiolink {
namespace test {
/// @brief Configure the TLS server.
void configServer(TlsContextPtr& ctx) {
std::string ca(std::string(TEST_CA_DIR) + "/kea-ca.crt");
std::string cert(std::string(TEST_CA_DIR) + "/kea-server.crt");
std::string key(std::string(TEST_CA_DIR) + "/kea-server.key");
TlsContext::configure(ctx, TlsRole::SERVER, ca, cert, key, true);
}
/// @brief Configure the TLS server trusting the self-signed client.
void configTrustedSelf(TlsContextPtr& ctx) {
std::string ca(std::string(TEST_CA_DIR) + "/kea-self.crt");
std::string cert(std::string(TEST_CA_DIR) + "/kea-server.crt");
std::string key(std::string(TEST_CA_DIR) + "/kea-server.key");
TlsContext::configure(ctx, TlsRole::SERVER, ca, cert, key, true);
}
/// @brief Configure the TLS server with no client certificate request.
void configServerNoReq(TlsContextPtr& ctx) {
std::string ca(std::string(TEST_CA_DIR) + "/kea-ca.crt");
std::string cert(std::string(TEST_CA_DIR) + "/kea-server.crt");
std::string key(std::string(TEST_CA_DIR) + "/kea-server.key");
TlsContext::configure(ctx, TlsRole::SERVER, ca, cert, key, false);
}
/// @brief Configure the TLS server with no subject alternative name.
void configServerRaw(TlsContextPtr& ctx) {
std::string ca(std::string(TEST_CA_DIR) + "/kea-ca.crt");
std::string cert(std::string(TEST_CA_DIR) + "/kea-server-raw.crt");
std::string key(std::string(TEST_CA_DIR) + "/kea-server.key");
TlsContext::configure(ctx, TlsRole::SERVER, ca, cert, key, true);
}
/// @brief Configure the TLS client.
void configClient(TlsContextPtr& ctx) {
std::string ca(std::string(TEST_CA_DIR) + "/kea-ca.crt");
std::string cert(std::string(TEST_CA_DIR) + "/kea-client.crt");
std::string key(std::string(TEST_CA_DIR) + "/kea-client.key");
TlsContext::configure(ctx, TlsRole::CLIENT, ca, cert, key, true);
}
/// @brief Configure another TLS client.
void configOther(TlsContextPtr& ctx) {
std::string ca(std::string(TEST_CA_DIR) + "/kea-ca.crt");
std::string cert(std::string(TEST_CA_DIR) + "/kea-other.crt");
std::string key(std::string(TEST_CA_DIR) + "/kea-other.key");
TlsContext::configure(ctx, TlsRole::CLIENT, ca, cert, key, true);
}
/// @brief Configure self-signed TLS client.
void configSelf(TlsContextPtr& ctx) {
std::string ca(std::string(TEST_CA_DIR) + "/kea-ca.crt");
std::string cert(std::string(TEST_CA_DIR) + "/kea-self.crt");
std::string key(std::string(TEST_CA_DIR) + "/kea-self.key");
TlsContext::configure(ctx, TlsRole::CLIENT, ca, cert, key, true);
}
} // end of namespace isc::asiolink::test
} // end of namespace isc::asiolink
} // end of namespace isc
|
