RubyGems - zeroc-ice - Versions diffs - 3.6.5 → 3.7.0 - Mend

zeroc-ice 3.6.5 → 3.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (752) hide show

checksums.yaml +4 -4
data/BZIP2_LICENSE +42 -0
data/ICE_LICENSE +17 -17
data/LICENSE +12 -12
data/bin/slice2rb +1 -1
data/ext/Communicator.cpp +150 -53
data/ext/Communicator.h +1 -1
data/ext/Config.h +2 -12
data/ext/Connection.cpp +89 -68
data/ext/Connection.h +1 -1
data/ext/Endpoint.cpp +16 -45
data/ext/Endpoint.h +1 -1
data/ext/ImplicitContext.cpp +1 -5
data/ext/ImplicitContext.h +1 -1
data/ext/Init.cpp +4 -1
data/ext/Logger.cpp +1 -1
data/ext/Logger.h +1 -1
data/ext/Operation.cpp +33 -44
data/ext/Operation.h +1 -1
data/ext/Properties.cpp +1 -1
data/ext/Properties.h +1 -1
data/ext/Proxy.cpp +22 -57
data/ext/Proxy.h +1 -1
data/ext/Slice.cpp +5 -5
data/ext/Slice.h +1 -1
data/ext/Types.cpp +244 -171
data/ext/Types.h +118 -66
data/ext/Util.cpp +13 -9
data/ext/Util.h +10 -10
data/ext/ValueFactoryManager.cpp +445 -0
data/ext/ValueFactoryManager.h +100 -0
data/ext/extconf.rb +47 -45
data/ext/ice/bzip2/blocksort.c +1094 -0
data/ext/ice/bzip2/bzlib.c +1572 -0
data/ext/ice/bzip2/bzlib.h +282 -0
data/ext/ice/bzip2/bzlib_private.h +509 -0
data/ext/ice/bzip2/compress.c +672 -0
data/ext/ice/bzip2/crctable.c +104 -0
data/ext/ice/bzip2/decompress.c +646 -0
data/ext/ice/bzip2/huffman.c +205 -0
data/ext/ice/bzip2/randtable.c +84 -0
data/ext/ice/cpp/include/Ice/Application.h +77 -60
data/ext/ice/cpp/include/Ice/AsyncResult.h +34 -318
data/ext/ice/cpp/include/Ice/AsyncResultF.h +4 -2
data/ext/ice/cpp/include/Ice/BatchRequestInterceptor.h +5 -10
data/ext/ice/cpp/include/Ice/BatchRequestQueueF.h +1 -1
data/ext/ice/cpp/include/Ice/Buffer.h +10 -10
data/ext/ice/cpp/include/Ice/CommunicatorAsync.h +14 -12
data/ext/ice/cpp/include/Ice/Comparable.h +130 -0
data/ext/ice/cpp/include/Ice/Config.h +7 -36
data/ext/ice/cpp/include/Ice/ConnectionAsync.h +107 -11
data/ext/ice/cpp/include/Ice/ConnectionIF.h +5 -1
data/ext/ice/cpp/include/Ice/ConsoleUtil.h +28 -0
data/ext/ice/cpp/include/Ice/{DefaultObjectFactory.h → DefaultValueFactory.h} +28 -14
data/ext/ice/cpp/include/Ice/DispatchInterceptor.h +4 -6
data/ext/ice/cpp/include/Ice/Dispatcher.h +14 -13
data/ext/ice/cpp/include/Ice/DynamicLibrary.h +7 -5
data/ext/ice/cpp/include/Ice/DynamicLibraryF.h +1 -1
data/ext/ice/cpp/include/Ice/Exception.h +66 -56
data/ext/ice/cpp/include/Ice/ExceptionHelpers.h +69 -0
data/ext/ice/cpp/include/Ice/FactoryTable.h +11 -12
data/ext/ice/cpp/include/Ice/FactoryTableInit.h +27 -25
data/ext/ice/cpp/include/Ice/Format.h +6 -1
data/ext/ice/cpp/include/Ice/Functional.h +33 -33
data/ext/ice/cpp/include/Ice/GCObject.h +9 -5
data/ext/ice/cpp/include/Ice/Handle.h +6 -11
data/ext/ice/cpp/include/Ice/Ice.h +9 -5
data/ext/ice/cpp/include/{IceUtil → Ice}/IconvStringConverter.h +108 -62
data/ext/ice/cpp/include/Ice/Incoming.h +109 -33
data/ext/ice/cpp/include/Ice/IncomingAsync.h +63 -23
data/ext/ice/cpp/include/Ice/IncomingAsyncF.h +7 -1
data/ext/ice/cpp/include/Ice/Initialize.h +178 -38
data/ext/ice/cpp/include/Ice/InputStream.h +994 -0
data/ext/ice/cpp/include/Ice/InstanceF.h +1 -2
data/ext/ice/cpp/include/Ice/InterfaceByValue.h +46 -0
data/ext/ice/cpp/include/Ice/LocalObject.h +9 -9
