RubyGems - zeroc-ice - Versions diffs - 3.6.5 → 3.7.0 - Mend

zeroc-ice 3.6.5 → 3.7.0

Files changed (752) hide show

checksums.yaml +4 -4
data/BZIP2_LICENSE +42 -0
data/ICE_LICENSE +17 -17
data/LICENSE +12 -12
data/bin/slice2rb +1 -1
data/ext/Communicator.cpp +150 -53
data/ext/Communicator.h +1 -1
data/ext/Config.h +2 -12
data/ext/Connection.cpp +89 -68
data/ext/Connection.h +1 -1
data/ext/Endpoint.cpp +16 -45
data/ext/Endpoint.h +1 -1
data/ext/ImplicitContext.cpp +1 -5
data/ext/ImplicitContext.h +1 -1
data/ext/Init.cpp +4 -1
data/ext/Logger.cpp +1 -1
data/ext/Logger.h +1 -1
data/ext/Operation.cpp +33 -44
data/ext/Operation.h +1 -1
data/ext/Properties.cpp +1 -1
data/ext/Properties.h +1 -1
data/ext/Proxy.cpp +22 -57
data/ext/Proxy.h +1 -1
data/ext/Slice.cpp +5 -5
data/ext/Slice.h +1 -1
data/ext/Types.cpp +244 -171
data/ext/Types.h +118 -66
data/ext/Util.cpp +13 -9
data/ext/Util.h +10 -10
data/ext/ValueFactoryManager.cpp +445 -0
data/ext/ValueFactoryManager.h +100 -0
data/ext/extconf.rb +47 -45
data/ext/ice/bzip2/blocksort.c +1094 -0
data/ext/ice/bzip2/bzlib.c +1572 -0
data/ext/ice/bzip2/bzlib.h +282 -0
data/ext/ice/bzip2/bzlib_private.h +509 -0
data/ext/ice/bzip2/compress.c +672 -0
data/ext/ice/bzip2/crctable.c +104 -0
data/ext/ice/bzip2/decompress.c +646 -0
data/ext/ice/bzip2/huffman.c +205 -0
data/ext/ice/bzip2/randtable.c +84 -0
data/ext/ice/cpp/include/Ice/Application.h +77 -60
data/ext/ice/cpp/include/Ice/AsyncResult.h +34 -318
data/ext/ice/cpp/include/Ice/AsyncResultF.h +4 -2
data/ext/ice/cpp/include/Ice/BatchRequestInterceptor.h +5 -10
data/ext/ice/cpp/include/Ice/BatchRequestQueueF.h +1 -1
data/ext/ice/cpp/include/Ice/Buffer.h +10 -10
data/ext/ice/cpp/include/Ice/CommunicatorAsync.h +14 -12
data/ext/ice/cpp/include/Ice/Comparable.h +130 -0
data/ext/ice/cpp/include/Ice/Config.h +7 -36
data/ext/ice/cpp/include/Ice/ConnectionAsync.h +107 -11
data/ext/ice/cpp/include/Ice/ConnectionIF.h +5 -1
data/ext/ice/cpp/include/Ice/ConsoleUtil.h +28 -0
data/ext/ice/cpp/include/Ice/{DefaultObjectFactory.h → DefaultValueFactory.h} +28 -14
data/ext/ice/cpp/include/Ice/DispatchInterceptor.h +4 -6
data/ext/ice/cpp/include/Ice/Dispatcher.h +14 -13
data/ext/ice/cpp/include/Ice/DynamicLibrary.h +7 -5
data/ext/ice/cpp/include/Ice/DynamicLibraryF.h +1 -1
data/ext/ice/cpp/include/Ice/Exception.h +66 -56
data/ext/ice/cpp/include/Ice/ExceptionHelpers.h +69 -0
data/ext/ice/cpp/include/Ice/FactoryTable.h +11 -12
data/ext/ice/cpp/include/Ice/FactoryTableInit.h +27 -25
data/ext/ice/cpp/include/Ice/Format.h +6 -1
data/ext/ice/cpp/include/Ice/Functional.h +33 -33
data/ext/ice/cpp/include/Ice/GCObject.h +9 -5
data/ext/ice/cpp/include/Ice/Handle.h +6 -11
data/ext/ice/cpp/include/Ice/Ice.h +9 -5
data/ext/ice/cpp/include/{IceUtil → Ice}/IconvStringConverter.h +108 -62
data/ext/ice/cpp/include/Ice/Incoming.h +109 -33
data/ext/ice/cpp/include/Ice/IncomingAsync.h +63 -23
data/ext/ice/cpp/include/Ice/IncomingAsyncF.h +7 -1
data/ext/ice/cpp/include/Ice/Initialize.h +178 -38
data/ext/ice/cpp/include/Ice/InputStream.h +994 -0
data/ext/ice/cpp/include/Ice/InstanceF.h +1 -2
data/ext/ice/cpp/include/Ice/InterfaceByValue.h +46 -0
data/ext/ice/cpp/include/Ice/LocalObject.h +9 -9
data/ext/ice/cpp/include/Ice/LocalObjectF.h +1 -1
data/ext/ice/cpp/include/Ice/LoggerUtil.h +20 -14
data/ext/ice/cpp/include/Ice/MetricsAdminI.h +114 -65
data/ext/ice/cpp/include/Ice/MetricsFunctional.h +23 -5
data/ext/ice/cpp/include/Ice/MetricsObserverI.h +99 -26
data/ext/ice/cpp/include/Ice/NativePropertiesAdmin.h +17 -4
data/ext/ice/cpp/include/Ice/Object.h +105 -56
data/ext/ice/cpp/include/Ice/ObjectF.h +8 -3
data/ext/ice/cpp/include/Ice/ObserverHelper.h +18 -8
data/ext/ice/cpp/include/Ice/Optional.h +1084 -0
data/ext/ice/cpp/include/Ice/OutgoingAsync.h +655 -84
data/ext/ice/cpp/include/Ice/OutgoingAsyncF.h +12 -6
data/ext/ice/cpp/include/Ice/OutputStream.h +753 -0
data/ext/ice/cpp/include/Ice/Protocol.h +19 -12
data/ext/ice/cpp/include/Ice/Proxy.h +1329 -717
data/ext/ice/cpp/include/Ice/ProxyF.h +11 -33
data/ext/ice/cpp/include/Ice/ProxyFactoryF.h +1 -1
data/ext/ice/cpp/include/Ice/ProxyHandle.h +34 -50
data/ext/ice/cpp/include/Ice/ReferenceF.h +1 -1
data/ext/ice/cpp/include/Ice/RegisterPlugins.h +22 -3
data/ext/ice/cpp/include/Ice/RequestHandlerF.h +10 -4
data/ext/ice/cpp/include/Ice/ResponseHandlerF.h +6 -1
data/ext/ice/cpp/include/{IceUtil → Ice}/SHA1.h +16 -16
data/ext/ice/cpp/include/Ice/ServantManagerF.h +1 -1
data/ext/ice/cpp/include/Ice/Service.h +13 -18
data/ext/ice/cpp/include/Ice/SliceChecksums.h +1 -1
data/ext/ice/cpp/include/Ice/SlicedData.h +46 -20
data/ext/ice/cpp/include/Ice/SlicedDataF.h +14 -6
data/ext/ice/cpp/include/Ice/StreamHelpers.h +159 -49
data/ext/ice/cpp/include/Ice/StringConverter.h +52 -0
data/ext/ice/cpp/include/Ice/ThreadPoolF.h +1 -1
data/{slice/Ice/ObjectFactoryF.ice → ext/ice/cpp/include/Ice/UUID.h} +9 -7
data/ext/ice/cpp/include/{IceUtil → Ice}/UniquePtr.h +21 -22
data/ext/ice/cpp/include/Ice/UniqueRef.h +98 -0
data/ext/ice/cpp/include/Ice/UserExceptionFactory.h +40 -8
data/ext/ice/cpp/include/Ice/Value.h +104 -0
data/{slice/Freeze/ConnectionF.ice → ext/ice/cpp/include/Ice/ValueF.h} +11 -7
data/ext/ice/cpp/include/IceSSL/Config.h +8 -23
data/ext/ice/cpp/include/IceSSL/IceSSL.h +17 -6
data/ext/ice/cpp/include/IceSSL/OpenSSL.h +130 -0
data/ext/ice/cpp/include/IceSSL/Plugin.h +172 -259
data/ext/ice/cpp/include/IceSSL/SChannel.h +66 -0
data/ext/ice/cpp/include/IceSSL/SecureTransport.h +66 -0
data/ext/ice/cpp/include/IceSSL/UWP.h +58 -0
data/ext/ice/cpp/include/IceUtil/Atomic.h +8 -10
data/ext/ice/cpp/include/IceUtil/Cond.h +17 -18
data/ext/ice/cpp/include/IceUtil/Config.h +138 -39
data/ext/ice/cpp/include/IceUtil/ConsoleUtil.h +97 -0
data/ext/ice/cpp/include/IceUtil/CountDownLatch.h +5 -5
data/ext/ice/cpp/include/IceUtil/CtrlCHandler.h +23 -17
data/ext/ice/cpp/include/IceUtil/DisableWarnings.h +1 -3
data/ext/ice/cpp/include/IceUtil/Exception.h +157 -67
data/ext/ice/cpp/include/IceUtil/FileUtil.h +148 -0
data/ext/ice/cpp/include/IceUtil/Functional.h +1 -2
data/ext/ice/cpp/include/IceUtil/Handle.h +11 -11
data/ext/ice/cpp/include/IceUtil/IceUtil.h +4 -10
data/ext/ice/cpp/include/IceUtil/InputUtil.h +3 -3
data/ext/ice/cpp/include/IceUtil/Iterator.h +2 -2
data/ext/ice/cpp/include/IceUtil/Lock.h +8 -10
data/ext/ice/cpp/include/IceUtil/Monitor.h +1 -2
data/ext/ice/cpp/include/IceUtil/Mutex.h +17 -11
data/ext/ice/cpp/include/IceUtil/MutexProtocol.h +2 -2
data/ext/ice/cpp/include/IceUtil/MutexPtrLock.h +4 -4
data/ext/ice/cpp/include/IceUtil/MutexPtrTryLock.h +4 -4
data/ext/ice/cpp/include/IceUtil/Optional.h +32 -18
data/ext/ice/cpp/include/IceUtil/Options.h +17 -18
data/ext/ice/cpp/include/IceUtil/OutputUtil.h +55 -29
data/ext/ice/cpp/include/IceUtil/PopDisableWarnings.h +6 -6
data/ext/ice/cpp/include/IceUtil/PushDisableWarnings.h +11 -10
data/ext/ice/cpp/include/IceUtil/Random.h +3 -3
data/ext/ice/cpp/include/IceUtil/RecMutex.h +7 -8
data/ext/ice/cpp/include/IceUtil/ResourceConfig.h +58 -0
data/ext/ice/cpp/include/IceUtil/ScannerConfig.h +1 -9
data/ext/ice/cpp/include/IceUtil/ScopedArray.h +8 -2
data/ext/ice/cpp/include/IceUtil/Shared.h +5 -7
data/ext/ice/cpp/{src → include}/IceUtil/StopWatch.h +2 -2
data/ext/ice/cpp/include/IceUtil/StringConverter.h +77 -72
data/ext/ice/cpp/include/IceUtil/StringUtil.h +32 -21
