TAO::SSLIOP::Connector Class Reference

SSLIOP-specific Connector bridge for pluggable protocols. More...

#include <SSLIOP_Connector.h>

Inheritance diagram for TAO::SSLIOP::Connector:

[legend]Collaboration diagram for TAO::SSLIOP::Connector:

[legend]List of all members.

Public Types
typedef TAO_Connect_Concurrency_Strategy< Connection_Handler >	CONNECT_CONCURRENCY_STRATEGY
typedef TAO_Connect_Creation_Strategy< Connection_Handler >	CONNECT_CREATION_STRATEGY
typedef ACE_Connect_Strategy< Connection_Handler, ACE_SSL_SOCK_CONNECTOR >	CONNECT_STRATEGY
typedef ACE_Strategy_Connector< Connection_Handler, ACE_SSL_SOCK_CONNECTOR >	BASE_CONNECTOR
Public Member Functions
	Connector (::Security::QOP qop)
	Constructor.
The TAO_Connector methods
Please check the documentation in Transport_Connector.h
virtual int	open (TAO_ORB_Core *orb_core)
virtual int	close (void)
virtual TAO_Transport *	connect (TAO::Profile_Transport_Resolver *r, TAO_Transport_Descriptor_Interface *desc, ACE_Time_Value *timeout)
virtual TAO_Profile *	create_profile (TAO_InputCDR &cdr)
virtual int	check_prefix (const char *endpoint)
virtual TAO_Profile *	corbaloc_scan (const char *ior, size_t &len)
Protected Member Functions
TAO_Profile *	make_secure_profile (void)
	SSL-specific profile.
TAO_Transport *	iiop_connect (TAO_SSLIOP_Endpoint *ssliop_endpoint, TAO::Profile_Transport_Resolver *r, ACE_Time_Value *timeout)
	IIOP-specific connection establishment.
TAO_Transport *	ssliop_connect (TAO_SSLIOP_Endpoint *ssliop_endpoint,::Security::QOP qop, const::Security::EstablishTrust &trust, TAO::Profile_Transport_Resolver *r, TAO_Transport_Descriptor_Interface *desc, ACE_Time_Value *timeout)
	SSLIOP-specific connection establishment.
TAO::SSLIOP::OwnCredentials *	retrieve_credentials (TAO_Stub *stub, SSL *ssl)
@c TAO_Connector Methods
Methods required by the TAO_Connector base class. See also: TAO_Connector
virtual TAO_Profile *	make_profile (void)
virtual int	cancel_svc_handler (TAO_Connection_Handler *svc_handler)
Private Attributes
::Security::QOP	qop_
CONNECT_STRATEGY	connect_strategy_
	Our connect strategy.
BASE_CONNECTOR	base_connector_
	The connector initiating connection requests for IIOP.

---

Detailed Description

SSLIOP-specific Connector bridge for pluggable protocols.

Concrete instance of the TAO_Connector class. Responsible for establishing a connection with a server and is called from the Connector_Registry.

Definition at line 55 of file SSLIOP_Connector.h.

---

Member Typedef Documentation

typedef ACE_Strategy_Connector<Connection_Handler, ACE_SSL_SOCK_CONNECTOR> TAO::SSLIOP::Connector::BASE_CONNECTOR

Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 134 of file SSLIOP_Connector.h.

typedef TAO_Connect_Concurrency_Strategy<Connection_Handler> TAO::SSLIOP::Connector::CONNECT_CONCURRENCY_STRATEGY

Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 123 of file SSLIOP_Connector.h.

typedef TAO_Connect_Creation_Strategy<Connection_Handler> TAO::SSLIOP::Connector::CONNECT_CREATION_STRATEGY

Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 126 of file SSLIOP_Connector.h.

typedef ACE_Connect_Strategy<Connection_Handler, ACE_SSL_SOCK_CONNECTOR> TAO::SSLIOP::Connector::CONNECT_STRATEGY

Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 130 of file SSLIOP_Connector.h.