data/ext/ice/cpp/include/Ice/LocalObjectF.h +1 -1
data/ext/ice/cpp/include/Ice/LoggerUtil.h +20 -14
data/ext/ice/cpp/include/Ice/MetricsAdminI.h +114 -65
data/ext/ice/cpp/include/Ice/MetricsFunctional.h +23 -5
data/ext/ice/cpp/include/Ice/MetricsObserverI.h +99 -26
data/ext/ice/cpp/include/Ice/NativePropertiesAdmin.h +17 -4
data/ext/ice/cpp/include/Ice/Object.h +105 -56
data/ext/ice/cpp/include/Ice/ObjectF.h +8 -3
data/ext/ice/cpp/include/Ice/ObserverHelper.h +18 -8
data/ext/ice/cpp/include/Ice/Optional.h +1084 -0
data/ext/ice/cpp/include/Ice/OutgoingAsync.h +655 -84
data/ext/ice/cpp/include/Ice/OutgoingAsyncF.h +12 -6
data/ext/ice/cpp/include/Ice/OutputStream.h +753 -0
data/ext/ice/cpp/include/Ice/Protocol.h +19 -12
data/ext/ice/cpp/include/Ice/Proxy.h +1329 -717
data/ext/ice/cpp/include/Ice/ProxyF.h +11 -33
data/ext/ice/cpp/include/Ice/ProxyFactoryF.h +1 -1
data/ext/ice/cpp/include/Ice/ProxyHandle.h +34 -50
data/ext/ice/cpp/include/Ice/ReferenceF.h +1 -1
data/ext/ice/cpp/include/Ice/RegisterPlugins.h +22 -3
data/ext/ice/cpp/include/Ice/RequestHandlerF.h +10 -4
data/ext/ice/cpp/include/Ice/ResponseHandlerF.h +6 -1
data/ext/ice/cpp/include/{IceUtil → Ice}/SHA1.h +16 -16
data/ext/ice/cpp/include/Ice/ServantManagerF.h +1 -1
data/ext/ice/cpp/include/Ice/Service.h +13 -18
data/ext/ice/cpp/include/Ice/SliceChecksums.h +1 -1
data/ext/ice/cpp/include/Ice/SlicedData.h +46 -20
data/ext/ice/cpp/include/Ice/SlicedDataF.h +14 -6
data/ext/ice/cpp/include/Ice/StreamHelpers.h +159 -49
data/ext/ice/cpp/include/Ice/StringConverter.h +52 -0
data/ext/ice/cpp/include/Ice/ThreadPoolF.h +1 -1
data/{slice/Ice/ObjectFactoryF.ice → ext/ice/cpp/include/Ice/UUID.h} +9 -7
data/ext/ice/cpp/include/{IceUtil → Ice}/UniquePtr.h +21 -22
data/ext/ice/cpp/include/Ice/UniqueRef.h +98 -0
data/ext/ice/cpp/include/Ice/UserExceptionFactory.h +40 -8
data/ext/ice/cpp/include/Ice/Value.h +104 -0
data/{slice/Freeze/ConnectionF.ice → ext/ice/cpp/include/Ice/ValueF.h} +11 -7
data/ext/ice/cpp/include/IceSSL/Config.h +8 -23
data/ext/ice/cpp/include/IceSSL/IceSSL.h +17 -6
data/ext/ice/cpp/include/IceSSL/OpenSSL.h +130 -0
data/ext/ice/cpp/include/IceSSL/Plugin.h +172 -259
data/ext/ice/cpp/include/IceSSL/SChannel.h +66 -0
data/ext/ice/cpp/include/IceSSL/SecureTransport.h +66 -0
data/ext/ice/cpp/include/IceSSL/UWP.h +58 -0
data/ext/ice/cpp/include/IceUtil/Atomic.h +8 -10
data/ext/ice/cpp/include/IceUtil/Cond.h +17 -18
data/ext/ice/cpp/include/IceUtil/Config.h +138 -39
data/ext/ice/cpp/include/IceUtil/ConsoleUtil.h +97 -0
data/ext/ice/cpp/include/IceUtil/CountDownLatch.h +5 -5
data/ext/ice/cpp/include/IceUtil/CtrlCHandler.h +23 -17
data/ext/ice/cpp/include/IceUtil/DisableWarnings.h +1 -3
data/ext/ice/cpp/include/IceUtil/Exception.h +157 -67
data/ext/ice/cpp/include/IceUtil/FileUtil.h +148 -0
data/ext/ice/cpp/include/IceUtil/Functional.h +1 -2
data/ext/ice/cpp/include/IceUtil/Handle.h +11 -11
data/ext/ice/cpp/include/IceUtil/IceUtil.h +4 -10
data/ext/ice/cpp/include/IceUtil/InputUtil.h +3 -3
data/ext/ice/cpp/include/IceUtil/Iterator.h +2 -2
data/ext/ice/cpp/include/IceUtil/Lock.h +8 -10
data/ext/ice/cpp/include/IceUtil/Monitor.h +1 -2
data/ext/ice/cpp/include/IceUtil/Mutex.h +17 -11
data/ext/ice/cpp/include/IceUtil/MutexProtocol.h +2 -2