data/ext/ice/cpp/include/IceUtil/Thread.h +10 -12
data/ext/ice/cpp/include/IceUtil/ThreadException.h +33 -42
data/ext/ice/cpp/include/IceUtil/Time.h +3 -3
data/ext/ice/cpp/include/IceUtil/Timer.h +14 -13
data/ext/ice/cpp/include/IceUtil/UUID.h +2 -2
data/ext/ice/cpp/include/IceUtil/UndefSysMacros.h +1 -1
data/ext/ice/cpp/include/{Ice → generated/Ice}/BuiltinSequences.h +41 -8
data/ext/ice/cpp/include/generated/Ice/Communicator.h +364 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/CommunicatorF.h +40 -8
data/ext/ice/cpp/include/generated/Ice/Connection.h +872 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ConnectionF.h +46 -8
data/ext/ice/cpp/include/{Ice → generated/Ice}/Current.h +71 -8
data/ext/ice/cpp/include/generated/Ice/Endpoint.h +582 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/EndpointF.h +62 -8
data/ext/ice/cpp/include/{Ice → generated/Ice}/EndpointTypes.h +31 -16
data/ext/ice/cpp/include/{Ice → generated/Ice}/FacetMap.h +23 -8
data/ext/ice/cpp/include/generated/Ice/Identity.h +221 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ImplicitContext.h +72 -13
data/ext/ice/cpp/include/{Ice → generated/Ice}/ImplicitContextF.h +40 -8
data/ext/ice/cpp/include/generated/Ice/Instrumentation.h +602 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/InstrumentationF.h +54 -8
data/ext/ice/cpp/include/generated/Ice/LocalException.h +2802 -0
data/ext/ice/cpp/include/generated/Ice/Locator.h +2036 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/LocatorF.h +53 -12
data/ext/ice/cpp/include/{Ice → generated/Ice}/Logger.h +71 -13
data/ext/ice/cpp/include/{Ice → generated/Ice}/LoggerF.h +40 -8
data/ext/ice/cpp/include/generated/Ice/Metrics.h +2649 -0
data/ext/ice/cpp/include/generated/Ice/ObjectAdapter.h +302 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ObjectAdapterF.h +40 -8
data/ext/ice/cpp/include/generated/Ice/ObjectFactory.h +142 -0
data/ext/ice/cpp/include/generated/Ice/Plugin.h +197 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/PluginF.h +43 -8
data/ext/ice/cpp/include/generated/Ice/Process.h +536 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ProcessF.h +45 -10
data/ext/ice/cpp/include/{Ice → generated/Ice}/Properties.h +88 -21
data/ext/ice/cpp/include/generated/Ice/PropertiesAdmin.h +749 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/PropertiesF.h +48 -10
data/ext/ice/cpp/include/generated/Ice/RemoteLogger.h +1449 -0
data/ext/ice/cpp/include/generated/Ice/Router.h +1032 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/RouterF.h +45 -10
data/ext/ice/cpp/include/{Ice → generated/Ice}/ServantLocator.h +65 -13
data/ext/ice/cpp/include/{Ice → generated/Ice}/ServantLocatorF.h +40 -8
data/ext/ice/cpp/include/{Ice → generated/Ice}/SliceChecksumDict.h +23 -8
data/ext/ice/cpp/include/generated/Ice/ValueFactory.h +169 -0
data/ext/ice/cpp/include/generated/Ice/Version.h +334 -0
data/ext/ice/cpp/include/generated/IceSSL/ConnectionInfo.h +172 -0
data/ext/ice/cpp/include/generated/IceSSL/ConnectionInfoF.h +98 -0
data/ext/ice/cpp/include/generated/IceSSL/EndpointInfo.h +156 -0
data/ext/ice/cpp/src/Ice/ACM.cpp +18 -14
data/ext/ice/cpp/src/Ice/ACM.h +9 -2
data/ext/ice/cpp/{include → src}/Ice/ACMF.h +10 -5
data/ext/ice/cpp/src/Ice/Acceptor.cpp +6 -1
data/ext/ice/cpp/src/Ice/Acceptor.h +4 -3
data/ext/ice/cpp/src/Ice/AcceptorF.h +1 -1
data/ext/ice/cpp/src/{IceUtil → Ice}/ArgVector.cpp +9 -9
data/ext/ice/cpp/src/{IceUtil → Ice}/ArgVector.h +7 -7
data/ext/ice/cpp/src/Ice/AsyncResult.cpp +15 -538
data/ext/ice/cpp/src/Ice/Base64.cpp +11 -11
data/ext/ice/cpp/src/Ice/Base64.h +1 -1
data/ext/ice/cpp/src/Ice/BatchRequestQueue.cpp +40 -12
data/ext/ice/cpp/src/Ice/BatchRequestQueue.h +15 -10
data/ext/ice/cpp/src/Ice/Buffer.cpp +74 -12
data/ext/ice/cpp/src/Ice/BuiltinSequences.cpp +20 -6
data/ext/ice/cpp/src/Ice/CollocatedRequestHandler.cpp +85 -190
data/ext/ice/cpp/src/Ice/CollocatedRequestHandler.h +17 -18
data/ext/ice/cpp/src/Ice/Communicator.cpp +39 -8
data/ext/ice/cpp/src/Ice/CommunicatorF.cpp +27 -5
data/ext/ice/cpp/src/Ice/CommunicatorI.cpp +271 -104
data/ext/ice/cpp/src/Ice/CommunicatorI.h +84 -28
data/ext/ice/cpp/src/{IceUtil → Ice}/Cond.cpp +3 -3
data/ext/ice/cpp/src/Ice/ConnectRequestHandler.cpp +58 -125
data/ext/ice/cpp/src/Ice/ConnectRequestHandler.h +11 -22
data/ext/ice/cpp/src/Ice/ConnectRequestHandlerF.h +6 -2
data/ext/ice/cpp/src/Ice/Connection.cpp +88 -8
data/ext/ice/cpp/src/Ice/ConnectionF.cpp +27 -5
data/ext/ice/cpp/src/Ice/ConnectionFactory.cpp +158 -80
data/ext/ice/cpp/src/Ice/ConnectionFactory.h +41 -23
data/ext/ice/cpp/{include → src}/Ice/ConnectionFactoryF.h +8 -3
data/ext/ice/cpp/src/Ice/ConnectionI.cpp +707 -653
data/ext/ice/cpp/src/Ice/ConnectionI.h +97 -69
data/ext/ice/cpp/src/Ice/ConnectionRequestHandler.cpp +2 -15
data/ext/ice/cpp/src/Ice/ConnectionRequestHandler.h +4 -3
data/ext/ice/cpp/src/Ice/Connector.cpp +6 -1
data/ext/ice/cpp/src/Ice/Connector.h +4 -3
data/ext/ice/cpp/src/Ice/ConnectorF.h +1 -1
data/ext/ice/cpp/src/{IceUtil → Ice}/CountDownLatch.cpp +4 -4
data/ext/ice/cpp/src/Ice/Current.cpp +29 -6
data/ext/ice/cpp/src/Ice/DefaultsAndOverrides.cpp +6 -5
data/ext/ice/cpp/src/Ice/DefaultsAndOverrides.h +1 -1
data/ext/ice/cpp/src/Ice/DefaultsAndOverridesF.h +1 -1
data/ext/ice/cpp/src/Ice/DispatchInterceptor.cpp +5 -25
data/ext/ice/cpp/src/Ice/DynamicLibrary.cpp +29 -19
data/ext/ice/cpp/src/Ice/Endpoint.cpp +85 -6
data/ext/ice/cpp/src/Ice/EndpointF.cpp +27 -5
data/ext/ice/cpp/src/Ice/EndpointFactory.cpp +152 -1
data/ext/ice/cpp/src/Ice/EndpointFactory.h +72 -6
data/ext/ice/cpp/src/Ice/EndpointFactoryF.h +1 -1
data/ext/ice/cpp/src/Ice/EndpointFactoryManager.cpp +35 -19
data/ext/ice/cpp/src/Ice/EndpointFactoryManager.h +10 -4
data/ext/ice/cpp/src/Ice/EndpointFactoryManagerF.h +1 -1
data/ext/ice/cpp/src/Ice/EndpointI.cpp +17 -1
data/ext/ice/cpp/src/Ice/EndpointI.h +35 -9
data/ext/ice/cpp/src/Ice/EndpointIF.h +18 -5
data/ext/ice/cpp/src/Ice/EndpointTypes.cpp +18 -6
data/ext/ice/cpp/src/Ice/EventHandler.cpp +6 -4
data/ext/ice/cpp/src/Ice/EventHandler.h +13 -8
data/ext/ice/cpp/src/Ice/EventHandlerF.h +5 -2
data/ext/ice/cpp/src/Ice/Exception.cpp +95 -86
data/ext/ice/cpp/src/Ice/FacetMap.cpp +20 -6
data/ext/ice/cpp/src/Ice/FactoryTable.cpp +37 -28
data/ext/ice/cpp/src/Ice/FactoryTableInit.cpp +2 -4
data/ext/ice/cpp/src/Ice/GCObject.cpp +28 -25
data/ext/ice/cpp/src/Ice/HashUtil.h +2 -3
data/ext/ice/cpp/src/Ice/HttpParser.cpp +1 -2
data/ext/ice/cpp/src/Ice/HttpParser.h +1 -1
data/ext/ice/cpp/src/Ice/IPEndpointI.cpp +92 -53
data/ext/ice/cpp/src/Ice/IPEndpointI.h +19 -10
data/ext/ice/cpp/src/Ice/IPEndpointIF.h +6 -2
data/ext/ice/cpp/src/Ice/IconvStringConverter.cpp +56 -0
data/ext/ice/cpp/src/Ice/Identity.cpp +24 -10
data/ext/ice/cpp/src/Ice/ImplicitContext.cpp +37 -6
data/ext/ice/cpp/src/Ice/ImplicitContextF.cpp +27 -5
data/ext/ice/cpp/src/Ice/ImplicitContextI.cpp +14 -14
data/ext/ice/cpp/src/Ice/ImplicitContextI.h +7 -5
data/ext/ice/cpp/src/Ice/Incoming.cpp +276 -245
data/ext/ice/cpp/src/Ice/IncomingAsync.cpp +104 -209
data/ext/ice/cpp/src/Ice/IncomingRequest.h +5 -4
data/ext/ice/cpp/src/Ice/Initialize.cpp +299 -172
data/ext/ice/cpp/src/Ice/InputStream.cpp +2773 -0
data/ext/ice/cpp/src/Ice/Instance.cpp +191 -231
data/ext/ice/cpp/src/Ice/Instance.h +30 -18
data/ext/ice/cpp/src/Ice/Instrumentation.cpp +106 -7
data/ext/ice/cpp/src/Ice/InstrumentationF.cpp +27 -5