---

Constructor & Destructor Documentation

TAO_BEGIN_VERSIONED_NAMESPACE_DECL TAO::SSLIOP::Connector::Connector (  ::Security::QOP  qop  )

Constructor. Definition at line 28 of file SSLIOP_Connector.cpp. : TAO::IIOP_SSL_Connector (), qop_ (qop), connect_strategy_ (), base_connector_ () { }

---

Member Function Documentation

int TAO::SSLIOP::Connector::cancel_svc_handler (  TAO_Connection_Handler *  svc_handler  )  [protected, virtual]

Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 828 of file SSLIOP_Connector.cpp. { TAO::SSLIOP::Connection_Handler* handler= dynamic_cast<TAO::SSLIOP::Connection_Handler*> (svc_handler); if (handler) // Cancel from the connector return this->base_connector_.cancel (handler); return -1; }

int TAO::SSLIOP::Connector::check_prefix (  const char *  endpoint  )  [virtual]

Reimplemented from TAO_IIOP_Connector. Definition at line 317 of file SSLIOP_Connector.cpp. References ACE_OS::strchr(), ACE_OS::strlen(), and ACE_OS::strncmp(). Referenced by corbaloc_scan(). { // Check for a valid string if (!endpoint || !*endpoint) return -1; // Failure const char *protocol[] = { "ssliop", "sslioploc" }; size_t first_slot = ACE_OS::strchr (endpoint, ':') - endpoint; size_t len0 = ACE_OS::strlen (protocol[0]); size_t len1 = ACE_OS::strlen (protocol[1]); // Check for the proper prefix in the IOR. If the proper prefix // isn't in the IOR then it is not an IOR we can use. if (first_slot == len0 && ACE_OS::strncmp (endpoint, protocol[0], len0) == 0) return 0; if (first_slot == len1 && ACE_OS::strncmp (endpoint, protocol[1], len1) == 0) return 0; // Failure: not an SSLIOP IOR // DO NOT throw an exception here. return -1; }

int TAO::SSLIOP::Connector::close (  void   )  [virtual]

Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 75 of file SSLIOP_Connector.cpp. References TAO::IIOP_SSL_Connector::close(). { (void) this->TAO::IIOP_SSL_Connector::close (); delete this->base_connector_.creation_strategy (); delete this->base_connector_.concurrency_strategy (); return this->base_connector_.close (); }

TAO_Transport * TAO::SSLIOP::Connector::connect (  TAO::Profile_Transport_Resolver *  r, TAO_Transport_Descriptor_Interface *  desc, ACE_Time_Value *  timeout )  [virtual]

Reimplemented from TAO_Connector. Definition at line 85 of file SSLIOP_Connector.cpp. References CORBA::Policy::_narrow(), ACE_DEBUG, ACE_ERROR, ACE_TEXT(), TAO_Transport_Descriptor_Interface::endpoint(), TAO_Stub::get_policy(), iiop_connect(), CORBA::is_nil(), LM_DEBUG, LM_ERROR, TAO_SSLIOP_Endpoint::ssl_component(), ssliop_connect(), TAO::Profile_Transport_Resolver::stub(), TAO_Endpoint::tag(), and TAO_debug_level. { if (TAO_debug_level > 0) ACE_DEBUG ((LM_DEBUG, ACE_TEXT ("TAO_SSLIOP (%P|%t) - Connector::connect, ") ACE_TEXT ("looking for SSLIOP connection.\n"))); TAO_Endpoint *endpoint = desc->endpoint (); if (endpoint->tag () != IOP::TAG_INTERNET_IOP) return 0; TAO_SSLIOP_Endpoint *ssl_endpoint = dynamic_cast<TAO_SSLIOP_Endpoint *> (endpoint); if (ssl_endpoint == 0) return 0; // @@ TODO: The EstablishTrust policy should be evaluated once per // connection, not once per invocation. This should // improve performance. // // Check if the user overrode the default establishment of trust // policy for the current object. CORBA::Policy_var policy = resolver->stub ()->get_policy (::Security::SecEstablishTrustPolicy); SecurityLevel2::EstablishTrustPolicy_var trust_policy = SecurityLevel2::EstablishTrustPolicy::_narrow (policy.in ()); // We use a pointer and temporary to make it obvious to determine // if no establishment of trust policy was set. Specifically, if // the "trust" pointer below is zero, then the SSLIOP pluggable // protocol default value will be used. ::Security::EstablishTrust trust = { 0 , 0 }; if (!CORBA::is_nil (trust_policy.in ())) { trust = trust_policy->trust (); } // Flag that states whether any form of establishment of trust // should occur. CORBA::Boolean const establish_trust = trust.trust_in_target || trust.trust_in_client; // @@ Should this be in a "policy validator?" // // If the SSL port is zero, then no SSLIOP tagged component was // available in the IOR, meaning that there is no way to establish // trust. Throw an exception. if (ssl_endpoint->ssl_component ().port == 0 && establish_trust) { if (TAO_debug_level > 0) { ACE_ERROR ((LM_ERROR, ACE_TEXT ("TAO_SSLIOP (%P|%t) ERROR: ") ACE_TEXT ("Cannot establish trust since ") ACE_TEXT ("no SSLIOP tagged component was ") ACE_TEXT ("found in the IOR.\n"))); } throw CORBA::INV_POLICY (); } // Check if the user overrode the default Quality-of-Protection for // the current object. policy = resolver->stub ()->get_policy (::Security::SecQOPPolicy); SecurityLevel2::QOPPolicy_var qop_policy = SecurityLevel2::QOPPolicy::_narrow (policy.in ()); // Temporary variable used to avoid overwriting the default value // set when the ORB was initialized. ::Security::QOP qop = this->qop_; if (!CORBA::is_nil (qop_policy.in ())) { qop = qop_policy->qop (); } // If the SSL port is zero, then no SSLIOP tagged component was // available in the IOR, meaning that there is no way to make a // secure invocation. Throw an exception. if (qop != ::Security::SecQOPNoProtection && ssl_endpoint->ssl_component ().port == 0) { if (TAO_debug_level > 0) { ACE_ERROR ((LM_ERROR, ACE_TEXT ("TAO_SSLIOP (%P|%t) ERROR: ") ACE_TEXT ("Cannot make secure invocation since ") ACE_TEXT ("no SSLIOP tagged component was ") ACE_TEXT ("found in the IOR.\n"))); } throw CORBA::INV_POLICY (); } if ((!establish_trust && qop == ::Security::SecQOPNoProtection) || ssl_endpoint->ssl_component ().port == 0) { return this->iiop_connect (ssl_endpoint, resolver, timeout); } return this->ssliop_connect (ssl_endpoint, qop, trust, resolver, desc, timeout); }

