![]() ![]() |
![]() |
File: [Pegasus] / pegasus / src / Pegasus / Handler / CIMxmlIndicationHandler / CIMxmlIndicationHandler.cpp
(download)
Revision: 1.27, Wed May 12 20:32:30 2004 UTC (20 years, 1 month ago) by a.dunfey Branch: MAIN Changes since 1.26: +17 -4 lines BUG#: 1400 TITLE: Check if HTTPS is enabled before creating SSLContext for indications DESCRIPTION: Previously the SSLContext object was being created for indication messages whether or not HTTPS was being used, or even enabled. This resulted in errors when the CIMOM tried to look up the server's SSL certificate and one is not availalbe. If HTTPS is enabled, then this condition is checked at startup. The SSLContext will only be created now if HTTPS is enabled and the destination is an HTTPS location. |
//%2003//////////////////////////////////////////////////////////////////////// // // Copyright (c) 2000, 2001, 2002 BMC Software, Hewlett-Packard Development // Company, L. P., IBM Corp., The Open Group, Tivoli Systems. // Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L. P.; // IBM Corp.; EMC Corporation, The Open Group. // // Permission is hereby granted, free of charge, to any person obtaining a copy // of this software and associated documentation files (the "Software"), to // deal in the Software without restriction, including without limitation the // rights to use, copy, modify, merge, publish, distribute, sublicense, and/or // sell copies of the Software, and to permit persons to whom the Software is // furnished to do so, subject to the following conditions: // // THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN // ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED // "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT // LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR // PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT // HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN // ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. // //============================================================================== // // Author: Nitin Upasani, Hewlett-Packard Company (Nitin_Upasani@hp.com) // // Modified By: Carol Ann Krug Graves, Hewlett-Packard Company // (carolann_graves@hp.com) // Nag Boranna, Hewlett-Packard Company (nagaraja_boranna@hp.com) // Yi Zhou, Hewlett-Packard Company (yi_zhou@hp.com) // Dan Gorey, IBM (djgorey@us.ibm.com) // //%///////////////////////////////////////////////////////////////////////////// #include <Pegasus/ExportClient/CIMExportClient.h> #include <Pegasus/Handler/CIMHandler.h> #include <Pegasus/Repository/CIMRepository.h> #include <Pegasus/Config/ConfigManager.h> #include <Pegasus/Common/Config.h> #include <Pegasus/Common/PegasusVersion.h> #include <Pegasus/Common/Constants.h> #include <Pegasus/Common/SSLContext.h> #include <Pegasus/Common/System.h> #include <Pegasus/Common/Tracer.h> PEGASUS_NAMESPACE_BEGIN PEGASUS_USING_STD; static Boolean verifyListenerCertificate(SSLCertificateInfo &certInfo) { // ATTN: Add code to handle listener certificate verification. // return true; } class PEGASUS_HANDLER_LINKAGE CIMxmlIndicationHandler: public CIMHandler { public: CIMxmlIndicationHandler() { PEG_METHOD_ENTER (TRC_IND_HANDLER, "CIMxmlIndicationHandler::CIMxmlIndicationHandler"); PEG_METHOD_EXIT(); } virtual ~CIMxmlIndicationHandler() { PEG_METHOD_ENTER (TRC_IND_HANDLER, "CIMxmlIndicationHandler::~CIMxmlIndicationHandler"); PEG_METHOD_EXIT(); } void initialize(CIMRepository* repository) { } void terminate() { } // l10n void handleIndication( const OperationContext& context, CIMInstance& indicationHandlerInstance, CIMInstance& indicationInstance, String nameSpace, ContentLanguages& contentLanguages) { PEG_METHOD_ENTER (TRC_IND_HANDLER, "CIMxmlIndicationHandler::handleIndication"); //get destination for the indication Uint32 pos = indicationHandlerInstance.findProperty(CIMName ("destination")); if (pos == PEG_NOT_FOUND) { String msg = _getMalformedExceptionMsg(); PEG_TRACE_STRING(TRC_IND_HANDLER, Tracer::LEVEL4, msg); PEG_METHOD_EXIT(); throw PEGASUS_CIM_EXCEPTION(CIM_ERR_FAILED, msg); } CIMProperty prop = indicationHandlerInstance.getProperty(pos); String dest; try { prop.getValue().get(dest); } catch (TypeMismatchException& e) { MessageLoaderParms param( "Handler.CIMxmlIndicationHandler.CIMxmlIndicationHandler.ERROR", "CIMxmlIndicationHandler Error: "); String msg = String(MessageLoader::getMessage(param) + e.getMessage()); PEG_TRACE_STRING(TRC_IND_HANDLER, Tracer::LEVEL4, msg); PEG_METHOD_EXIT(); throw PEGASUS_CIM_EXCEPTION(CIM_ERR_FAILED, msg); } try { static String PROPERTY_NAME__SSLCERT_FILEPATH = "sslCertificateFilePath"; static String PROPERTY_NAME__SSLKEY_FILEPATH = "sslKeyFilePath"; static String PROPERTY_NAME__ENABLE_HTTPS_CONNECTION = "enableHttpsConnection"; static String PROPERTY_NAME__ENABLE_HTTP_CONNECTION = "enableHttpConnection"; // // Get the sslCertificateFilePath property from the Config Manager. // ConfigManager* configManager = ConfigManager::getInstance(); String certPath; certPath = configManager->getCurrentValue( PROPERTY_NAME__SSLCERT_FILEPATH); // // Get the sslKeyFilePath property from the Config Manager. // String keyPath; keyPath = configManager->getCurrentValue( PROPERTY_NAME__SSLKEY_FILEPATH); String trustPath = String::EMPTY; String randFile = String::EMPTY; #ifdef PEGASUS_SSL_RANDOMFILE randFile = ConfigManager::getHomedPath(PEGASUS_SSLSERVER_RANDOMFILE); #endif // // Get the enableHttpsConnection and enableHttpConnection properties // String enableHttps = configManager->getCurrentValue( PROPERTY_NAME__ENABLE_HTTPS_CONNECTION); String enableHttp = configManager->getCurrentValue( PROPERTY_NAME__ENABLE_HTTP_CONNECTION); #ifdef PEGASUS_USE_23HTTPMONITOR_CLIENT Monitor monitor; HTTPConnector httpConnector( &monitor); #else monitor_2 monitor; HTTPConnector2 httpConnector( &monitor); #endif CIMExportClient exportclient( &monitor, &httpConnector); Uint32 colon = dest.find (":"); Uint32 portNumber = 0; Boolean useHttps = false; String destStr = dest; String hostStr; // // If the URL has https (https://hostname:port/... or // https://hostname/...) then use SSL for Indication delivery. // If it has http (http://hostname:port/... // or http://hostname/...) then do not use SSL. // if (colon != PEG_NOT_FOUND) { String httpStr = dest.subString(0, colon); if (String::equalNoCase(httpStr, "https") && String::equalNoCase(enableHttps, "true")) { useHttps = true; } else if (String::equalNoCase(httpStr, "http") && String::equalNoCase(enableHttp, "true")) { useHttps = false; } else { String msg = _getMalformedExceptionMsg(); PEG_TRACE_STRING(TRC_IND_HANDLER, Tracer::LEVEL4, msg + dest); PEG_METHOD_EXIT(); throw PEGASUS_CIM_EXCEPTION(CIM_ERR_NOT_SUPPORTED, msg + dest); } } else { String msg = _getMalformedExceptionMsg(); PEG_TRACE_STRING(TRC_IND_HANDLER, Tracer::LEVEL4, msg + dest); PEG_METHOD_EXIT(); throw PEGASUS_CIM_EXCEPTION(CIM_ERR_NOT_SUPPORTED, msg + dest); } String doubleSlash = dest.subString(colon + 1, 2); if (String::equalNoCase(doubleSlash, "//")) { destStr = dest.subString(colon + 3, PEG_NOT_FOUND); } else { String msg = _getMalformedExceptionMsg(); PEG_TRACE_STRING(TRC_IND_HANDLER, Tracer::LEVEL4, msg + dest); PEG_METHOD_EXIT(); throw PEGASUS_CIM_EXCEPTION(CIM_ERR_NOT_SUPPORTED, msg + dest); } char dummy[64]; dummy[0] = 0; colon = destStr.find (":"); // // get hostname and port number from destination string // if (colon != PEG_NOT_FOUND) { hostStr = destStr.subString (0, colon); destStr = destStr.subString(colon + 1, PEG_NOT_FOUND); Uint32 slash = destStr.find ("/"); String portStr; if (slash != PEG_NOT_FOUND) { portStr = destStr.subString (0, slash); } else { portStr = destStr.subString (0, PEG_NOT_FOUND); } sscanf (portStr.getCString (), "%u%s", &portNumber, dummy); } // // There is no port number in the destination string, // get port number from system // else { Uint32 slash = destStr.find ("/"); if (slash != PEG_NOT_FOUND) { hostStr = destStr.subString (0, slash); } else { hostStr = destStr.subString (0, PEG_NOT_FOUND); } if (useHttps) { portNumber = System::lookupPort(WBEM_HTTPS_SERVICE_NAME, WBEM_DEFAULT_HTTPS_PORT); } else { portNumber = System::lookupPort(WBEM_HTTP_SERVICE_NAME, WBEM_DEFAULT_HTTP_PORT); } } char hostName[PEGASUS_MAXHOSTNAMELEN]; char dummy2[64]; dummy2[0] = 0; sscanf (hostStr.getCString (), "%s%s", hostName, dummy2); if (dummy[0] != 0 || dummy2[0] != 0) { String msg = _getMalformedExceptionMsg(); PEG_TRACE_STRING(TRC_IND_HANDLER, Tracer::LEVEL4, msg + dest); PEG_METHOD_EXIT(); throw PEGASUS_CIM_EXCEPTION(CIM_ERR_NOT_SUPPORTED, msg + dest); } if (useHttps) { #ifdef PEGASUS_HAS_SSL PEG_TRACE_STRING(TRC_IND_HANDLER, Tracer::LEVEL4, "Build SSL Context..."); SSLContext sslcontext(trustPath, certPath, keyPath, verifyListenerCertificate, randFile); exportclient.connect (hostName, portNumber, sslcontext); #else //l10n 485 MessageLoaderParms param( "Handler.CIMxmlIndicationHandler.CIMxmlIndicationHandler.ERROR", "CIMxmlIndicationHandler Error: "); MessageLoaderParms param1( "Handler.CIMxmlIndicationHandler.CIMxmlIndicationHandler.CANNOT_DO_HTTPS_CONNECTION", "Cannot do https connection."); PEG_TRACE_STRING(TRC_IND_HANDLER, Tracer::LEVEL3, MessageLoader::getMessage(param) + MessageLoader::getMessage(param1)); String msg = String(MessageLoader::getMessage(param) + MessageLoader::getMessage(param1)); PEG_METHOD_EXIT(); throw PEGASUS_CIM_EXCEPTION(CIM_ERR_FAILED, msg); #endif } else { exportclient.connect (hostName, portNumber); } // l10n // check destStr, if no path is specified, use "/" for the URI Uint32 slash = destStr.find ("/"); if (slash != PEG_NOT_FOUND) { exportclient.exportIndication( destStr.subString(slash), indicationInstance, contentLanguages); } else { exportclient.exportIndication( "/", indicationInstance, contentLanguages); } } catch(Exception& e) { //ATTN: Catch specific exceptions and log the error message // as Indication delivery failed. //l10n 485 MessageLoaderParms param( "Handler.CIMxmlIndicationHandler.CIMxmlIndicationHandler.ERROR", "CIMxmlIndicationHandler Error: "); String msg = String(MessageLoader::getMessage(param) + e.getMessage()); PEG_METHOD_EXIT(); throw PEGASUS_CIM_EXCEPTION(CIM_ERR_FAILED, msg); } PEG_METHOD_EXIT(); } private: String _getMalformedExceptionMsg() { MessageLoaderParms param( "Handler.CIMxmlIndicationHandler.CIMxmlIndicationHandler.ERROR", "CIMxmlIndicationHandler Error: "); MessageLoaderParms param1( "Handler.CIMxmlIndicationHandler.CIMxmlIndicationHandler.MALFORMED_HANDLER_INSTANCE", "Malformed handler instance."); return ( String(MessageLoader::getMessage(param) + MessageLoader::getMessage(param1)) ); } }; // This is the dynamic entry point into this dynamic module. The name of // this handler is "CIMxmlIndicationHandler" which is appened to "PegasusCreateHandler_" // to form a symbol name. This function is called by the HandlerTable // to load this handler. extern "C" PEGASUS_EXPORT CIMHandler* PegasusCreateHandler_CIMxmlIndicationHandler() { return new CIMxmlIndicationHandler; } PEGASUS_NAMESPACE_END
No CVS admin address has been configured |
Powered by ViewCVS 0.9.2 |