data/ext/ice/cpp/src/Ice/InstrumentationI.cpp +117 -99
data/ext/ice/cpp/src/Ice/InstrumentationI.h +30 -31
data/ext/ice/cpp/src/Ice/LocalException.cpp +1190 -416
data/ext/ice/cpp/src/Ice/LocalObject.cpp +1 -2
data/ext/ice/cpp/src/Ice/Locator.cpp +1167 -1215
data/ext/ice/cpp/src/Ice/LocatorF.cpp +29 -6
data/ext/ice/cpp/src/Ice/LocatorInfo.cpp +129 -163
data/ext/ice/cpp/src/Ice/LocatorInfo.h +29 -29
data/ext/ice/cpp/src/Ice/LocatorInfoF.h +1 -1
data/ext/ice/cpp/src/Ice/Logger.cpp +35 -5
data/ext/ice/cpp/src/Ice/LoggerAdminI.cpp +178 -73
data/ext/ice/cpp/src/Ice/LoggerAdminI.h +4 -4
data/ext/ice/cpp/src/Ice/LoggerF.cpp +27 -5
data/ext/ice/cpp/src/Ice/LoggerI.cpp +14 -44
data/ext/ice/cpp/src/Ice/LoggerI.h +7 -13
data/ext/ice/cpp/src/Ice/LoggerUtil.cpp +10 -12
data/ext/ice/cpp/src/Ice/Metrics.cpp +1059 -1069
data/ext/ice/cpp/src/Ice/MetricsAdminI.cpp +49 -19
data/ext/ice/cpp/src/Ice/MetricsObserverI.cpp +1 -2
data/ext/ice/cpp/src/Ice/Network.cpp +534 -170
data/ext/ice/cpp/src/Ice/Network.h +100 -23
data/ext/ice/cpp/src/Ice/NetworkF.h +2 -2
data/ext/ice/cpp/src/Ice/NetworkProxy.cpp +21 -14
data/ext/ice/cpp/src/Ice/NetworkProxy.h +5 -2
data/ext/ice/cpp/src/Ice/NetworkProxyF.h +1 -1
data/ext/ice/cpp/src/Ice/Object.cpp +217 -221
data/ext/ice/cpp/src/Ice/ObjectAdapter.cpp +41 -6
data/ext/ice/cpp/src/Ice/ObjectAdapterF.cpp +27 -5
data/ext/ice/cpp/src/Ice/ObjectAdapterFactory.cpp +35 -14
data/ext/ice/cpp/src/Ice/ObjectAdapterFactory.h +13 -7
data/ext/ice/cpp/{include → src}/Ice/ObjectAdapterFactoryF.h +5 -1
data/ext/ice/cpp/src/Ice/ObjectAdapterI.cpp +184 -58
data/ext/ice/cpp/src/Ice/ObjectAdapterI.h +32 -26
data/ext/ice/cpp/src/Ice/ObjectFactory.cpp +37 -6
data/ext/ice/cpp/src/Ice/ObserverHelper.cpp +9 -32
data/ext/ice/cpp/src/Ice/OpaqueEndpointI.cpp +40 -18
data/ext/ice/cpp/src/Ice/OpaqueEndpointI.h +14 -5
data/ext/ice/cpp/src/Ice/OutgoingAsync.cpp +803 -365
data/ext/ice/cpp/src/Ice/OutputStream.cpp +1399 -0
data/ext/ice/cpp/src/Ice/Plugin.cpp +45 -6
data/ext/ice/cpp/src/Ice/PluginF.cpp +27 -5
data/ext/ice/cpp/src/Ice/PluginManagerI.cpp +13 -13
data/ext/ice/cpp/src/Ice/PluginManagerI.h +5 -6
data/ext/ice/cpp/src/Ice/Process.cpp +256 -114
data/ext/ice/cpp/src/Ice/ProcessF.cpp +29 -6
data/ext/ice/cpp/src/Ice/Properties.cpp +38 -8
data/ext/ice/cpp/src/Ice/PropertiesAdmin.cpp +340 -328
data/ext/ice/cpp/src/Ice/PropertiesAdminI.cpp +81 -17
data/ext/ice/cpp/src/Ice/PropertiesAdminI.h +29 -5
data/ext/ice/cpp/src/Ice/PropertiesF.cpp +29 -6
data/ext/ice/cpp/src/Ice/PropertiesI.cpp +25 -26
data/ext/ice/cpp/src/Ice/PropertiesI.h +8 -11
data/ext/ice/cpp/src/Ice/PropertyNames.cpp +107 -50
data/ext/ice/cpp/src/Ice/PropertyNames.h +4 -2
data/ext/ice/cpp/src/Ice/Protocol.cpp +2 -2
data/ext/ice/cpp/src/Ice/ProtocolInstance.cpp +37 -2
data/ext/ice/cpp/src/Ice/ProtocolInstance.h +9 -20
data/ext/ice/cpp/src/Ice/ProtocolInstanceF.h +1 -1
data/ext/ice/cpp/src/Ice/ProtocolPluginFacade.cpp +6 -1
data/ext/ice/cpp/src/Ice/ProtocolPluginFacade.h +3 -1
data/ext/ice/cpp/src/Ice/ProtocolPluginFacadeF.h +1 -1
data/ext/ice/cpp/src/Ice/Proxy.cpp +690 -964
data/ext/ice/cpp/src/Ice/ProxyFactory.cpp +23 -32
data/ext/ice/cpp/src/Ice/ProxyFactory.h +16 -11
data/ext/ice/cpp/src/Ice/Reference.cpp +75 -69
data/ext/ice/cpp/src/Ice/Reference.h +27 -22
data/ext/ice/cpp/src/Ice/ReferenceFactory.cpp +18 -21
data/ext/ice/cpp/src/Ice/ReferenceFactory.h +12 -12
data/ext/ice/cpp/src/Ice/ReferenceFactoryF.h +1 -1
data/ext/ice/cpp/src/Ice/RegisterPluginsInit.cpp +18 -4
data/ext/ice/cpp/src/Ice/RegisterPluginsInit.h +1 -1
data/ext/ice/cpp/src/Ice/RemoteLogger.cpp +672 -552
data/ext/ice/cpp/src/Ice/ReplyStatus.h +1 -1
data/ext/ice/cpp/src/Ice/RequestHandler.cpp +5 -3
data/ext/ice/cpp/src/Ice/RequestHandler.h +10 -13
data/ext/ice/cpp/src/Ice/RequestHandlerFactory.cpp +10 -6
data/ext/ice/cpp/src/Ice/RequestHandlerFactory.h +2 -2
data/ext/ice/cpp/src/Ice/ResponseHandler.cpp +3 -6
data/ext/ice/cpp/src/Ice/ResponseHandler.h +16 -7
data/ext/ice/cpp/src/Ice/RetryQueue.cpp +6 -12
data/ext/ice/cpp/src/Ice/RetryQueue.h +7 -6
data/ext/ice/cpp/src/Ice/RetryQueueF.h +1 -1
data/ext/ice/cpp/src/Ice/Router.cpp +523 -474
data/ext/ice/cpp/src/Ice/RouterF.cpp +29 -6
data/ext/ice/cpp/src/Ice/RouterInfo.cpp +91 -70
data/ext/ice/cpp/src/Ice/RouterInfo.h +43 -32
data/ext/ice/cpp/src/Ice/RouterInfoF.h +1 -1
data/ext/ice/cpp/src/{IceUtil → Ice}/SHA1.cpp +21 -21
data/ext/ice/cpp/src/Ice/Selector.cpp +989 -923
data/ext/ice/cpp/src/Ice/Selector.h +100 -147
data/ext/ice/cpp/src/Ice/ServantLocator.cpp +37 -6
data/ext/ice/cpp/src/Ice/ServantLocatorF.cpp +27 -5
data/ext/ice/cpp/src/Ice/ServantManager.cpp +9 -9
data/ext/ice/cpp/src/Ice/ServantManager.h +1 -1
data/ext/ice/cpp/src/Ice/SharedContext.h +2 -2
data/ext/ice/cpp/src/Ice/SliceChecksumDict.cpp +20 -6
data/ext/ice/cpp/src/Ice/SliceChecksums.cpp +2 -2
data/ext/ice/cpp/src/Ice/SlicedData.cpp +72 -20
data/ext/ice/cpp/src/Ice/StreamSocket.cpp +173 -18
data/ext/ice/cpp/src/Ice/StreamSocket.h +13 -4
data/ext/ice/cpp/src/Ice/StringConverterPlugin.cpp +48 -17
data/ext/ice/cpp/src/Ice/StringUtil.h +35 -0
data/ext/ice/cpp/src/Ice/SysLoggerI.cpp +8 -4
data/ext/ice/cpp/src/Ice/SysLoggerI.h +2 -3
data/ext/ice/cpp/src/Ice/TcpAcceptor.cpp +158 -32
data/ext/ice/cpp/src/Ice/TcpAcceptor.h +12 -5
data/ext/ice/cpp/src/Ice/TcpConnector.cpp +1 -7
data/ext/ice/cpp/src/Ice/TcpConnector.h +1 -2
data/ext/ice/cpp/src/Ice/TcpEndpointI.cpp +40 -32
data/ext/ice/cpp/src/Ice/TcpEndpointI.h +11 -8
data/ext/ice/cpp/src/Ice/TcpTransceiver.cpp +12 -27
data/ext/ice/cpp/src/Ice/TcpTransceiver.h +7 -10
data/ext/ice/cpp/src/{IceUtil → Ice}/Thread.cpp +24 -41
data/ext/ice/cpp/src/Ice/ThreadPool.cpp +175 -267
data/ext/ice/cpp/src/Ice/ThreadPool.h +38 -43
data/ext/ice/cpp/src/{IceUtil → Ice}/Timer.cpp +28 -21
data/ext/ice/cpp/src/Ice/TraceLevels.cpp +2 -2
data/ext/ice/cpp/src/Ice/TraceLevels.h +1 -1
data/ext/ice/cpp/src/Ice/TraceLevelsF.h +2 -2
data/ext/ice/cpp/src/Ice/TraceUtil.cpp +53 -31
data/ext/ice/cpp/src/Ice/TraceUtil.h +13 -6
data/ext/ice/cpp/src/Ice/Transceiver.cpp +1 -2
data/ext/ice/cpp/src/Ice/Transceiver.h +8 -7
data/ext/ice/cpp/src/Ice/TransceiverF.h +1 -1
data/ext/ice/cpp/src/Ice/UdpConnector.cpp +2 -8
data/ext/ice/cpp/src/Ice/UdpConnector.h +1 -2
data/ext/ice/cpp/src/Ice/UdpEndpointI.cpp +92 -31
data/ext/ice/cpp/src/Ice/UdpEndpointI.h +12 -4
data/ext/ice/cpp/src/Ice/UdpTransceiver.cpp +150 -179
data/ext/ice/cpp/src/Ice/UdpTransceiver.h +15 -17
data/ext/ice/cpp/src/Ice/Value.cpp +81 -0
data/ext/ice/cpp/src/Ice/ValueFactory.cpp +84 -0
data/ext/ice/cpp/src/Ice/ValueFactoryManagerI.cpp +70 -0
data/ext/ice/cpp/src/Ice/ValueFactoryManagerI.h +42 -0
data/ext/ice/cpp/src/Ice/Version.cpp +24 -14
data/ext/ice/cpp/src/Ice/VirtualShared.h +43 -0
data/ext/ice/cpp/src/Ice/WSAcceptor.cpp +3 -9
data/ext/ice/cpp/src/Ice/WSAcceptor.h +3 -7
data/ext/ice/cpp/src/Ice/WSConnector.cpp +5 -11
data/ext/ice/cpp/src/Ice/WSConnector.h +3 -6
data/ext/ice/cpp/src/Ice/WSEndpoint.cpp +185 -80
data/ext/ice/cpp/src/Ice/WSEndpoint.h +21 -31
data/ext/ice/cpp/src/Ice/WSTransceiver.cpp +41 -37
data/ext/ice/cpp/src/Ice/WSTransceiver.h +7 -21
data/ext/ice/cpp/src/IceDiscovery/IceDiscovery.cpp +526 -264
data/ext/ice/cpp/src/IceDiscovery/IceDiscovery.h +341 -455
data/ext/ice/cpp/src/IceDiscovery/LocatorI.cpp +86 -26
data/ext/ice/cpp/src/IceDiscovery/LocatorI.h +59 -23
data/ext/ice/cpp/src/IceDiscovery/LookupI.cpp +315 -61