data/ext/ice/cpp/include/IceUtil/MutexPtrLock.h +4 -4
data/ext/ice/cpp/include/IceUtil/MutexPtrTryLock.h +4 -4
data/ext/ice/cpp/include/IceUtil/Optional.h +32 -18
data/ext/ice/cpp/include/IceUtil/Options.h +17 -18
data/ext/ice/cpp/include/IceUtil/OutputUtil.h +55 -29
data/ext/ice/cpp/include/IceUtil/PopDisableWarnings.h +6 -6
data/ext/ice/cpp/include/IceUtil/PushDisableWarnings.h +11 -10
data/ext/ice/cpp/include/IceUtil/Random.h +3 -3
data/ext/ice/cpp/include/IceUtil/RecMutex.h +7 -8
data/ext/ice/cpp/include/IceUtil/ResourceConfig.h +58 -0
data/ext/ice/cpp/include/IceUtil/ScannerConfig.h +1 -9
data/ext/ice/cpp/include/IceUtil/ScopedArray.h +8 -2
data/ext/ice/cpp/include/IceUtil/Shared.h +5 -7
data/ext/ice/cpp/{src → include}/IceUtil/StopWatch.h +2 -2
data/ext/ice/cpp/include/IceUtil/StringConverter.h +77 -72
data/ext/ice/cpp/include/IceUtil/StringUtil.h +32 -21
data/ext/ice/cpp/include/IceUtil/Thread.h +10 -12
data/ext/ice/cpp/include/IceUtil/ThreadException.h +33 -42
data/ext/ice/cpp/include/IceUtil/Time.h +3 -3
data/ext/ice/cpp/include/IceUtil/Timer.h +14 -13
data/ext/ice/cpp/include/IceUtil/UUID.h +2 -2
data/ext/ice/cpp/include/IceUtil/UndefSysMacros.h +1 -1
data/ext/ice/cpp/include/{Ice → generated/Ice}/BuiltinSequences.h +41 -8
data/ext/ice/cpp/include/generated/Ice/Communicator.h +364 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/CommunicatorF.h +40 -8
data/ext/ice/cpp/include/generated/Ice/Connection.h +872 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ConnectionF.h +46 -8
data/ext/ice/cpp/include/{Ice → generated/Ice}/Current.h +71 -8
data/ext/ice/cpp/include/generated/Ice/Endpoint.h +582 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/EndpointF.h +62 -8
data/ext/ice/cpp/include/{Ice → generated/Ice}/EndpointTypes.h +31 -16
data/ext/ice/cpp/include/{Ice → generated/Ice}/FacetMap.h +23 -8
data/ext/ice/cpp/include/generated/Ice/Identity.h +221 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ImplicitContext.h +72 -13
data/ext/ice/cpp/include/{Ice → generated/Ice}/ImplicitContextF.h +40 -8
data/ext/ice/cpp/include/generated/Ice/Instrumentation.h +602 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/InstrumentationF.h +54 -8
data/ext/ice/cpp/include/generated/Ice/LocalException.h +2802 -0
data/ext/ice/cpp/include/generated/Ice/Locator.h +2036 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/LocatorF.h +53 -12
data/ext/ice/cpp/include/{Ice → generated/Ice}/Logger.h +71 -13
data/ext/ice/cpp/include/{Ice → generated/Ice}/LoggerF.h +40 -8
data/ext/ice/cpp/include/generated/Ice/Metrics.h +2649 -0
data/ext/ice/cpp/include/generated/Ice/ObjectAdapter.h +302 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ObjectAdapterF.h +40 -8
data/ext/ice/cpp/include/generated/Ice/ObjectFactory.h +142 -0
data/ext/ice/cpp/include/generated/Ice/Plugin.h +197 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/PluginF.h +43 -8
data/ext/ice/cpp/include/generated/Ice/Process.h +536 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ProcessF.h +45 -10
data/ext/ice/cpp/include/{Ice → generated/Ice}/Properties.h +88 -21
data/ext/ice/cpp/include/generated/Ice/PropertiesAdmin.h +749 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/PropertiesF.h +48 -10
data/ext/ice/cpp/include/generated/Ice/RemoteLogger.h +1449 -0