TAO_Profile * TAO::SSLIOP::Connector::corbaloc_scan (  const char *  ior, size_t &  len )  [virtual]

Reimplemented from TAO_Connector. Definition at line 264 of file SSLIOP_Connector.cpp. References ACE_DEBUG, ACE_TEXT, TAO_IIOP_Connector::check_prefix(), check_prefix(), LM_DEBUG, make_profile(), make_secure_profile(), ACE_OS::strchr(), ACE_OS::strlen(), and TAO_debug_level. { int ssl_only = 0; if (this->check_prefix (endpoint) == 0) { ssl_only = 1; } else { if (this->TAO_IIOP_Connector::check_prefix (endpoint) != 0) return 0; } // Determine the (first in a list of possibly > 1) endpoint address const char *comma_pos = ACE_OS::strchr (endpoint,','); const char *slash_pos = ACE_OS::strchr (endpoint,'/'); if (comma_pos == 0 && slash_pos == 0) { if (TAO_debug_level) { ACE_DEBUG ((LM_DEBUG, ACE_TEXT("(%P|%t) SSLIOP_Connector::corbaloc_scan warning: ") ACE_TEXT("supplied string contains no comma or slash: %s\n"), endpoint)); } len = ACE_OS::strlen (endpoint); } else if (slash_pos != 0 || comma_pos > slash_pos) { // The endpoint address does not extend past the first '/' or ',' len = slash_pos - endpoint; } else { len = comma_pos - endpoint; } //Create the corresponding profile TAO_Profile *ptmp = 0; if (ssl_only) { ptmp = this->make_secure_profile (); } else { ptmp = this->make_profile (); } return ptmp; }

TAO_Profile * TAO::SSLIOP::Connector::create_profile (  TAO_InputCDR &  cdr  )  [virtual]

Reimplemented from TAO_IIOP_Connector. Definition at line 202 of file SSLIOP_Connector.cpp. References TAO_Profile::_decr_refcnt(), ACE_NEW_RETURN, and TAO_Profile::decode(). { TAO_Profile *pfile = 0; ACE_NEW_RETURN (pfile, TAO_SSLIOP_Profile (this->orb_core ()), 0); if (pfile->decode (cdr) == -1) { pfile->_decr_refcnt (); pfile = 0; } return pfile; }

TAO_Transport * TAO::SSLIOP::Connector::iiop_connect (  TAO_SSLIOP_Endpoint *  ssliop_endpoint, TAO::Profile_Transport_Resolver *  r, ACE_Time_Value *  timeout )  [protected]