data/ext/ice/cpp/src/IceDiscovery/LookupI.h +83 -36
data/ext/ice/cpp/src/IceDiscovery/PluginI.cpp +57 -59
data/ext/ice/cpp/src/IceDiscovery/PluginI.h +3 -3
data/ext/ice/cpp/src/IceLocatorDiscovery/IceLocatorDiscovery.cpp +396 -159
data/ext/ice/cpp/src/IceLocatorDiscovery/IceLocatorDiscovery.h +251 -355
data/ext/ice/cpp/src/IceLocatorDiscovery/Plugin.h +52 -0
data/ext/ice/cpp/src/IceLocatorDiscovery/PluginI.cpp +526 -131
data/ext/ice/cpp/src/IceSSL/AcceptorI.cpp +19 -165
data/ext/ice/cpp/src/IceSSL/AcceptorI.h +8 -17
data/ext/ice/cpp/src/IceSSL/CertificateI.cpp +284 -0
data/ext/ice/cpp/src/IceSSL/CertificateI.h +69 -0
data/ext/ice/cpp/src/IceSSL/ConnectionInfo.cpp +39 -11
data/ext/ice/cpp/src/{Ice/ObjectFactoryF.cpp → IceSSL/ConnectionInfoF.cpp} +31 -9
data/ext/ice/cpp/src/IceSSL/ConnectorI.cpp +14 -56
data/ext/ice/cpp/src/IceSSL/ConnectorI.h +6 -13
data/ext/ice/cpp/src/IceSSL/EndpointI.cpp +205 -197
data/ext/ice/cpp/src/IceSSL/EndpointI.h +41 -33
data/ext/ice/cpp/src/IceSSL/EndpointInfo.cpp +39 -10
data/ext/ice/cpp/src/IceSSL/Instance.cpp +1 -6
data/ext/ice/cpp/src/IceSSL/Instance.h +7 -7
data/ext/ice/cpp/src/IceSSL/InstanceF.h +11 -7
data/ext/ice/cpp/src/IceSSL/OpenSSLCertificateI.cpp +588 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLEngine.cpp +117 -152
data/ext/ice/cpp/src/IceSSL/OpenSSLEngine.h +64 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLEngineF.h +32 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLPluginI.cpp +132 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLTransceiverI.cpp +400 -89
data/ext/ice/cpp/src/IceSSL/OpenSSLTransceiverI.h +36 -21
data/ext/ice/cpp/src/IceSSL/OpenSSLUtil.cpp +291 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLUtil.h +63 -0
data/ext/ice/cpp/src/IceSSL/PluginI.cpp +71 -41
data/ext/ice/cpp/src/IceSSL/PluginI.h +13 -18
data/ext/ice/cpp/src/IceSSL/RFC2253.cpp +9 -54
data/ext/ice/cpp/src/IceSSL/RFC2253.h +7 -7
data/ext/ice/cpp/src/IceSSL/SChannelCertificateI.cpp +585 -0
data/ext/ice/cpp/src/IceSSL/SChannelEngine.cpp +491 -75
data/ext/ice/cpp/src/IceSSL/SChannelEngine.h +126 -0
data/ext/ice/cpp/src/IceSSL/SChannelEngineF.h +32 -0
data/ext/ice/cpp/src/IceSSL/SChannelPluginI.cpp +78 -0
data/ext/ice/cpp/src/IceSSL/SChannelTransceiverI.cpp +126 -169
data/ext/ice/cpp/src/IceSSL/SChannelTransceiverI.h +19 -22
data/ext/ice/cpp/src/IceSSL/SSLEngine.cpp +79 -74
data/ext/ice/cpp/src/IceSSL/SSLEngine.h +24 -187
data/ext/ice/cpp/src/IceSSL/SSLEngineF.h +4 -19
data/ext/ice/cpp/src/IceSSL/SecureTransportCertificateI.cpp +862 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportEngine.cpp +56 -214
data/ext/ice/cpp/src/IceSSL/SecureTransportEngine.h +60 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportEngineF.h +31 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportPluginI.cpp +80 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.cpp +137 -144
data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.h +25 -28
data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.cpp +857 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.h +46 -0
data/ext/ice/cpp/src/IceSSL/TrustManager.cpp +9 -13
data/ext/ice/cpp/src/IceSSL/TrustManager.h +4 -4
data/ext/ice/cpp/src/IceSSL/TrustManagerF.h +3 -3
data/ext/ice/cpp/src/IceSSL/UWPCertificateI.cpp +271 -0
data/ext/ice/cpp/src/IceSSL/UWPEngine.cpp +343 -0
data/ext/ice/cpp/src/IceSSL/UWPEngine.h +46 -0
data/ext/ice/cpp/{include/Ice/ObjectFactoryManagerF.h → src/IceSSL/UWPEngineF.h} +13 -8
data/ext/ice/cpp/src/IceSSL/UWPPluginI.cpp +94 -0
data/ext/ice/cpp/src/IceSSL/UWPTransceiverI.cpp +388 -0
data/ext/ice/cpp/src/IceSSL/UWPTransceiverI.h +76 -0
data/ext/ice/cpp/src/IceSSL/Util.cpp +66 -1256
data/ext/ice/cpp/src/IceSSL/Util.h +48 -137
data/ext/ice/cpp/src/IceUtil/ConsoleUtil.cpp +162 -0
data/ext/ice/cpp/src/IceUtil/ConvertUTF.cpp +22 -22
data/ext/ice/cpp/src/IceUtil/ConvertUTF.h +34 -26
data/ext/ice/cpp/src/IceUtil/CtrlCHandler.cpp +20 -31
data/ext/ice/cpp/src/IceUtil/FileUtil.cpp +25 -116
data/ext/ice/cpp/src/IceUtil/InputUtil.cpp +1 -1
data/ext/ice/cpp/src/IceUtil/MutexProtocol.cpp +1 -1
data/ext/ice/cpp/src/IceUtil/Options.cpp +23 -46
data/ext/ice/cpp/src/IceUtil/OutputUtil.cpp +7 -6
data/ext/ice/cpp/src/IceUtil/Random.cpp +13 -13
data/ext/ice/cpp/src/IceUtil/RecMutex.cpp +3 -9
data/ext/ice/cpp/src/IceUtil/Shared.cpp +8 -3
data/ext/ice/cpp/src/IceUtil/StringConverter.cpp +501 -264
data/ext/ice/cpp/src/IceUtil/StringUtil.cpp +540 -235
data/ext/ice/cpp/src/IceUtil/ThreadException.cpp +37 -74
data/ext/ice/cpp/src/IceUtil/Time.cpp +1 -1
data/ext/ice/cpp/src/IceUtil/UUID.cpp +10 -10
data/ext/ice/cpp/src/IceUtil/Unicode.cpp +98 -97
data/ext/ice/cpp/src/IceUtil/Unicode.h +21 -35
data/ext/ice/cpp/src/IceUtil/UtilException.cpp +838 -0
data/ext/ice/cpp/src/Slice/CPlusPlusUtil.cpp +815 -163
data/ext/ice/cpp/src/Slice/CPlusPlusUtil.h +76 -0
data/ext/ice/cpp/src/Slice/Checksum.cpp +2 -2
data/ext/ice/cpp/{include → src}/Slice/Checksum.h +2 -2
data/ext/ice/cpp/src/Slice/FileTracker.cpp +25 -78
data/ext/ice/cpp/{include → src}/Slice/FileTracker.h +9 -9
data/ext/ice/cpp/src/Slice/Grammar.cpp +1994 -1943
data/ext/ice/cpp/src/Slice/Grammar.h +44 -24
data/ext/ice/cpp/src/Slice/GrammarUtil.h +14 -14
data/ext/ice/cpp/src/Slice/JavaUtil.cpp +2658 -1927
data/ext/ice/cpp/{include → src}/Slice/JavaUtil.h +178 -59
data/ext/ice/cpp/src/Slice/MD5.cpp +1 -1
data/ext/ice/cpp/src/Slice/MD5.h +1 -1
data/ext/ice/cpp/src/Slice/MD5I.cpp +0 -1
data/ext/ice/cpp/src/Slice/MD5I.h +1 -1
data/ext/ice/cpp/src/Slice/PHPUtil.cpp +12 -15
data/ext/ice/cpp/{include → src}/Slice/PHPUtil.h +6 -15
data/ext/ice/cpp/src/Slice/Parser.cpp +802 -307
data/ext/ice/cpp/{include → src}/Slice/Parser.h +76 -84
data/ext/ice/cpp/src/Slice/Preprocessor.cpp +43 -21
data/ext/ice/cpp/{include → src}/Slice/Preprocessor.h +7 -12
data/ext/ice/cpp/src/Slice/Python.cpp +207 -86
data/ext/ice/cpp/src/Slice/PythonUtil.cpp +683 -679
data/ext/ice/cpp/{include → src}/Slice/PythonUtil.h +19 -8
data/ext/ice/cpp/src/Slice/Ruby.cpp +38 -34
data/ext/ice/cpp/src/Slice/RubyUtil.cpp +177 -445
data/ext/ice/cpp/{include → src}/Slice/RubyUtil.h +6 -6
data/ext/ice/cpp/src/Slice/Scanner.cpp +218 -306
data/ext/ice/cpp/src/Slice/{Util.cpp → SliceUtil.cpp} +37 -64
data/ext/ice/cpp/src/Slice/StringLiteralUtil.cpp +374 -0
data/ext/ice/cpp/src/Slice/Util.h +54 -0
data/ext/ice/mcpp/Makefile +5 -2
data/ice.gemspec +2 -7
data/lib/Glacier2.rb +1 -1
data/lib/Glacier2/Metrics.rb +7 -46
data/lib/Glacier2/PermissionsVerifier.rb +24 -95
data/lib/Glacier2/PermissionsVerifierF.rb +3 -3
data/lib/Glacier2/Router.rb +32 -74
data/lib/Glacier2/RouterF.rb +3 -3
data/lib/Glacier2/SSLInfo.rb +4 -7
data/lib/Glacier2/Session.rb +88 -307
data/lib/Ice.rb +83 -52
data/lib/Ice/BuiltinSequences.rb +4 -4
data/lib/Ice/Communicator.rb +56 -58
data/lib/Ice/CommunicatorF.rb +3 -3
data/lib/Ice/Connection.rb +153 -162
data/lib/Ice/ConnectionF.rb +3 -3
data/lib/Ice/Current.rb +4 -11
data/lib/Ice/Endpoint.rb +57 -133
data/lib/Ice/EndpointF.rb +3 -3
data/lib/Ice/EndpointTypes.rb +3 -7
data/lib/Ice/FacetMap.rb +4 -4
data/lib/Ice/Identity.rb +5 -8
data/lib/Ice/ImplicitContext.rb +5 -34
data/lib/Ice/ImplicitContextF.rb +3 -3
data/lib/Ice/Instrumentation.rb +23 -275
data/lib/Ice/InstrumentationF.rb +3 -3
data/lib/Ice/LocalException.rb +95 -141
data/lib/Ice/Locator.rb +51 -165
data/lib/Ice/LocatorF.rb +3 -3
