Return to
Makefile
CVS log
Up to [Pegasus] / pegasus / src / Clients / ssltrustmgr
|
Return to
Makefile
CVS log
|
Up to [Pegasus] / pegasus / src / Clients / ssltrustmgr
|
|
File: [Pegasus] / pegasus / src / Clients / ssltrustmgr / Attic / Makefile
(download)
Revision: 1.4, Mon Feb 28 22:39:04 2005 UTC (19 years, 4 months ago) by h.sterling Branch: MAIN CVS Tags: PEP214ROOT, PEP214BRANCH Changes since 1.3: +58 -0 lines PEP#:187 TITLE: SSL Cert Mgmt Enhancements DESCRIPTION: Update the ssltrustmgr makefile to use the createtestcert.sh script to generate certificates and crls for the poststart tests. Use ssltrustmgr calls to exercise the certificate provider. |
ROOT = ../../..
PEGASUS_ZOS_PROGRAM_OBJECT = yes
DIR = Clients/ssltrustmgr
include $(ROOT)/mak/config.mak
ifdef PEGASUS_HAS_SSL
FLAGS += -DPEGASUS_HAS_SSL -DPEGASUS_SSL_RANDOMFILE
SYS_INCLUDES += -I$(OPENSSL_HOME)/include
endif
LOCAL_DEFINES = -DPEGASUS_INTERNALONLY
LIBRARIES = \
pegcliutils \
peggetoopt \
pegclient \
pegcommon
EXTRA_INCLUDES = $(SYS_INCLUDES)
PROGRAM = ssltrustmgr
SOURCES = \
SSLTrustMgr.cpp
ifeq ($(PEGASUS_PLATFORM),WIN32_IX86_MSVC)
SYS_LIBS = ws2_32.lib advapi32.lib
endif
# for testing purposes, the username can be anything, as long as its a valid username
ifeq ($(PEGASUS_PLATFORM),WIN32_IX86_MSVC)
CURRENT_USER=Administrator
else
CURRENT_USER=`whoami`
endif
CIMSERVER_CONFIG_OPTIONS=sslClientVerificationMode=optional sslTrustStoreUserName=$(CURRENT_USER)
TESTCERT_HOME=$(PEGASUS_HOME)/src/Clients/ssltrustmgr/scripts
include $(ROOT)/mak/program.mak
include $(ROOT)/mak/install.mak
include $(ROOT)/mak/commands.mak
tests:
poststarttests:
# enable these once we are finish adding the TestClient calls to verify
ifdef PEGASUS_HAS_SSL_NEED_TO_ENABLE
@$(ECHO) ++++ssltrustmgr test
$(TOUCH) $(PEGASUS_HOME)/cimserver_current.conf
$(COPY) $(PEGASUS_HOME)/cimserver_current.conf $(PEGASUS_HOME)/cimserver_current.conf.bkup
@$(ECHO) Stopping cimserver
cd $(PEGASUS_HOME)/bin && $(CIMSERVER_STOP_SERVICE)
@$(ECHO) Stopped.
@$(ECHO) Starting cimserver
@cd $(PEGASUS_HOME)/bin && $(CIMSERVER_START_SERVICE)
@$(ECHO) Current directory is `pwd`
# create the certificates and crls for the tests
cd scripts && bash createtestcert.sh
# add the self-signed certificate to the truststore and try to connect
@cd $(PEGASUS_HOME)/bin && ssltrustmgr -a -c $(CURRENT_USER) -f $(TESTCERT_HOME)/testdn1.cert
# delete the self-signed certificate from the truststore and try to connect
@cd $(PEGASUS_HOME)/bin && ssltrustmgr -r -i /C=US/ST=VIRGINIA/L=Fairfax/O=OpenGroup/OU=OpenPegasus/CN=JohnDoeSelfSigned/emailAddress=TestCertificate -n 0
# add the CA certificate to the truststore and try to connect using 2 other certificates signed by the CA
@cd $(PEGASUS_HOME)/bin && ssltrustmgr -a -c $(CURRENT_USER) -f $(TESTCERT_HOME)/testca1.cert
# add the CA CRL certificate to the truststore and try to connect, 1st certificate should succeed, 2nd certificate should fail
@cd $(PEGASUS_HOME)/bin && ssltrustmgr -a -R -f $(TESTCERT_HOME)/testca1.crl
# remove the CA CRL certificate and try to connect, both attempts should be successful
@cd $(PEGASUS_HOME)/bin && ssltrustmgr -r -R -i /C=US/ST=WASHINGTON/L=Seattle/O=OpenGroup/OU=OpenPegasus/CN=TheMan/emailAddress=TestCA
# remove the CA certificate from the truststore to clean everything up
@cd $(PEGASUS_HOME)/bin && ssltrustmgr -r -i /C=US/ST=WASHINGTON/L=Seattle/O=OpenGroup/OU=OpenPegasus/CN=TheMan/emailAddress=TestCA -n 0
# stop the cimserver and restart using original configuration
@$(ECHO) Stopping cimserver
cd $(PEGASUS_HOME)/bin && $(CIMSERVER_STOP_SERVICE)
@$(ECHO) Stopped.
$(COPY) $(PEGASUS_HOME)/cimserver_current.conf.bkup $(PEGASUS_HOME)/cimserver_planned.conf
$(RMDIRHIER) $(PEGASUS_HOME)/truststore
$(RMDIRHIER) $(PEGASUS_HOME)/clientkeystore
@$(ECHO) Starting cimserver with previous configuration
cd $(PEGASUS_HOME)/bin && $(CIMSERVER_START_SERVICE)
@$(ECHO) Running.
@$(ECHO) ++++ssltrustmgr test completed
endif
| No CVS admin address has been configured |
Powered by ViewCVS 0.9.2 |