IIOP-specific connection establishment. Note: The IIOP endpoint is extracted from the SSLIOP endpoint. Definition at line 344 of file SSLIOP_Connector.cpp. References ACE_BIT_DISABLED, TAO_Connector::connect(), EPERM, TAO_SSLIOP_Endpoint::iiop_endpoint(), and TAO_SSLIOP_Endpoint::ssl_component(). Referenced by connect(). { #if 0 const ::SSLIOP::SSL &ssl_component = ssl_endpoint->ssl_component (); // Only allow connection to the insecure IIOP port if the endpoint // explicitly allows it, i.e. if the Security::NoProtection security // association bit is set in the SSLIOP::SSL::target_supports field. // The server performs the same permission check, so this check is // an optimization since a connection will not be established // needlessly, i.e. rejected due to lack of permission. // // Note that it is still possible for the standard non-SSLIOP aware // IIOP pluggable protocol to attempt to connect to the insecure // port. In that case, the server will have to prevent the // connection, and subsequently the request, from completing. if (ACE_BIT_DISABLED (ssl_component.target_supports, ::Security::NoProtection)) throw CORBA::NO_PERMISSION ( CORBA::SystemException::_tao_minor_code ( TAO::VMCID, EPERM), CORBA::COMPLETED_NO); #endif TAO_IIOP_Endpoint *iiop_endpoint = ssl_endpoint->iiop_endpoint (); // An IIOP-only transport descriptor must be used instead of the one // passed to this method since the latter is used for SSLIOP // connections. Doing so prevents an IIOP-only cached transport // from being associated with an SSLIOP connection. TAO_Base_Transport_Property iiop_desc (iiop_endpoint); // Note that the IIOP-only transport descriptor is used! return this->TAO::IIOP_SSL_Connector::connect (resolver, &iiop_desc, timeout); }

TAO_Profile * TAO::SSLIOP::Connector::make_profile (  void   )  [protected, virtual]

Reimplemented from TAO_IIOP_Connector. Definition at line 219 of file SSLIOP_Connector.cpp. References ACE_NEW_THROW_EX. Referenced by corbaloc_scan(). { // The endpoint should be of the form: // N.n@host:port/object_key // or: // host:port/object_key TAO_Profile *profile = 0; ACE_NEW_THROW_EX (profile, TAO_SSLIOP_Profile (this->orb_core (), 0), // SSL component CORBA::NO_MEMORY ( CORBA::SystemException::_tao_minor_code ( TAO::VMCID, ENOMEM), CORBA::COMPLETED_NO)); return profile; }

TAO_Profile * TAO::SSLIOP::Connector::make_secure_profile (  void   )  [protected]

SSL-specific profile. Definition at line 241 of file SSLIOP_Connector.cpp. References ACE_NEW_THROW_EX. Referenced by corbaloc_scan(). { // The endpoint should be of the form: // N.n@host:port/object_key // or: // host:port/object_key TAO_Profile *profile = 0; ACE_NEW_THROW_EX (profile, TAO_SSLIOP_Profile (this->orb_core (), 1), // SSL component CORBA::NO_MEMORY ( CORBA::SystemException::_tao_minor_code ( TAO::VMCID, ENOMEM), CORBA::COMPLETED_NO)); return profile; }

int TAO::SSLIOP::Connector::open (  TAO_ORB_Core *  orb_core  )  [virtual]

Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 37 of file SSLIOP_Connector.cpp. References ACE_NEW_RETURN, TAO::IIOP_SSL_Connector::open(), TAO_Connector::orb_core(), TAO_ORB_Core::reactor(), and TAO_ORB_Core::thr_mgr(). { // Since the ACE_Strategy_Connector (and ACE_Connector) cannot // handle non-blocking connections with protocols that have more // than one handshake, such as SSL, force blocking connections for // SSLIOP. This deficiency will be addressed soon. ACE_NEW_RETURN (this->active_connect_strategy_, TAO_Blocked_Connect_Strategy (orb_core), -1); if (this->TAO::IIOP_SSL_Connector::open (orb_core) == -1) return -1; // Our connect creation strategy CONNECT_CREATION_STRATEGY *connect_creation_strategy = 0; ACE_NEW_RETURN (connect_creation_strategy, CONNECT_CREATION_STRATEGY (orb_core->thr_mgr (), orb_core), -1); // Our activation strategy CONNECT_CONCURRENCY_STRATEGY *concurrency_strategy = 0; ACE_NEW_RETURN (concurrency_strategy, CONNECT_CONCURRENCY_STRATEGY (orb_core), -1); ACE_Reactor *r = this->orb_core ()->reactor (); return this->base_connector_.open (r, connect_creation_strategy, &this->connect_strategy_, concurrency_strategy); }