data/ext/ice/cpp/include/generated/Ice/Router.h +1032 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/RouterF.h +45 -10
data/ext/ice/cpp/include/{Ice → generated/Ice}/ServantLocator.h +65 -13
data/ext/ice/cpp/include/{Ice → generated/Ice}/ServantLocatorF.h +40 -8
data/ext/ice/cpp/include/{Ice → generated/Ice}/SliceChecksumDict.h +23 -8
data/ext/ice/cpp/include/generated/Ice/ValueFactory.h +169 -0
data/ext/ice/cpp/include/generated/Ice/Version.h +334 -0
data/ext/ice/cpp/include/generated/IceSSL/ConnectionInfo.h +172 -0
data/ext/ice/cpp/include/generated/IceSSL/ConnectionInfoF.h +98 -0
data/ext/ice/cpp/include/generated/IceSSL/EndpointInfo.h +156 -0
data/ext/ice/cpp/src/Ice/ACM.cpp +18 -14
data/ext/ice/cpp/src/Ice/ACM.h +9 -2
data/ext/ice/cpp/{include → src}/Ice/ACMF.h +10 -5
data/ext/ice/cpp/src/Ice/Acceptor.cpp +6 -1
data/ext/ice/cpp/src/Ice/Acceptor.h +4 -3
data/ext/ice/cpp/src/Ice/AcceptorF.h +1 -1
data/ext/ice/cpp/src/{IceUtil → Ice}/ArgVector.cpp +9 -9
data/ext/ice/cpp/src/{IceUtil → Ice}/ArgVector.h +7 -7
data/ext/ice/cpp/src/Ice/AsyncResult.cpp +15 -538
data/ext/ice/cpp/src/Ice/Base64.cpp +11 -11
data/ext/ice/cpp/src/Ice/Base64.h +1 -1
data/ext/ice/cpp/src/Ice/BatchRequestQueue.cpp +40 -12
data/ext/ice/cpp/src/Ice/BatchRequestQueue.h +15 -10
data/ext/ice/cpp/src/Ice/Buffer.cpp +74 -12
data/ext/ice/cpp/src/Ice/BuiltinSequences.cpp +20 -6
data/ext/ice/cpp/src/Ice/CollocatedRequestHandler.cpp +85 -190
data/ext/ice/cpp/src/Ice/CollocatedRequestHandler.h +17 -18
data/ext/ice/cpp/src/Ice/Communicator.cpp +39 -8
data/ext/ice/cpp/src/Ice/CommunicatorF.cpp +27 -5
data/ext/ice/cpp/src/Ice/CommunicatorI.cpp +271 -104
data/ext/ice/cpp/src/Ice/CommunicatorI.h +84 -28
data/ext/ice/cpp/src/{IceUtil → Ice}/Cond.cpp +3 -3
data/ext/ice/cpp/src/Ice/ConnectRequestHandler.cpp +58 -125
data/ext/ice/cpp/src/Ice/ConnectRequestHandler.h +11 -22
data/ext/ice/cpp/src/Ice/ConnectRequestHandlerF.h +6 -2
data/ext/ice/cpp/src/Ice/Connection.cpp +88 -8
data/ext/ice/cpp/src/Ice/ConnectionF.cpp +27 -5
data/ext/ice/cpp/src/Ice/ConnectionFactory.cpp +158 -80
data/ext/ice/cpp/src/Ice/ConnectionFactory.h +41 -23
data/ext/ice/cpp/{include → src}/Ice/ConnectionFactoryF.h +8 -3
data/ext/ice/cpp/src/Ice/ConnectionI.cpp +707 -653
data/ext/ice/cpp/src/Ice/ConnectionI.h +97 -69
data/ext/ice/cpp/src/Ice/ConnectionRequestHandler.cpp +2 -15
data/ext/ice/cpp/src/Ice/ConnectionRequestHandler.h +4 -3
data/ext/ice/cpp/src/Ice/Connector.cpp +6 -1
data/ext/ice/cpp/src/Ice/Connector.h +4 -3
data/ext/ice/cpp/src/Ice/ConnectorF.h +1 -1
data/ext/ice/cpp/src/{IceUtil → Ice}/CountDownLatch.cpp +4 -4
data/ext/ice/cpp/src/Ice/Current.cpp +29 -6
data/ext/ice/cpp/src/Ice/DefaultsAndOverrides.cpp +6 -5
data/ext/ice/cpp/src/Ice/DefaultsAndOverrides.h +1 -1
data/ext/ice/cpp/src/Ice/DefaultsAndOverridesF.h +1 -1
data/ext/ice/cpp/src/Ice/DispatchInterceptor.cpp +5 -25
data/ext/ice/cpp/src/Ice/DynamicLibrary.cpp +29 -19
data/ext/ice/cpp/src/Ice/Endpoint.cpp +85 -6
data/ext/ice/cpp/src/Ice/EndpointF.cpp +27 -5
data/ext/ice/cpp/src/Ice/EndpointFactory.cpp +152 -1
data/ext/ice/cpp/src/Ice/EndpointFactory.h +72 -6
data/ext/ice/cpp/src/Ice/EndpointFactoryF.h +1 -1
data/ext/ice/cpp/src/Ice/EndpointFactoryManager.cpp +35 -19