data/lib/Ice/Logger.rb +5 -34
data/lib/Ice/LoggerF.rb +3 -3
data/lib/Ice/Metrics.rb +61 -416
data/lib/Ice/ObjectAdapter.rb +34 -0
data/lib/Ice/ObjectAdapterF.rb +3 -3
data/lib/Ice/ObjectFactory.rb +5 -30
data/lib/Ice/Plugin.rb +7 -60
data/lib/Ice/PluginF.rb +3 -3
data/lib/Ice/Process.rb +16 -52
data/lib/Ice/ProcessF.rb +3 -3
data/lib/Ice/Properties.rb +5 -41
data/lib/Ice/PropertiesAdmin.rb +19 -56
data/lib/Ice/PropertiesF.rb +3 -3
data/lib/Ice/RemoteLogger.rb +34 -115
data/lib/Ice/Router.rb +29 -101
data/lib/Ice/RouterF.rb +3 -3
data/lib/Ice/ServantLocator.rb +31 -0
data/lib/Ice/{ObjectFactoryF.rb → ServantLocatorF.rb} +6 -6
data/lib/Ice/SliceChecksumDict.rb +3 -3
data/lib/Ice/ValueFactory.rb +33 -0
data/lib/Ice/Version.rb +5 -11
data/lib/IceBox.rb +1 -1
data/lib/IceBox/IceBox.rb +44 -148
data/lib/IceGrid.rb +1 -4
data/lib/IceGrid/Admin.rb +551 -427
data/lib/IceGrid/Descriptor.rb +62 -529
data/lib/IceGrid/Exception.rb +24 -45
data/lib/IceGrid/FileParser.rb +14 -50
data/lib/IceGrid/PluginFacade.rb +40 -0
data/lib/IceGrid/Registry.rb +151 -58
data/lib/IceGrid/Session.rb +25 -64
data/lib/IceGrid/UserAccountMapper.rb +14 -50
data/lib/IcePatch2.rb +1 -1
data/lib/IcePatch2/FileInfo.rb +5 -11
data/lib/IcePatch2/FileServer.rb +33 -76
data/lib/IceStorm.rb +1 -1
data/lib/IceStorm/IceStorm.rb +79 -206
data/lib/IceStorm/Metrics.rb +11 -89
data/slice/Glacier2/Metrics.ice +8 -4
data/slice/Glacier2/PermissionsVerifier.ice +10 -7
data/slice/Glacier2/PermissionsVerifierF.ice +7 -4
data/slice/Glacier2/Router.ice +10 -8
data/slice/Glacier2/RouterF.ice +7 -4
data/slice/Glacier2/SSLInfo.ice +8 -5
data/slice/Glacier2/Session.ice +15 -13
data/slice/Ice/BuiltinSequences.ice +7 -4
data/slice/Ice/Communicator.ice +141 -66
data/slice/Ice/CommunicatorF.ice +7 -4
data/slice/Ice/Connection.ice +183 -86
data/slice/Ice/ConnectionF.ice +7 -4
data/slice/Ice/Current.ice +13 -9
data/slice/Ice/Endpoint.ice +63 -14
data/slice/Ice/EndpointF.ice +7 -4
data/slice/Ice/EndpointTypes.ice +8 -6
data/slice/Ice/FacetMap.ice +7 -4
data/slice/Ice/Identity.ice +13 -5
data/slice/Ice/ImplicitContext.ice +20 -18
data/slice/Ice/ImplicitContextF.ice +7 -4
data/slice/Ice/Instrumentation.ice +20 -19
data/slice/Ice/InstrumentationF.ice +8 -5
data/slice/Ice/LocalException.ice +87 -87
data/slice/Ice/Locator.ice +19 -18
data/slice/Ice/LocatorF.ice +7 -4
data/slice/Ice/Logger.ice +9 -7
data/slice/Ice/LoggerF.ice +7 -4
data/slice/Ice/Metrics.ice +18 -14
data/slice/Ice/ObjectAdapter.ice +30 -13
data/slice/Ice/ObjectAdapterF.ice +7 -4
data/slice/Ice/ObjectFactory.ice +15 -12
data/slice/Ice/Plugin.ice +9 -6
data/slice/Ice/PluginF.ice +8 -5
data/slice/Ice/Process.ice +9 -6
data/slice/Ice/ProcessF.ice +7 -4
data/slice/Ice/Properties.ice +15 -12
data/slice/Ice/PropertiesAdmin.ice +9 -5
data/slice/Ice/PropertiesF.ice +7 -4
data/slice/Ice/RemoteLogger.ice +33 -24
data/slice/Ice/Router.ice +16 -7
data/slice/Ice/RouterF.ice +7 -4
data/slice/Ice/ServantLocator.ice +13 -10
data/slice/Ice/ServantLocatorF.ice +7 -4
data/slice/Ice/SliceChecksumDict.ice +7 -4
data/slice/Ice/ValueFactory.ice +127 -0
data/slice/Ice/Version.ice +9 -5
data/slice/IceBT/ConnectionInfo.ice +53 -0
data/slice/IceBT/EndpointInfo.ice +51 -0
data/slice/IceBT/Types.ice +39 -0
data/slice/IceBox/IceBox.ice +20 -21
data/slice/IceDiscovery/IceDiscovery.ice +9 -5
data/slice/IceGrid/Admin.ice +390 -30
data/slice/IceGrid/Descriptor.ice +37 -29
data/slice/IceGrid/Exception.ice +33 -27
data/slice/IceGrid/FileParser.ice +9 -6
data/slice/IceGrid/PluginFacade.ice +11 -9
data/slice/IceGrid/Registry.ice +139 -16
data/slice/IceGrid/Session.ice +10 -8
data/slice/IceGrid/UserAccountMapper.ice +9 -6
data/slice/IceIAP/ConnectionInfo.ice +70 -0
data/slice/IceIAP/EndpointInfo.ice +64 -0
data/slice/IceLocatorDiscovery/IceLocatorDiscovery.ice +9 -7
data/slice/IcePatch2/FileInfo.ice +9 -8
data/slice/IcePatch2/FileServer.ice +17 -13
data/slice/IceSSL/ConnectionInfo.ice +14 -17
data/slice/IceSSL/ConnectionInfoF.ice +24 -0
data/slice/IceSSL/EndpointInfo.ice +9 -30
data/slice/IceStorm/IceStorm.ice +22 -18
data/slice/IceStorm/Metrics.ice +9 -5
metadata +154 -120
data/ext/ObjectFactory.cpp +0 -140
data/ext/ObjectFactory.h +0 -50
data/ext/ice/cpp/include/Ice/BasicStream.h +0 -1335
data/ext/ice/cpp/include/Ice/Communicator.h +0 -200
data/ext/ice/cpp/include/Ice/Connection.h +0 -497
data/ext/ice/cpp/include/Ice/DeprecatedStringConverter.h +0 -62
data/ext/ice/cpp/include/Ice/Endpoint.h +0 -341
data/ext/ice/cpp/include/Ice/Identity.h +0 -168
data/ext/ice/cpp/include/Ice/Instrumentation.h +0 -365
data/ext/ice/cpp/include/Ice/LocalException.h +0 -1030
data/ext/ice/cpp/include/Ice/Locator.h +0 -2193
data/ext/ice/cpp/include/Ice/Metrics.h +0 -2974
data/ext/ice/cpp/include/Ice/ObjectAdapter.h +0 -168
data/ext/ice/cpp/include/Ice/ObjectFactory.h +0 -92
data/ext/ice/cpp/include/Ice/ObjectFactoryF.h +0 -66
data/ext/ice/cpp/include/Ice/Outgoing.h +0 -225
data/ext/ice/cpp/include/Ice/Plugin.h +0 -125
data/ext/ice/cpp/include/Ice/Process.h +0 -574
data/ext/ice/cpp/include/Ice/PropertiesAdmin.h +0 -830
data/ext/ice/cpp/include/Ice/RemoteLogger.h +0 -1500
data/ext/ice/cpp/include/Ice/Router.h +0 -1159
data/ext/ice/cpp/include/Ice/Stream.h +0 -447
data/ext/ice/cpp/include/Ice/StreamF.h +0 -30
data/ext/ice/cpp/include/Ice/Version.h +0 -262
data/ext/ice/cpp/include/IceSSL/ConnectionInfo.h +0 -158
data/ext/ice/cpp/include/IceSSL/EndpointInfo.h +0 -142
data/ext/ice/cpp/include/IceUtil/AbstractMutex.h +0 -119
data/ext/ice/cpp/include/IceUtil/Cache.h +0 -362
data/ext/ice/cpp/include/Slice/CPlusPlusUtil.h +0 -65
data/ext/ice/cpp/include/Slice/CsUtil.h +0 -92
data/ext/ice/cpp/include/Slice/DotNetNames.h +0 -34
data/ext/ice/cpp/include/Slice/ObjCUtil.h +0 -127
data/ext/ice/cpp/include/Slice/Util.h +0 -56
data/ext/ice/cpp/src/Ice/BasicStream.cpp +0 -3428
data/ext/ice/cpp/src/Ice/DeprecatedStringConverter.cpp +0 -62
data/ext/ice/cpp/src/Ice/ObjectFactoryManager.cpp +0 -139
data/ext/ice/cpp/src/Ice/ObjectFactoryManager.h +0 -43
data/ext/ice/cpp/src/Ice/Outgoing.cpp +0 -694
data/ext/ice/cpp/src/Ice/Stream.cpp +0 -53
data/ext/ice/cpp/src/Ice/StreamI.cpp +0 -832
data/ext/ice/cpp/src/Ice/StreamI.h +0 -198
data/ext/ice/cpp/src/IceSSL/Certificate.cpp +0 -1336
data/ext/ice/cpp/src/IceUtil/Exception.cpp +0 -792
data/ext/ice/cpp/src/IceUtil/FileUtil.h +0 -185
data/ext/ice/cpp/src/Slice/CsUtil.cpp +0 -2660
data/ext/ice/cpp/src/Slice/DotNetNames.cpp +0 -146
data/ext/ice/cpp/src/Slice/ObjCUtil.cpp +0 -1310
data/lib/IceGrid/Locator.rb +0 -106
data/lib/IceGrid/Observer.rb +0 -572
data/lib/IceGrid/Query.rb +0 -169
data/slice/Freeze/BackgroundSaveEvictor.ice +0 -111
data/slice/Freeze/CatalogData.ice +0 -49
data/slice/Freeze/Connection.ice +0 -121
data/slice/Freeze/DB.ice +0 -37
data/slice/Freeze/Evictor.ice +0 -346
data/slice/Freeze/EvictorF.ice +0 -22
data/slice/Freeze/EvictorStorage.ice +0 -72
data/slice/Freeze/Exception.ice +0 -100
data/slice/Freeze/Transaction.ice +0 -58
data/slice/Freeze/TransactionalEvictor.ice +0 -50
data/slice/IceGrid/Locator.ice +0 -57
data/slice/IceGrid/Observer.ice +0 -395
data/slice/IceGrid/Query.ice +0 -131

data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.h CHANGED

@@ -1,53 +1,50 @@
 // **********************************************************************
 //
-// Copyright (c) 2003-2018 ZeroC, Inc. All rights reserved.