TAO::SSLIOP::OwnCredentials * TAO::SSLIOP::Connector::retrieve_credentials (  TAO_Stub *  stub, SSL *  ssl )  [protected]

Retrieve SSLIOP credentials from the policy overrides list and set up the underlying SSL connection to use the X.509 certificates stored within them. Todo: Check if the CredentialsCurator contains a default set of SSLIOP OwnCredentials. Definition at line 759 of file SSLIOP_Connector.cpp. References TAO::SSLIOP::OwnCredentials::_narrow(), TAO::SSLIOP::OwnCredentials::_nil(), TAO_Pseudo_Var_T< T >::_retn(), ACE_NEW_THROW_EX, TAO::SSLIOP::EVP_PKEY_var, TAO_Stub::get_policy(), TAO::SSLIOP::OpenSSL_st_var< T >::in(), TAO_Pseudo_Var_T< T >::in(), CORBA::is_nil(), TAO_Pseudo_Var_T< T >::out(), TAO::SSLIOP::OwnCredentials_ptr, TAO::SSLIOP::OwnCredentials_var, and TAO::SSLIOP::X509_var. Referenced by ssliop_connect(). { // Check if the user overrode the default invocation credentials. CORBA::Policy_var policy = stub->get_policy (::SecurityLevel3::ContextEstablishmentPolicyType); SecurityLevel3::ContextEstablishmentPolicy_var creds_policy = SecurityLevel3::ContextEstablishmentPolicy::_narrow ( policy.in ()); TAO::SSLIOP::OwnCredentials_var ssliop_credentials; // Set the Credentials (X.509 certificates and corresponding private // keys) to be used for this invocation. if (!CORBA::is_nil (creds_policy.in ())) { SecurityLevel3::OwnCredentialsList_var creds_list = creds_policy->creds_list (); if (creds_list->length () > 0) { // Assume that we've got an SSLIOP credential. SecurityLevel3::Credentials_ptr credentials = creds_list[0u]; ssliop_credentials = TAO::SSLIOP::OwnCredentials::_narrow (credentials); if (!CORBA::is_nil (ssliop_credentials.in ())) { TAO::SSLIOP::X509_var x509 = ssliop_credentials->x509 (); if (::SSL_use_certificate (ssl, x509.in ()) != 1) return TAO::SSLIOP::OwnCredentials::_nil (); TAO::SSLIOP::EVP_PKEY_var evp = ssliop_credentials->evp (); if (evp.in () != 0 && ::SSL_use_PrivateKey (ssl, evp.in ()) != 1) { // Invalidate the certificate we just set. (void) ::SSL_use_certificate (ssl, 0); return TAO::SSLIOP::OwnCredentials::_nil (); } } } } else { // Use the default certificate and private key, i.e. the one set // in the SSL_CTX that was used when creating the SSL data // structure. /** * @todo Check if the CredentialsCurator contains a default set * of SSLIOP OwnCredentials. */ TAO::SSLIOP::OwnCredentials_ptr & c = ssliop_credentials.out (); ACE_NEW_THROW_EX (c, TAO::SSLIOP::OwnCredentials ( ::SSL_get_certificate (ssl), ::SSL_get_privatekey (ssl)), CORBA::NO_MEMORY ()); } return ssliop_credentials._retn (); }

TAO_Transport * TAO::SSLIOP::Connector::ssliop_connect (  TAO_SSLIOP_Endpoint *  ssliop_endpoint, ::Security::QOP  qop, const::Security::EstablishTrust &  trust, TAO::Profile_Transport_Resolver *  r, TAO_Transport_Descriptor_Interface *  desc, ACE_Time_Value *  timeout )  [protected]