data/ext/ice/cpp/src/Ice/EndpointFactoryManager.h +10 -4
data/ext/ice/cpp/src/Ice/EndpointFactoryManagerF.h +1 -1
data/ext/ice/cpp/src/Ice/EndpointI.cpp +17 -1
data/ext/ice/cpp/src/Ice/EndpointI.h +35 -9
data/ext/ice/cpp/src/Ice/EndpointIF.h +18 -5
data/ext/ice/cpp/src/Ice/EndpointTypes.cpp +18 -6
data/ext/ice/cpp/src/Ice/EventHandler.cpp +6 -4
data/ext/ice/cpp/src/Ice/EventHandler.h +13 -8
data/ext/ice/cpp/src/Ice/EventHandlerF.h +5 -2
data/ext/ice/cpp/src/Ice/Exception.cpp +95 -86
data/ext/ice/cpp/src/Ice/FacetMap.cpp +20 -6
data/ext/ice/cpp/src/Ice/FactoryTable.cpp +37 -28
data/ext/ice/cpp/src/Ice/FactoryTableInit.cpp +2 -4
data/ext/ice/cpp/src/Ice/GCObject.cpp +28 -25
data/ext/ice/cpp/src/Ice/HashUtil.h +2 -3
data/ext/ice/cpp/src/Ice/HttpParser.cpp +1 -2
data/ext/ice/cpp/src/Ice/HttpParser.h +1 -1
data/ext/ice/cpp/src/Ice/IPEndpointI.cpp +92 -53
data/ext/ice/cpp/src/Ice/IPEndpointI.h +19 -10
data/ext/ice/cpp/src/Ice/IPEndpointIF.h +6 -2
data/ext/ice/cpp/src/Ice/IconvStringConverter.cpp +56 -0
data/ext/ice/cpp/src/Ice/Identity.cpp +24 -10
data/ext/ice/cpp/src/Ice/ImplicitContext.cpp +37 -6
data/ext/ice/cpp/src/Ice/ImplicitContextF.cpp +27 -5
data/ext/ice/cpp/src/Ice/ImplicitContextI.cpp +14 -14
data/ext/ice/cpp/src/Ice/ImplicitContextI.h +7 -5
data/ext/ice/cpp/src/Ice/Incoming.cpp +276 -245
data/ext/ice/cpp/src/Ice/IncomingAsync.cpp +104 -209
data/ext/ice/cpp/src/Ice/IncomingRequest.h +5 -4
data/ext/ice/cpp/src/Ice/Initialize.cpp +299 -172
data/ext/ice/cpp/src/Ice/InputStream.cpp +2773 -0
data/ext/ice/cpp/src/Ice/Instance.cpp +191 -231
data/ext/ice/cpp/src/Ice/Instance.h +30 -18
data/ext/ice/cpp/src/Ice/Instrumentation.cpp +106 -7
data/ext/ice/cpp/src/Ice/InstrumentationF.cpp +27 -5
data/ext/ice/cpp/src/Ice/InstrumentationI.cpp +117 -99
data/ext/ice/cpp/src/Ice/InstrumentationI.h +30 -31
data/ext/ice/cpp/src/Ice/LocalException.cpp +1190 -416
data/ext/ice/cpp/src/Ice/LocalObject.cpp +1 -2
data/ext/ice/cpp/src/Ice/Locator.cpp +1167 -1215
data/ext/ice/cpp/src/Ice/LocatorF.cpp +29 -6
data/ext/ice/cpp/src/Ice/LocatorInfo.cpp +129 -163
data/ext/ice/cpp/src/Ice/LocatorInfo.h +29 -29
data/ext/ice/cpp/src/Ice/LocatorInfoF.h +1 -1
data/ext/ice/cpp/src/Ice/Logger.cpp +35 -5
data/ext/ice/cpp/src/Ice/LoggerAdminI.cpp +178 -73
data/ext/ice/cpp/src/Ice/LoggerAdminI.h +4 -4
data/ext/ice/cpp/src/Ice/LoggerF.cpp +27 -5
data/ext/ice/cpp/src/Ice/LoggerI.cpp +14 -44
data/ext/ice/cpp/src/Ice/LoggerI.h +7 -13
data/ext/ice/cpp/src/Ice/LoggerUtil.cpp +10 -12
data/ext/ice/cpp/src/Ice/Metrics.cpp +1059 -1069
data/ext/ice/cpp/src/Ice/MetricsAdminI.cpp +49 -19
data/ext/ice/cpp/src/Ice/MetricsObserverI.cpp +1 -2
data/ext/ice/cpp/src/Ice/Network.cpp +534 -170
data/ext/ice/cpp/src/Ice/Network.h +100 -23
data/ext/ice/cpp/src/Ice/NetworkF.h +2 -2
data/ext/ice/cpp/src/Ice/NetworkProxy.cpp +21 -14
data/ext/ice/cpp/src/Ice/NetworkProxy.h +5 -2
data/ext/ice/cpp/src/Ice/NetworkProxyF.h +1 -1
data/ext/ice/cpp/src/Ice/Object.cpp +217 -221
data/ext/ice/cpp/src/Ice/ObjectAdapter.cpp +41 -6
data/ext/ice/cpp/src/Ice/ObjectAdapterF.cpp +27 -5
data/ext/ice/cpp/src/Ice/ObjectAdapterFactory.cpp +35 -14
data/ext/ice/cpp/src/Ice/ObjectAdapterFactory.h +13 -7
data/ext/ice/cpp/{include → src}/Ice/ObjectAdapterFactoryF.h +5 -1