+// Copyright (c) 2003-2017 ZeroC, Inc. All rights reserved.
 //
 // This copy of Ice is licensed to you under the terms described in the
 // ICE_LICENSE file included in this distribution.
 //
 // **********************************************************************
-#ifndef ICE_SSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
-#define ICE_SSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
+#ifndef ICESSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
+#define ICESSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
 #include <IceSSL/Config.h>
 #include <IceSSL/InstanceF.h>
-#include <IceSSL/SSLEngineF.h>
+#include <IceSSL/SecureTransportEngineF.h>
 #include <IceSSL/Plugin.h>
 #include <Ice/Transceiver.h>
+#include <Ice/UniqueRef.h>
 #include <Ice/Network.h>
-#include <Ice/StreamSocket.h>
-#include <Ice/WSTransceiver.h>
-#ifdef ICE_USE_SECURE_TRANSPORT
 #include <Security/Security.h>
+#include <Security/SecureTransport.h>
 #include <CoreFoundation/CoreFoundation.h>
 namespace IceSSL
 {
-class ConnectorI;
-class AcceptorI;
+namespace SecureTransport
+{
-class TransceiverI : public IceInternal::Transceiver, public IceInternal::WSTransceiverDelegate
+class TransceiverI : public IceInternal::Transceiver
 {
 public:
     virtual IceInternal::NativeInfoPtr getNativeInfo();
-    virtual IceInternal::SocketOperation initialize(IceInternal::Buffer&, IceInternal::Buffer&, bool&);
+    virtual IceInternal::SocketOperation initialize(IceInternal::Buffer&, IceInternal::Buffer&);
     virtual IceInternal::SocketOperation closing(bool, const Ice::LocalException&);
     virtual void close();
     virtual IceInternal::SocketOperation write(IceInternal::Buffer&);
-    virtual IceInternal::SocketOperation read(IceInternal::Buffer&, bool&);
+    virtual IceInternal::SocketOperation read(IceInternal::Buffer&);
     virtual std::string protocol() const;
     virtual std::string toString() const;
     virtual std::string toDetailedString() const;
     virtual Ice::ConnectionInfoPtr getInfo() const;
-    virtual Ice::ConnectionInfoPtr getWSInfo(const Ice::HeaderDict&) const;
     virtual void checkSendSize(const IceInternal::Buffer&);
     virtual void setBufferSize(int rcvSize, int sndSize);
@@ -56,26 +53,22 @@ public:
 private:
-    TransceiverI(const InstancePtr&, const IceInternal::StreamSocketPtr&, const std::string&, bool);
+    TransceiverI(const InstancePtr&, const IceInternal::TransceiverPtr&, const std::string&, bool);
     virtual ~TransceiverI();
-    void fillConnectionInfo(const ConnectionInfoPtr&, std::vector<CertificatePtr>&) const;
-    friend class ConnectorI;
-    friend class AcceptorI;
+    friend class IceSSL::SecureTransport::SSLEngine;
     const InstancePtr _instance;
-    const SecureTransportEnginePtr _engine;
+    const SSLEnginePtr _engine;
     const std::string _host;
     const std::string _adapterName;
     const bool _incoming;
-    const IceInternal::StreamSocketPtr _stream;
+    const IceInternal::TransceiverPtr _delegate;
+    IceInternal::UniqueRef<SSLContextRef> _ssl;
+    IceInternal::UniqueRef<SecTrustRef> _trust;
+    bool _connected;
-    SSLContextRef _ssl;
-    SecTrustRef _trust;
-    bool _verified;
-    size_t _buffered;
     enum SSLWantFlags
     {
         SSLWantRead = 0x1,
@@ -85,11 +78,15 @@ private:
     mutable Ice::Byte _flags;
     size_t _maxSendPacketSize;
     size_t _maxRecvPacketSize;
+    std::string _cipher;
+    std::vector<CertificatePtr> _certs;
+    bool _verified;
+    size_t _buffered;
 };
 typedef IceUtil::Handle<TransceiverI> TransceiverIPtr;
-}
+} // SecureTransport namespace end
-#endif
+} // IceSSL namespace end
 #endif

data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.cpp ADDED

@@ -0,0 +1,857 @@
+// **********************************************************************
+//
+// Copyright (c) 2003-2017 ZeroC, Inc. All rights reserved.
+//
+// This copy of Ice is licensed to you under the terms described in the
+// ICE_LICENSE file included in this distribution.
+//
+// **********************************************************************
+#include <IceSSL/SecureTransportUtil.h>
+#include <IceSSL/Plugin.h>
+#include <Ice/Base64.h>
+#include <Ice/UniqueRef.h>
+#include <Ice/LocalException.h>
+#include <IceUtil/FileUtil.h>
+#include <IceUtil/StringUtil.h>
+#include <fstream>
+#include <Security/Security.h>
+#include <CoreFoundation/CoreFoundation.h>
+using namespace Ice;
+using namespace IceInternal;
+using namespace IceSSL;
+using namespace IceSSL::SecureTransport;
+using namespace std;
+namespace
+{
+CFMutableDataRef
+readCertFile(const string& file)
+{
+    ifstream is(IceUtilInternal::streamFilename(file).c_str(), ios::in | ios::binary);
+    if(!is.good())
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "error opening file " + file);
+    }
+    is.seekg(0, is.end);
+    size_t size = is.tellg();
+    is.seekg(0, is.beg);
+    UniqueRef<CFMutableDataRef> data(CFDataCreateMutable(kCFAllocatorDefault, size));
+    CFDataSetLength(data.get(), size);
+    is.read(reinterpret_cast<char*>(CFDataGetMutableBytePtr(data.get())), size);
+    if(!is.good())
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "error reading file " + file);
+    }
+    return data.release();
+}
+}
+string
+IceSSL::SecureTransport::sslErrorToString(CFErrorRef err)
+{
+    ostringstream os;
+    if(err)
+    {
+        UniqueRef<CFStringRef> s(CFErrorCopyDescription(err));
+        os << "(error: " << CFErrorGetCode(err) << " description: " << fromCFString(s.get()) << ")";
+    }
+    return os.str();
+}
+string
+IceSSL::SecureTransport::sslErrorToString(OSStatus status)
+{
+    ostringstream os;
+    os << "(error: " << status;
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+    UniqueRef<CFStringRef> s(SecCopyErrorMessageString(status, 0));
+    if(s)
+    {
+        os << " description: " << fromCFString(s.get());
+    }
+#endif
+    os << ")";
+    return os.str();
+}
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+CFDictionaryRef
+IceSSL::SecureTransport::getCertificateProperty(SecCertificateRef cert, CFTypeRef key)
+{
+    UniqueRef<CFDictionaryRef> property;
+    UniqueRef<CFArrayRef> keys(CFArrayCreate(ICE_NULLPTR, &key , 1, &kCFTypeArrayCallBacks));
+    UniqueRef<CFErrorRef> err;
+    UniqueRef<CFDictionaryRef> values(SecCertificateCopyValues(cert, keys.get(), &err.get()));
+    if(err)
+    {
+        ostringstream os;
+        os << "IceSSL: error getting property for certificate:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    assert(values);
+    property.retain(static_cast<CFDictionaryRef>(CFDictionaryGetValue(values.get(), key)));
+    return property.release();
+}
+namespace
+{
+//
+// Check the certificate basic constraints to check if the certificate is marked as a CA.
+//
+bool
+isCA(SecCertificateRef cert)
+{
+    UniqueRef<CFDictionaryRef> property(getCertificateProperty(cert, kSecOIDBasicConstraints));
+    if(property)
+    {
+        CFArrayRef propertyValues = static_cast<CFArrayRef>(CFDictionaryGetValue(property.get(), kSecPropertyKeyValue));
+        for(int i = 0, size = CFArrayGetCount(propertyValues); i < size; ++i)
+        {
+            CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(propertyValues, i));
+            CFStringRef label = static_cast<CFStringRef>(CFDictionaryGetValue(dict, kSecPropertyKeyLabel));
+            if(CFEqual(label, CFSTR("Certificate Authority")))
+            {
+                return CFEqual(static_cast<CFStringRef>(CFDictionaryGetValue(dict, kSecPropertyKeyValue)), CFSTR("Yes"));
+            }
+        }
+    }
+    return false;
+}
+//
+// Load keychain items (Certificates or Private Keys) from a file. On return items param contain
+// the list of items, the caller must release it.
+//
+CFArrayRef
+loadKeychainItems(const string& file, SecExternalItemType type, SecKeychainRef keychain, const string& passphrase,
+                  const PasswordPromptPtr& prompt, int retryMax)
+{
+    UniqueRef<CFMutableDataRef> data(readCertFile(file));
+    SecItemImportExportKeyParameters params;
+    memset(&params, 0, sizeof(params));
+    params.version =  SEC_KEY_IMPORT_EXPORT_PARAMS_VERSION;
+    params.flags |= kSecKeyNoAccessControl;
+    UniqueRef<CFStringRef> passphraseHolder;
+    if(!passphrase.empty())
+    {
+        passphraseHolder.reset(toCFString(passphrase));
+        params.passphrase = passphraseHolder.get();
+    }
+    UniqueRef<CFArrayRef> items;
+    SecExternalItemType importType = type;
+    SecExternalFormat format = type == kSecItemTypeUnknown ? kSecFormatPKCS12 : kSecFormatUnknown;
+    UniqueRef<CFStringRef> path(toCFString(file));
+    OSStatus err = SecItemImport(data.get(), path.get(), &format, &importType, 0, &params, keychain, &items.get());
+    //
+    // If passphrase failure and no password was configured, we obtain
+    // the password from the given prompt or configure the import to
+    // prompt the user with an alert dialog.