SSLIOP-specific connection establishment. Definition at line 386 of file SSLIOP_Connector.cpp. References ACE_BIT_DISABLED, ACE_BIT_ENABLED, ACE_DEBUG, ACE_ERROR, ACE_TEXT(), TAO_SSLIOP_Endpoint::addr_to_string(), AF_INET, TAO_Connection_Handler::cancel_pending_connection(), TAO::SSLIOP::Connection_Handler::close(), TAO_Transport::close_connection(), TAO_Connection_Handler::connection_pending(), TAO_SSLIOP_Endpoint::credentials_set(), EPERM, TAO_LF_CH_Event::error_detected(), EWOULDBLOCK, TAO::Transport_Cache_Manager::find_transport(), ACE_INET_Addr::get_port_number(), ACE_Addr::get_type(), TAO_Transport::id(), TAO_Pseudo_Var_T< T >::in(), TAO_Transport::is_connected(), TAO_LF_Event::keep_waiting(), TAO_ORB_Core::lane_resources(), LM_DEBUG, LM_ERROR, MAXHOSTNAMELEN, TAO_SSLIOP_Endpoint::object_addr(), TAO_Connector::orb_core(), TAO::SSLIOP::OwnCredentials_var, ACE_Svc_Handler<, >::peer(), TAO::Transport_Cache_Manager::purge(), TAO_Transport::purge_entry(), TAO_Wait_Strategy::register_handler(), ACE_Auto_Basic_Ptr< X >::release(), ACE_Event_Handler::remove_reference(), retrieve_credentials(), TAO_SSLIOP_Endpoint::set_sec_attrs(), TAO_SSLIOP_Endpoint::ssl_component(), TAO::Profile_Transport_Resolver::stub(), TAO_Connect_Strategy::synch_options(), TAO_debug_level, TAO_Connection_Handler::transport(), TAO_Thread_Lane_Resources::transport_cache(), Security::EstablishTrust::trust_in_client, Security::EstablishTrust::trust_in_target, TAO_Connector::wait_for_connection_completion(), and TAO_Transport::wait_strategy(). Referenced by connect(). { const ::SSLIOP::SSL &ssl_component = ssl_endpoint->ssl_component (); // @@ The following check for "required insecurity" seems odd, but // I haven't seen anything in the Security spec that says this // policy isn't possible. // -Ossama // If the endpoint requires an insecure connection, i.e. the // Security::NoProtection security association bit in the // SSLIOP::SSL::target_requires field is enabled, then prevent an // SSL connection from occuring. if (ACE_BIT_ENABLED (ssl_component.target_requires, ::Security::NoProtection)) throw CORBA::NO_PERMISSION ( CORBA::SystemException::_tao_minor_code ( TAO::VMCID, EPERM), CORBA::COMPLETED_NO); // If the invocation wants integrity without confidentiality but the // server does not support "no protection," then it won't be // possible to provide integrity. In order to support integrity // without confidentiality, encryption must be disabled but secure // hashes must remain enabled. This is achieved using the "eNULL" // cipher. However, the "eNULL" cipher is only enabled on the // server side if "no protection" is enabled. if (ACE_BIT_DISABLED (ssl_component.target_supports, ::Security::NoProtection) && qop == ::Security::SecQOPIntegrity) throw CORBA::INV_POLICY (); const ACE_INET_Addr &remote_address = ssl_endpoint->object_addr (); // Verify that the remote ACE_INET_Addr was initialized // properly. Failure can occur if hostname lookup failed when // initializing the remote ACE_INET_Addr. if (remote_address.get_type () != AF_INET #if defined (ACE_HAS_IPV6) && remote_address.get_type () != AF_INET6 #endif /* ACE_HAS_IPV6 */ ) { if (TAO_debug_level > 0) { ACE_DEBUG ((LM_DEBUG, ACE_TEXT ("TAO (%P|%t) SSLIOP connection failed.\n") ACE_TEXT ("TAO (%P|%t) This is most likely ") ACE_TEXT ("due to a hostname lookup ") ACE_TEXT ("failure.\n"))); } return 0; } int result = 0; TAO::SSLIOP::Connection_Handler *svc_handler = 0; TAO_Transport *transport = 0; // Before we can check the cache to find an existing connection, we // need to make sure the ssl_endpoint is fully initialized with the // local security information. This endpoint initalized by the // profile does not (and cannot) contain the desired QOP, trust, or // credential information which is necesary to uniquely identify // this connection. if (!ssl_endpoint->credentials_set ()) { if (TAO_debug_level > 2) ACE_DEBUG ((LM_ERROR, ACE_TEXT ("TAO (%P|%t) Initializing SSLIOP_Endpoint \n") )); if (this->base_connector_.creation_strategy ()->make_svc_handler ( svc_handler) != 0) { if (TAO_debug_level > 0) ACE_DEBUG ((LM_ERROR, ACE_TEXT ("TAO (%P|%t) Unable to create SSLIOP ") ACE_TEXT ("service handler.