data/ext/ice/cpp/src/Ice/ObjectAdapterI.cpp +184 -58
data/ext/ice/cpp/src/Ice/ObjectAdapterI.h +32 -26
data/ext/ice/cpp/src/Ice/ObjectFactory.cpp +37 -6
data/ext/ice/cpp/src/Ice/ObserverHelper.cpp +9 -32
data/ext/ice/cpp/src/Ice/OpaqueEndpointI.cpp +40 -18
data/ext/ice/cpp/src/Ice/OpaqueEndpointI.h +14 -5
data/ext/ice/cpp/src/Ice/OutgoingAsync.cpp +803 -365
data/ext/ice/cpp/src/Ice/OutputStream.cpp +1399 -0
data/ext/ice/cpp/src/Ice/Plugin.cpp +45 -6
data/ext/ice/cpp/src/Ice/PluginF.cpp +27 -5
data/ext/ice/cpp/src/Ice/PluginManagerI.cpp +13 -13
data/ext/ice/cpp/src/Ice/PluginManagerI.h +5 -6
data/ext/ice/cpp/src/Ice/Process.cpp +256 -114
data/ext/ice/cpp/src/Ice/ProcessF.cpp +29 -6
data/ext/ice/cpp/src/Ice/Properties.cpp +38 -8
data/ext/ice/cpp/src/Ice/PropertiesAdmin.cpp +340 -328
data/ext/ice/cpp/src/Ice/PropertiesAdminI.cpp +81 -17
data/ext/ice/cpp/src/Ice/PropertiesAdminI.h +29 -5
data/ext/ice/cpp/src/Ice/PropertiesF.cpp +29 -6
data/ext/ice/cpp/src/Ice/PropertiesI.cpp +25 -26
data/ext/ice/cpp/src/Ice/PropertiesI.h +8 -11
data/ext/ice/cpp/src/Ice/PropertyNames.cpp +107 -50
data/ext/ice/cpp/src/Ice/PropertyNames.h +4 -2
data/ext/ice/cpp/src/Ice/Protocol.cpp +2 -2
data/ext/ice/cpp/src/Ice/ProtocolInstance.cpp +37 -2
data/ext/ice/cpp/src/Ice/ProtocolInstance.h +9 -20
data/ext/ice/cpp/src/Ice/ProtocolInstanceF.h +1 -1
data/ext/ice/cpp/src/Ice/ProtocolPluginFacade.cpp +6 -1
data/ext/ice/cpp/src/Ice/ProtocolPluginFacade.h +3 -1
data/ext/ice/cpp/src/Ice/ProtocolPluginFacadeF.h +1 -1
data/ext/ice/cpp/src/Ice/Proxy.cpp +690 -964
data/ext/ice/cpp/src/Ice/ProxyFactory.cpp +23 -32
data/ext/ice/cpp/src/Ice/ProxyFactory.h +16 -11
data/ext/ice/cpp/src/Ice/Reference.cpp +75 -69
data/ext/ice/cpp/src/Ice/Reference.h +27 -22
data/ext/ice/cpp/src/Ice/ReferenceFactory.cpp +18 -21
data/ext/ice/cpp/src/Ice/ReferenceFactory.h +12 -12
data/ext/ice/cpp/src/Ice/ReferenceFactoryF.h +1 -1
data/ext/ice/cpp/src/Ice/RegisterPluginsInit.cpp +18 -4
data/ext/ice/cpp/src/Ice/RegisterPluginsInit.h +1 -1
data/ext/ice/cpp/src/Ice/RemoteLogger.cpp +672 -552
data/ext/ice/cpp/src/Ice/ReplyStatus.h +1 -1
data/ext/ice/cpp/src/Ice/RequestHandler.cpp +5 -3
data/ext/ice/cpp/src/Ice/RequestHandler.h +10 -13
data/ext/ice/cpp/src/Ice/RequestHandlerFactory.cpp +10 -6
data/ext/ice/cpp/src/Ice/RequestHandlerFactory.h +2 -2
data/ext/ice/cpp/src/Ice/ResponseHandler.cpp +3 -6
data/ext/ice/cpp/src/Ice/ResponseHandler.h +16 -7
data/ext/ice/cpp/src/Ice/RetryQueue.cpp +6 -12
data/ext/ice/cpp/src/Ice/RetryQueue.h +7 -6
data/ext/ice/cpp/src/Ice/RetryQueueF.h +1 -1
data/ext/ice/cpp/src/Ice/Router.cpp +523 -474
data/ext/ice/cpp/src/Ice/RouterF.cpp +29 -6
data/ext/ice/cpp/src/Ice/RouterInfo.cpp +91 -70
data/ext/ice/cpp/src/Ice/RouterInfo.h +43 -32
data/ext/ice/cpp/src/Ice/RouterInfoF.h +1 -1
data/ext/ice/cpp/src/{IceUtil → Ice}/SHA1.cpp +21 -21
data/ext/ice/cpp/src/Ice/Selector.cpp +989 -923
data/ext/ice/cpp/src/Ice/Selector.h +100 -147
data/ext/ice/cpp/src/Ice/ServantLocator.cpp +37 -6
data/ext/ice/cpp/src/Ice/ServantLocatorF.cpp +27 -5
data/ext/ice/cpp/src/Ice/ServantManager.cpp +9 -9
data/ext/ice/cpp/src/Ice/ServantManager.h +1 -1
data/ext/ice/cpp/src/Ice/SharedContext.h +2 -2
data/ext/ice/cpp/src/Ice/SliceChecksumDict.cpp +20 -6