+    //
+    UniqueRef<CFStringRef> alertPromptHolder;
+    if(passphrase.empty() &&
+       (err == errSecPassphraseRequired || err == errSecInvalidData || err == errSecPkcs12VerifyFailure))
+    {
+        if(!prompt)
+        {
+            params.flags |= kSecKeySecurePassphrase;
+            ostringstream os;
+            os << "Enter the password for\n" << file;
+            alertPromptHolder.reset(toCFString(os.str()));
+            params.alertPrompt = alertPromptHolder.get();
+        }
+        int count = 0;
+        while((err == errSecPassphraseRequired || err == errSecInvalidData || err == errSecPkcs12VerifyFailure) &&
+              count < retryMax)
+        {
+            if(prompt)
+            {
+                passphraseHolder.reset(toCFString(prompt->getPassword()));
+                params.passphrase = passphraseHolder.get();
+            }
+            err = SecItemImport(data.get(), path.get(), &format, &importType, 0, &params, keychain, &items.get());
+            ++count;
+        }
+    }
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: error reading " << (type == kSecItemTypePrivateKey ? "private key" : "certificate");
+        os << " `" << file << "':\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    if(type != kSecItemTypeUnknown && importType != kSecItemTypeAggregate && importType != type)
+    {
+        ostringstream os;
+        os << "IceSSL: error reading " << (type == kSecItemTypePrivateKey ? "private key" : "certificate");
+        os << " `" << file << "' doesn't contain the expected item";
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    return items.release();
+}
+SecKeychainRef
+openKeychain(const std::string& path, const std::string& keychainPassword)
+{
+    string keychainPath = path;
+    UniqueRef<SecKeychainRef> keychain;
+    OSStatus err = 0;
+    if(keychainPath.empty())
+    {
+        if((err = SecKeychainCopyDefault(&keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to retrieve default keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else
+    {
+        //
+        // KeyChain path is relative to the current working directory.
+        //
+        if(!IceUtilInternal::isAbsolutePath(keychainPath))
+        {
+            string cwd;
+            if(IceUtilInternal::getcwd(cwd) == 0)
+            {
+                keychainPath = string(cwd) + '/' + keychainPath;
+            }
+        }
+        if((err = SecKeychainOpen(keychainPath.c_str(), &keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unable to open keychain: `" +
+                                                keychainPath + "'\n" + sslErrorToString(err));
+        }
+    }
+    SecKeychainStatus status;
+    err = SecKeychainGetStatus(keychain.get(), &status);
+    if(err == noErr)
+    {
+        const char* pass = keychainPassword.empty() ? 0 : keychainPassword.c_str();
+        if((err = SecKeychainUnlock(keychain.get(), keychainPassword.size(), pass, pass != 0)))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to unlock keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else if(err == errSecNoSuchKeychain)
+    {
+        const char* pass = keychainPassword.empty() ? 0 : keychainPassword.c_str();
+        keychain.reset(0);
+        if((err = SecKeychainCreate(keychainPath.c_str(), keychainPassword.size(), pass, pass == 0, 0, &keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to create keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: unable to open keychain:\n" + sslErrorToString(err));
+    }
+    //
+    // Set keychain settings to avoid keychain lock.
+    //
+    SecKeychainSettings settings;
+    settings.version = SEC_KEYCHAIN_SETTINGS_VERS1;
+    settings.lockOnSleep = FALSE;
+    settings.useLockInterval = FALSE;
+    settings.lockInterval = INT_MAX;
+    if((err = SecKeychainSetSettings(keychain.get(), &settings)))
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error setting keychain settings:\n" + sslErrorToString(err));
+    }
+    return keychain.release();
+}
+//
+// Imports a certificate private key and optionally add it to a keychain.
+//
+SecIdentityRef
+loadPrivateKey(const string& file, SecCertificateRef cert, SecKeychainRef keychain, const string& password,
+               const PasswordPromptPtr& prompt, int retryMax)
+{
+    //
+    // Check if we already imported the certificate
+    //
+    UniqueRef<CFDataRef> hash;
+    UniqueRef<CFDictionaryRef> subjectKeyProperty(getCertificateProperty(cert, kSecOIDSubjectKeyIdentifier));
+    if(subjectKeyProperty)
+    {
+        CFArrayRef values = static_cast<CFArrayRef>(CFDictionaryGetValue(subjectKeyProperty.get(),
+                                                                         kSecPropertyKeyValue));
+        for(int i = 0; i < CFArrayGetCount(values); ++i)
+        {
+            CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(values, i));
+            if(CFEqual(CFDictionaryGetValue(dict, kSecPropertyKeyLabel), CFSTR("Key Identifier")))
+            {
+                hash.retain(static_cast<CFDataRef>(CFDictionaryGetValue(dict, kSecPropertyKeyValue)));
+                break;
+            }
+        }
+    }
+    const void* values[] = { keychain };
+    UniqueRef<CFArrayRef> searchList(CFArrayCreate(kCFAllocatorDefault, values, 1, &kCFTypeArrayCallBacks));
+    UniqueRef<CFMutableDictionaryRef> query(CFDictionaryCreateMutable(0,
+                                                                      0,
+                                                                      &kCFTypeDictionaryKeyCallBacks,
+                                                                      &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecMatchSearchList, searchList.get());
+    CFDictionarySetValue(query.get(), kSecAttrSubjectKeyID, hash.get());
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    UniqueRef<CFTypeRef> value(0);
+    OSStatus err = SecItemCopyMatching(query.get(), &value.get());
+    UniqueRef<SecCertificateRef> item(static_cast<SecCertificateRef>(const_cast<void*>(value.release())));
+    if(err == noErr)
+    {
+        //
+        // If the certificate has already been imported, create the
+        // identity. The key should also have been imported.
+        //
+        UniqueRef<SecIdentityRef> identity;
+        err = SecIdentityCreateWithCertificate(keychain, item.get(), &identity.get());
+        if(err != noErr)
+        {
+            ostringstream os;
+            os << "IceSSL: error creating certificate identity:\n" << sslErrorToString(err);
+            throw CertificateReadException(__FILE__, __LINE__, os.str());
+        }
+        return identity.release();
+    }
+    else if(err != errSecItemNotFound)
+    {
+        ostringstream os;
+        os << "IceSSL: error searching for keychain items:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    //
+    // If the certificate isn't already in the keychain, load the
+    // private key into the keychain and add the certificate.
+    //
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypePrivateKey, keychain, password, prompt, retryMax));
+    int count = CFArrayGetCount(items.get());
+    UniqueRef<SecKeyRef> key;
+    for(int i = 0; i < count; ++i)
+    {
+        SecKeychainItemRef item =
+            static_cast<SecKeychainItemRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), 0)));
+        if(SecKeyGetTypeID() == CFGetTypeID(item))
+        {
+            key.retain(reinterpret_cast<SecKeyRef>(item));
+            break;
+        }
+    }
+    if(!key)
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "IceSSL: no key in file `" + file + "'");
+    }
+    //
+    // Add the certificate to the keychain
+    //
+    query.reset(CFDictionaryCreateMutable(kCFAllocatorDefault,
+                                          0,
+                                          &kCFTypeDictionaryKeyCallBacks,
+                                          &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecUseKeychain, keychain);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecValueRef, cert);
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    value.reset(0);
+    err = SecItemAdd(query.get(), static_cast<CFTypeRef*>(&value.get()));
+    UniqueRef<CFArrayRef> added(static_cast<CFArrayRef>(value.release()));
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: failure adding certificate to keychain\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    item.retain(static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(added.get(), 0))));
+    //
+    // Create the association between the private  key and the certificate,
+    // kSecKeyLabel attribute should match the subject key identifier.
+    //
+    vector<SecKeychainAttribute> attributes;
+    if(hash)
+    {
+        SecKeychainAttribute attr;
+        attr.tag = kSecKeyLabel;
+        attr.data = const_cast<UInt8*>(CFDataGetBytePtr(hash.get()));
+        attr.length = CFDataGetLength(hash.get());
+        attributes.push_back(attr);
+    }
+    //
+    // kSecKeyPrintName attribute correspond to the keychain display
+    // name.
+    //
+    string label;
+    UniqueRef<CFStringRef> commonName(0);
+    if(SecCertificateCopyCommonName(item.get(), &commonName.get()) == noErr)
+    {
+        label = fromCFString(commonName.get());
+        SecKeychainAttribute attr;
+        attr.tag = kSecKeyPrintName;
+        attr.data = const_cast<char*>(label.c_str());
+        attr.length = label.size();
+        attributes.push_back(attr);
+    }
+    SecKeychainAttributeList attrs;
+    attrs.attr = &attributes[0];
+    attrs.count = attributes.size();
+    SecKeychainItemModifyAttributesAndData(reinterpret_cast<SecKeychainItemRef>(key.get()), &attrs, 0, 0);
+    UniqueRef<SecIdentityRef> identity;
+    err = SecIdentityCreateWithCertificate(keychain, item.get(), &identity.get());
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: error creating certificate identity:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    return identity.release();
+}
+} // anonymous namespace end
+#else
+namespace
+{
+CFArrayRef
+loadCerts(const string& file)
+{
+    UniqueRef<CFArrayRef> certs(CFArrayCreateMutable(kCFAllocatorDefault, 0, &kCFTypeArrayCallBacks));
+    if(file.find(".pem") != string::npos)
+    {
+        vector<char> buffer;
+        readFile(file, buffer);
+        string strbuf(buffer.begin(), buffer.end());
+        string::size_type size, startpos, endpos = 0;
+        bool first = true;
+        while(true)
+        {
+            startpos = strbuf.find("-----BEGIN CERTIFICATE-----", endpos);
+            if(startpos != string::npos)
+            {
+                startpos += sizeof("-----BEGIN CERTIFICATE-----");
+                endpos = strbuf.find("-----END CERTIFICATE-----", startpos);
+                if(endpos == string::npos)
+                {
+                    InitializationException ex(__FILE__, __LINE__);
+                    ex.reason = "IceSSL: certificate " + file + " is not a valid PEM-encoded certificate";
+                    throw ex;
+                }
+                size = endpos - startpos;
+            }
+            else if(first)
+            {
+                startpos = 0;
+                endpos = string::npos;
+                size = strbuf.size();
+            }
+            else
+            {
+                break;
+            }
+            vector<unsigned char> data(IceInternal::Base64::decode(string(&buffer[startpos], size)));
+            UniqueRef<CFDataRef> certdata(CFDataCreate(kCFAllocatorDefault, &data[0], data.size()));
+            UniqueRef<SecCertificateRef> cert(SecCertificateCreateWithData(0, certdata.get()));
+            if(!cert)
+            {
+                InitializationException ex(__FILE__, __LINE__);
+                ex.reason = "IceSSL: certificate " + file + " is not a valid PEM-encoded certificate";
+                throw ex;
+            }
+            CFArrayAppendValue(const_cast<CFMutableArrayRef>(certs.get()), cert.get());
+            first = false;
+        }
+    }
+    else
+    {
+        UniqueRef<CFDataRef> data(readCertFile(file));
+        UniqueRef<SecCertificateRef> cert(SecCertificateCreateWithData(0, data.get()));
+        if(!cert)
+        {
+            InitializationException ex(__FILE__, __LINE__);
+            ex.reason = "IceSSL: certificate " + file + " is not a valid DER-encoded certificate";
+            throw ex;
+        }
+        CFArrayAppendValue(const_cast<CFMutableArrayRef>(certs.get()), cert.get());
+    }
+    return certs.release();
+}
+}
+#endif
+//
+// Imports a certificate (it might contain an identity or certificate depending on the format).