\n"))); return 0; } ACE_Auto_Basic_Ptr<TAO::SSLIOP::Connection_Handler> safe_handler (svc_handler); TAO::SSLIOP::OwnCredentials_var credentials = this->retrieve_credentials (resolver->stub (), svc_handler->peer ().ssl ()); svc_handler = safe_handler.release (); ssl_endpoint->set_sec_attrs (qop, trust, credentials.in()); } // Check the Cache first for connections if (this->orb_core ()->lane_resources ().transport_cache ().find_transport ( desc, transport) == 0) { if (TAO_debug_level > 2) ACE_DEBUG ((LM_DEBUG, ACE_TEXT ("TAO (%P|%t) - SSLIOP_Connector::ssliop_connect, ") ACE_TEXT ("got existing transport[%d]\n"), transport->id ())); // When the transport is not connected wait for completion if (!transport->is_connected()) { if (!this->wait_for_connection_completion (resolver, transport, max_wait_time)) { ACE_ERROR ((LM_ERROR, ACE_TEXT ("TAO (%P|%t) - SSLIOP_Connector::ssliop_connect,") ACE_TEXT ("wait for completion failed\n"))); } } } else { if (TAO_debug_level > 4) ACE_DEBUG ((LM_DEBUG, ACE_TEXT ("TAO (%P|%t) - SSLIOP_Connector::ssliop_connect, ") ACE_TEXT ("making a new connection \n"))); // Purge connections (if necessary) this->orb_core ()->lane_resources ().transport_cache ().purge (); // The svc_handler is created beforehand so that we can get // access to the underlying ACE_SSL_SOCK_Stream (the peer) and // its SSL pointer member prior to descending into the // ACE_Strategy_Connector (the "base_connector_"). This is // thread-safe and reentrant, hence no synchronization is // necessary. // // The make_svc_handler() method creates the service handler and // bumps the #REFCOUNT# up one extra. The extra reference count // in TAO_Connect_Creation_Strategy::make_svc_handler() is // needed in the case when connection completion is pending and // we are going to wait on a variable in the handler to changes, // signifying success or failure. Note, that this increment // cannot be done once the connect() returns since this might be // too late if another thread pick up the completion and // potentially deletes the handler before we get a chance to // increment the reference count. if (svc_handler == 0 && this->base_connector_.creation_strategy ()->make_svc_handler ( svc_handler) != 0) { if (TAO_debug_level > 0) ACE_DEBUG ((LM_ERROR, ACE_TEXT ("TAO (%P|%t) Unable to create SSLIOP ") ACE_TEXT ("service handler.\n"))); return 0; } ACE_Auto_Basic_Ptr<TAO::SSLIOP::Connection_Handler> safe_handler (svc_handler); // Setup the establishment of trust connection properties, if // any. int verify_mode = 0; // On the server side, "trust_in_client" requires that a peer // (client) certificate exist. Fail if one doesn't exist. // // In SSLIOP's case, trust_in_client also implies // trust_in_target. if (trust.trust_in_client) verify_mode = SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT; // Require verification of the target's certificate. else if (trust.trust_in_target) verify_mode = SSL_VERIFY_PEER; // Trust in neither the client nor the target is explicitly // specified. Use the default setting. else verify_mode = ACE_SSL_Context::instance ()->default_verify_mode (); ::SSL_set_verify (svc_handler->peer ().ssl (), verify_mode, 0); // The "eNULL" cipher disables encryption but still uses a // secure hash (e.g. SHA1 or MD5) to ensure integrity. (Try the // command "openssl ciphers -v eNULL".) // // Note that it is not possible to completely disable protection // here. if ((qop == ::Security::SecQOPNoProtection || qop == ::Security::SecQOPIntegrity) && ::SSL_set_cipher_list (svc_handler->peer ().ssl (), "eNULL") == 0) { if (TAO_debug_level > 0) ACE_DEBUG ((LM_ERROR, ACE_TEXT ("(%P|%t) Unable to set eNULL ") ACE_TEXT ("SSL cipher.