data/ext/ice/cpp/src/Ice/SliceChecksums.cpp +2 -2
data/ext/ice/cpp/src/Ice/SlicedData.cpp +72 -20
data/ext/ice/cpp/src/Ice/StreamSocket.cpp +173 -18
data/ext/ice/cpp/src/Ice/StreamSocket.h +13 -4
data/ext/ice/cpp/src/Ice/StringConverterPlugin.cpp +48 -17
data/ext/ice/cpp/src/Ice/StringUtil.h +35 -0
data/ext/ice/cpp/src/Ice/SysLoggerI.cpp +8 -4
data/ext/ice/cpp/src/Ice/SysLoggerI.h +2 -3
data/ext/ice/cpp/src/Ice/TcpAcceptor.cpp +158 -32
data/ext/ice/cpp/src/Ice/TcpAcceptor.h +12 -5
data/ext/ice/cpp/src/Ice/TcpConnector.cpp +1 -7
data/ext/ice/cpp/src/Ice/TcpConnector.h +1 -2
data/ext/ice/cpp/src/Ice/TcpEndpointI.cpp +40 -32
data/ext/ice/cpp/src/Ice/TcpEndpointI.h +11 -8
data/ext/ice/cpp/src/Ice/TcpTransceiver.cpp +12 -27
data/ext/ice/cpp/src/Ice/TcpTransceiver.h +7 -10
data/ext/ice/cpp/src/{IceUtil → Ice}/Thread.cpp +24 -41
data/ext/ice/cpp/src/Ice/ThreadPool.cpp +175 -267
data/ext/ice/cpp/src/Ice/ThreadPool.h +38 -43
data/ext/ice/cpp/src/{IceUtil → Ice}/Timer.cpp +28 -21
data/ext/ice/cpp/src/Ice/TraceLevels.cpp +2 -2
data/ext/ice/cpp/src/Ice/TraceLevels.h +1 -1
data/ext/ice/cpp/src/Ice/TraceLevelsF.h +2 -2
data/ext/ice/cpp/src/Ice/TraceUtil.cpp +53 -31
data/ext/ice/cpp/src/Ice/TraceUtil.h +13 -6
data/ext/ice/cpp/src/Ice/Transceiver.cpp +1 -2
data/ext/ice/cpp/src/Ice/Transceiver.h +8 -7
data/ext/ice/cpp/src/Ice/TransceiverF.h +1 -1
data/ext/ice/cpp/src/Ice/UdpConnector.cpp +2 -8
data/ext/ice/cpp/src/Ice/UdpConnector.h +1 -2
data/ext/ice/cpp/src/Ice/UdpEndpointI.cpp +92 -31
data/ext/ice/cpp/src/Ice/UdpEndpointI.h +12 -4
data/ext/ice/cpp/src/Ice/UdpTransceiver.cpp +150 -179
data/ext/ice/cpp/src/Ice/UdpTransceiver.h +15 -17
data/ext/ice/cpp/src/Ice/Value.cpp +81 -0
data/ext/ice/cpp/src/Ice/ValueFactory.cpp +84 -0
data/ext/ice/cpp/src/Ice/ValueFactoryManagerI.cpp +70 -0
data/ext/ice/cpp/src/Ice/ValueFactoryManagerI.h +42 -0
data/ext/ice/cpp/src/Ice/Version.cpp +24 -14
data/ext/ice/cpp/src/Ice/VirtualShared.h +43 -0
data/ext/ice/cpp/src/Ice/WSAcceptor.cpp +3 -9
data/ext/ice/cpp/src/Ice/WSAcceptor.h +3 -7
data/ext/ice/cpp/src/Ice/WSConnector.cpp +5 -11
data/ext/ice/cpp/src/Ice/WSConnector.h +3 -6
data/ext/ice/cpp/src/Ice/WSEndpoint.cpp +185 -80
data/ext/ice/cpp/src/Ice/WSEndpoint.h +21 -31
data/ext/ice/cpp/src/Ice/WSTransceiver.cpp +41 -37
data/ext/ice/cpp/src/Ice/WSTransceiver.h +7 -21
data/ext/ice/cpp/src/IceDiscovery/IceDiscovery.cpp +526 -264
data/ext/ice/cpp/src/IceDiscovery/IceDiscovery.h +341 -455
data/ext/ice/cpp/src/IceDiscovery/LocatorI.cpp +86 -26
data/ext/ice/cpp/src/IceDiscovery/LocatorI.h +59 -23
data/ext/ice/cpp/src/IceDiscovery/LookupI.cpp +315 -61
data/ext/ice/cpp/src/IceDiscovery/LookupI.h +83 -36
data/ext/ice/cpp/src/IceDiscovery/PluginI.cpp +57 -59
data/ext/ice/cpp/src/IceDiscovery/PluginI.h +3 -3
data/ext/ice/cpp/src/IceLocatorDiscovery/IceLocatorDiscovery.cpp +396 -159
data/ext/ice/cpp/src/IceLocatorDiscovery/IceLocatorDiscovery.h +251 -355
data/ext/ice/cpp/src/IceLocatorDiscovery/Plugin.h +52 -0
data/ext/ice/cpp/src/IceLocatorDiscovery/PluginI.cpp +526 -131
data/ext/ice/cpp/src/IceSSL/AcceptorI.cpp +19 -165
data/ext/ice/cpp/src/IceSSL/AcceptorI.h +8 -17
data/ext/ice/cpp/src/IceSSL/CertificateI.cpp +284 -0
data/ext/ice/cpp/src/IceSSL/CertificateI.h +69 -0
data/ext/ice/cpp/src/IceSSL/ConnectionInfo.cpp +39 -11