+//
+CFArrayRef
+IceSSL::SecureTransport::loadCertificateChain(const string& file,
+                                              const string& keyFile,
+                                              const std::string& keychainPath,
+                                              const string& keychainPassword,
+                                              const string& password,
+                                              const PasswordPromptPtr& prompt,
+                                              int retryMax)
+{
+    UniqueRef<CFArrayRef> chain;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    UniqueRef<CFDataRef> cert(readCertFile(file));
+    UniqueRef<CFMutableDictionaryRef> settings(CFDictionaryCreateMutable(0,
+                                                                         1,
+                                                                         &kCFTypeDictionaryKeyCallBacks,
+                                                                         &kCFTypeDictionaryValueCallBacks));
+    UniqueRef<CFArrayRef> items;
+    OSStatus err;
+    int count = 0;
+    do
+    {
+        items.reset();
+        UniqueRef<CFStringRef> pass(toCFString(password.empty() && prompt ? prompt->getPassword() : password));
+        CFDictionarySetValue(settings.get(), kSecImportExportPassphrase, pass.get());
+        err = SecPKCS12Import(cert.get(), settings.get(), &items.get());
+        ++count;
+    }
+    while(password.empty() && prompt && err == errSecAuthFailed && count < retryMax);
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: unable to import certificate from file " << file << " (error = " << err << ")";
+        throw InitializationException(__FILE__, __LINE__, os.str());
+    }
+    for(int i = 0; i < CFArrayGetCount(items.get()); ++i)
+    {
+        CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(items.get(), i));
+        SecIdentityRef identity = static_cast<SecIdentityRef>(
+            const_cast<void*>(CFDictionaryGetValue(dict, kSecImportItemIdentity)));
+        if(identity)
+        {
+            CFArrayRef certs = static_cast<CFArrayRef>(CFDictionaryGetValue(dict, kSecImportItemCertChain));
+            chain.reset(CFArrayCreateMutableCopy(kCFAllocatorDefault, 0, certs));
+            CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(chain.get()), 0, identity);
+        }
+    }
+    if(!chain)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't find identity in file " << file;
+        throw InitializationException(__FILE__, __LINE__, os.str());
+    }
+#else
+    UniqueRef<SecKeychainRef> keychain(openKeychain(keychainPath, keychainPassword));
+    if(keyFile.empty())
+    {
+        chain.reset(loadKeychainItems(file, kSecItemTypeUnknown, keychain.get(), password, prompt, retryMax));
+    }
+    else
+    {
+        //
+        // Load the certificate, don't load into the keychain as it
+        // might already have been imported.
+        //
+        UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, password, prompt, retryMax));
+        SecCertificateRef cert =
+            static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), 0)));
+        if(SecCertificateGetTypeID() != CFGetTypeID(cert))
+        {
+            ostringstream os;
+            os << "IceSSL: couldn't find certificate in `" << file << "'";
+            throw CertificateReadException(__FILE__, __LINE__, os.str());
+        }
+        //
+        // Load the private key for the given certificate. This will
+        // add the certificate/key to the keychain if they aren't
+        // already present in the keychain.
+        //
+        UniqueRef<SecIdentityRef> identity(loadPrivateKey(keyFile, cert, keychain.get(), password, prompt, retryMax));
+        chain.reset(CFArrayCreateMutableCopy(kCFAllocatorDefault, 0, items.get()));
+        CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(chain.get()), 0, identity.get());
+    }
+#endif
+    return chain.release();
+}
+SecCertificateRef
+IceSSL::SecureTransport::loadCertificate(const string& file)
+{
+    UniqueRef<SecCertificateRef> cert;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    UniqueRef<CFArrayRef> certs(loadCerts(file));
+    assert(CFArrayGetCount(certs.get()) > 0);
+    cert.retain((SecCertificateRef)CFArrayGetValueAtIndex(certs.get(), 0));
+#else
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, "", 0, 0));
+    cert.retain((SecCertificateRef)CFArrayGetValueAtIndex(items.get(), 0));
+#endif
+    return cert.release();
+}
+CFArrayRef
+IceSSL::SecureTransport::loadCACertificates(const string& file)
+{
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    return loadCerts(file);
+#else
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, "", 0, 0));
+    UniqueRef<CFArrayRef> certificateAuthorities(CFArrayCreateMutable(kCFAllocatorDefault, 0, &kCFTypeArrayCallBacks));
+    int count = CFArrayGetCount(items.get());
+    for(CFIndex i = 0; i < count; ++i)
+    {
+        SecCertificateRef cert =
+            static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), i)));
+        assert(SecCertificateGetTypeID() == CFGetTypeID(cert));
+        if(isCA(cert))
+        {
+            CFArrayAppendValue(const_cast<CFMutableArrayRef>(certificateAuthorities.get()), cert);
+        }
+    }
+    return certificateAuthorities.release();
+#endif
+}
+CFArrayRef
+IceSSL::SecureTransport::findCertificateChain(const std::string& keychainPath,
+                                              const std::string& keychainPassword,
+                                              const string& value)
+{
+    //
+    //  Search the keychain using key:value pairs. The following keys are supported:
+    //
+    //   Label
+    //   Serial
+    //   Subject
+    //   SubjectKeyId
+    //
+    //   A value must be enclosed in single or double quotes if it contains whitespace.
+    //
+    UniqueRef<CFMutableDictionaryRef> query(CFDictionaryCreateMutable(0,
+                                                                      0,
+                                                                      &kCFTypeDictionaryKeyCallBacks,
+                                                                      &kCFTypeDictionaryValueCallBacks));
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+    UniqueRef<SecKeychainRef> keychain(openKeychain(keychainPath, keychainPassword));
+    const void* values[] = { keychain.get() };
+    UniqueRef<CFArrayRef> searchList(CFArrayCreate(kCFAllocatorDefault, values, 1, &kCFTypeArrayCallBacks));
+    CFDictionarySetValue(query.get(), kSecMatchSearchList, searchList.get());
+#endif
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    CFDictionarySetValue(query.get(), kSecMatchCaseInsensitive, kCFBooleanTrue);
+    size_t start = 0;
+    size_t pos;
+    bool valid = false;
+    while((pos = value.find(':', start)) != string::npos)
+    {
+        string field = IceUtilInternal::toUpper(IceUtilInternal::trim(value.substr(start, pos - start)));
+        string arg;
+        if(field != "LABEL" && field != "SERIAL" && field != "SUBJECT" && field != "SUBJECTKEYID")
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unknown key in `" + value + "'");
+        }
+        start = pos + 1;
+        while(start < value.size() && (value[start] == ' ' || value[start] == '\t'))
+        {
+            ++start;
+        }
+        if(start == value.size())
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: missing argument in `" + value + "'");
+        }
+        if(value[start] == '"' || value[start] == '\'')
+        {
+            size_t end = start;
+            ++end;
+            while(end < value.size())
+            {
+                if(value[end] == value[start] && value[end - 1] != '\\')
+                {
+                    break;
+                }
+                ++end;
+            }
+            if(end == value.size() || value[end] != value[start])
+            {
+                throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unmatched quote in `" + value + "'");
+            }
+            ++start;
+            arg = value.substr(start, end - start);
+            start = end + 1;
+        }
+        else
+        {
+            size_t end = value.find_first_of(" \t", start);
+            if(end == string::npos)
+            {
+                arg = value.substr(start);
+                start = value.size();
+            }
+            else
+            {
+                arg = value.substr(start, end - start);
+                start = end + 1;
+            }
+        }
+        if(field == "SUBJECT" || field == "LABEL")
+        {
+            UniqueRef<CFStringRef> v(toCFString(arg));
+            CFDictionarySetValue(query.get(), field == "LABEL" ? kSecAttrLabel : kSecMatchSubjectContains, v.get());
+            valid = true;
+        }
+        else if(field == "SUBJECTKEYID" || field == "SERIAL")
+        {
+            vector<unsigned char> buffer;
+            if(!parseBytes(arg, buffer))
+            {
+                throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: invalid value `" + value + "'");
+            }
+            UniqueRef<CFDataRef> v(CFDataCreate(kCFAllocatorDefault, &buffer[0], buffer.size()));
+            CFDictionarySetValue(query.get(), field == "SUBJECTKEYID" ? kSecAttrSubjectKeyID : kSecAttrSerialNumber,
+                                 v.get());
+            valid = true;
+        }
+    }
+    if(!valid)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: invalid value `" + value + "'");
+    }
+    UniqueRef<SecCertificateRef> cert;
+    OSStatus err = SecItemCopyMatching(query.get(), (CFTypeRef*)&cert.get());
+    if(err != noErr)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: find certificate `" + value + "' failed:\n" + sslErrorToString(err));
+    }
+    //
+    // Retrieve the certificate chain
+    //
+    UniqueRef<SecPolicyRef> policy(SecPolicyCreateSSL(true, 0));
+    UniqueRef<SecTrustRef> trust;
+    err = SecTrustCreateWithCertificates(reinterpret_cast<CFArrayRef>(cert.get()), policy.get(), &trust.get());
+    if(err || !trust)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error creating trust object" +
+                                            (err ? ":\n" + sslErrorToString(err) : ""));
+    }
+    SecTrustResultType trustResult;
+    if((err = SecTrustEvaluate(trust.get(), &trustResult)))
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error evaluating trust:\n" + sslErrorToString(err));
+    }
+    int chainLength = SecTrustGetCertificateCount(trust.get());
+    UniqueRef<CFArrayRef> items(CFArrayCreateMutable(kCFAllocatorDefault, chainLength, &kCFTypeArrayCallBacks));
+    for(int i = 0; i < chainLength; ++i)
+    {
+        CFArrayAppendValue(const_cast<CFMutableArrayRef>(items.get()), SecTrustGetCertificateAtIndex(trust.get(), i));
+    }
+    //
+    // Replace the first certificate in the chain with the
+    // identity.
+    //
+    UniqueRef<SecIdentityRef> identity;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    //
+    // SecIdentityCreateWithCertificate isn't supported on iOS so we lookup the identity
+    // using the certicate label. If the user added the identity with SecItemAdd the
+    // identity has the same label as the certificate.
+    //
+    query.reset(CFDictionaryCreateMutable(0, 1, &kCFTypeDictionaryKeyCallBacks, &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecValueRef, cert.get());
+    CFDictionarySetValue(query.get(), kSecReturnAttributes, kCFBooleanTrue);
+    UniqueRef<CFDictionaryRef> attributes;
+    err = SecItemCopyMatching(query.get(), reinterpret_cast<CFTypeRef*>(&attributes.get()));
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't create identity for certificate found in the keychain:\n" << sslErrorToString(err);
+        throw PluginInitializationException(__FILE__, __LINE__, os.str());
+    }
+    // Now lookup the identity with the label
+    query.reset(CFDictionaryCreateMutable(0, 0, &kCFTypeDictionaryKeyCallBacks, &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassIdentity);
+    CFDictionarySetValue(query.get(), kSecAttrLabel, (CFDataRef)CFDictionaryGetValue(attributes.get(), kSecAttrLabel));
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    err = SecItemCopyMatching(query.get(), (CFTypeRef*)&identity.get());
+    if(err == noErr)
+    {
+        UniqueRef<SecCertificateRef> cert2;
+        if((err = SecIdentityCopyCertificate(identity.get(), &cert2.get())) == noErr)
+        {
+            err = CFEqual(cert2.get(), cert.get()) ? noErr : errSecItemNotFound;
+        }
+    }
+#else
+    err = SecIdentityCreateWithCertificate(keychain.get(), cert.get(), &identity.get());
+#endif
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't create identity for certificate found in the keychain:\n" << sslErrorToString(err);
+        throw PluginInitializationException(__FILE__, __LINE__, os.str());
+    }
+    CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(items.get()), 0, identity.get());
+    return items.release();
+}