\n"))); throw CORBA::INV_POLICY (); } svc_handler = safe_handler.release (); // Get the right synch options ACE_Synch_Options synch_options; this->active_connect_strategy_->synch_options (max_wait_time, synch_options); // The code used to set the timeout to zero, with the intent of // polling the reactor for connection completion. However, the side-effect // was to cause the connection to timeout immediately. // We obtain the transport in the <svc_handler> variable. As we // know now that the connection is not available in Cache we can // make a new connection result = this->base_connector_.connect (svc_handler, remote_address, synch_options); // base_connector_.connect() will increment the handler's // #REFCOUNT# once more. This is not required as we already hold // a reference to the handler, so we discard this second // reference. svc_handler->remove_reference (); // There are three possibilities from calling connect(): (a) // connection succeeds immediately - in this case, the // #REFCOUNT# on the handler is two; (b) connection completion // is pending - in this case, the #REFCOUNT# on the handler is // also two; (c) connection fails immediately - in this case, // the #REFCOUNT# on the handler is one since close() gets // called on the handler. // Make sure that we always do a remove_reference ACE_Event_Handler_var svc_handler_auto_ptr (svc_handler); transport = svc_handler->transport (); if (result == -1) { // No immediate result, wait for completion if (errno == EWOULDBLOCK) { // Try to wait until connection completion. Incase we block, then we // get a connected transport or not. In case of non block we get // a connected or not connected transport if (!this->wait_for_connection_completion (resolver, transport, max_wait_time)) { if (TAO_debug_level > 2) ACE_ERROR ((LM_ERROR, "TAO (%P|%t) - SSLIOP_Connector::" "ssliop_connect, " "wait for completion failed\n")); } } else { // Transport is not usable transport = 0; } } // In case of errors transport is zero if (transport == 0) { // Give users a clue to the problem. if (TAO_debug_level) { char buffer [MAXHOSTNAMELEN + 6 + 1]; ssl_endpoint->addr_to_string (buffer, sizeof (buffer) - 1); ACE_DEBUG ((LM_ERROR, ACE_TEXT ("TAO (%P|%t) - SSL connection to ") ACE_TEXT ("<%s:%d> failed (%p)\n"), buffer, remote_address.get_port_number (), ACE_TEXT ("errno"))); } return 0; } // fix for bug 2654 if (svc_handler->keep_waiting ()) { svc_handler->connection_pending (); } // fix for bug 2654 if (svc_handler->error_detected ()) { svc_handler->cancel_pending_connection (); } // At this point, the connection has be successfully connected. // #REFCOUNT# is one. if (TAO_debug_level > 2) ACE_DEBUG ((LM_DEBUG, "TAO (%P|%t) - SSLIOP_Connector::ssliop_connect, " "new SSL connection to port %d on transport[%d]\n", remote_address.get_port_number (), svc_handler->peer ().get_handle ())); // Add the handler to Cache int retval = this->orb_core ()-> lane_resources ().transport_cache ().cache_transport (desc, transport); // Failure in adding to cache. if (retval != 0) { // Close the handler. svc_handler->close (); if (TAO_debug_level > 0) { ACE_ERROR ((LM_ERROR, "TAO (%P|%t) - SLIIOP_Connector::ssliop_connect, " "could not add the new connection to cache\n")); } return 0; } // fix for bug 2654 if (svc_handler->error_detected ()) { svc_handler->cancel_pending_connection (); transport->purge_entry(); return 0; } if (transport->is_connected () && transport->wait_strategy ()->register_handler () != 0) { // Registration failures. // Purge from the connection cache, if we are not in the cache, this // just does nothing. (void) transport->purge_entry (); // Close the handler. (void) transport->close_connection (); if (TAO_debug_level > 0) ACE_ERROR ((LM_ERROR, "TAO (%P|%t) - SSLIOP_Connector [%d]::ssliop_connect, " "could not register the transport " "in the reactor.\n", transport->id ())); return 0; } } return transport; }

---

Member Data Documentation

BASE_CONNECTOR TAO::SSLIOP::Connector::base_connector_ [private]

The connector initiating connection requests for IIOP. Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 146 of file SSLIOP_Connector.h.

CONNECT_STRATEGY TAO::SSLIOP::Connector::connect_strategy_ [private]

Our connect strategy. Reimplemented from TAO::IIOP_SSL_Connector. Definition at line 143 of file SSLIOP_Connector.h.

::Security::QOP TAO::SSLIOP::Connector::qop_ [private]

If zero, connect to IIOP over SSL port by default. Otherwise, connect to the insecure IIOP port. Definition at line 140 of file SSLIOP_Connector.h.

---

The documentation for this class was generated from the following files:

• SSLIOP_Connector.h
• SSLIOP_Connector.cpp

---