data/ext/ice/cpp/src/{Ice/ObjectFactoryF.cpp → IceSSL/ConnectionInfoF.cpp} +31 -9
data/ext/ice/cpp/src/IceSSL/ConnectorI.cpp +14 -56
data/ext/ice/cpp/src/IceSSL/ConnectorI.h +6 -13
data/ext/ice/cpp/src/IceSSL/EndpointI.cpp +205 -197
data/ext/ice/cpp/src/IceSSL/EndpointI.h +41 -33
data/ext/ice/cpp/src/IceSSL/EndpointInfo.cpp +39 -10
data/ext/ice/cpp/src/IceSSL/Instance.cpp +1 -6
data/ext/ice/cpp/src/IceSSL/Instance.h +7 -7
data/ext/ice/cpp/src/IceSSL/InstanceF.h +11 -7
data/ext/ice/cpp/src/IceSSL/OpenSSLCertificateI.cpp +588 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLEngine.cpp +117 -152
data/ext/ice/cpp/src/IceSSL/OpenSSLEngine.h +64 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLEngineF.h +32 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLPluginI.cpp +132 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLTransceiverI.cpp +400 -89
data/ext/ice/cpp/src/IceSSL/OpenSSLTransceiverI.h +36 -21
data/ext/ice/cpp/src/IceSSL/OpenSSLUtil.cpp +291 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLUtil.h +63 -0
data/ext/ice/cpp/src/IceSSL/PluginI.cpp +71 -41
data/ext/ice/cpp/src/IceSSL/PluginI.h +13 -18
data/ext/ice/cpp/src/IceSSL/RFC2253.cpp +9 -54
data/ext/ice/cpp/src/IceSSL/RFC2253.h +7 -7
data/ext/ice/cpp/src/IceSSL/SChannelCertificateI.cpp +585 -0
data/ext/ice/cpp/src/IceSSL/SChannelEngine.cpp +491 -75
data/ext/ice/cpp/src/IceSSL/SChannelEngine.h +126 -0
data/ext/ice/cpp/src/IceSSL/SChannelEngineF.h +32 -0
data/ext/ice/cpp/src/IceSSL/SChannelPluginI.cpp +78 -0
data/ext/ice/cpp/src/IceSSL/SChannelTransceiverI.cpp +126 -169
data/ext/ice/cpp/src/IceSSL/SChannelTransceiverI.h +19 -22
data/ext/ice/cpp/src/IceSSL/SSLEngine.cpp +79 -74
data/ext/ice/cpp/src/IceSSL/SSLEngine.h +24 -187
data/ext/ice/cpp/src/IceSSL/SSLEngineF.h +4 -19
data/ext/ice/cpp/src/IceSSL/SecureTransportCertificateI.cpp +862 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportEngine.cpp +56 -214
data/ext/ice/cpp/src/IceSSL/SecureTransportEngine.h +60 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportEngineF.h +31 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportPluginI.cpp +80 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.cpp +137 -144
data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.h +25 -28
data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.cpp +857 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.h +46 -0
data/ext/ice/cpp/src/IceSSL/TrustManager.cpp +9 -13
data/ext/ice/cpp/src/IceSSL/TrustManager.h +4 -4
data/ext/ice/cpp/src/IceSSL/TrustManagerF.h +3 -3
data/ext/ice/cpp/src/IceSSL/UWPCertificateI.cpp +271 -0
data/ext/ice/cpp/src/IceSSL/UWPEngine.cpp +343 -0
data/ext/ice/cpp/src/IceSSL/UWPEngine.h +46 -0
data/ext/ice/cpp/{include/Ice/ObjectFactoryManagerF.h → src/IceSSL/UWPEngineF.h} +13 -8
data/ext/ice/cpp/src/IceSSL/UWPPluginI.cpp +94 -0
data/ext/ice/cpp/src/IceSSL/UWPTransceiverI.cpp +388 -0
data/ext/ice/cpp/src/IceSSL/UWPTransceiverI.h +76 -0
data/ext/ice/cpp/src/IceSSL/Util.cpp +66 -1256
data/ext/ice/cpp/src/IceSSL/Util.h +48 -137
data/ext/ice/cpp/src/IceUtil/ConsoleUtil.cpp +162 -0
data/ext/ice/cpp/src/IceUtil/ConvertUTF.cpp +22 -22
data/ext/ice/cpp/src/IceUtil/ConvertUTF.h +34 -26
data/ext/ice/cpp/src/IceUtil/CtrlCHandler.cpp +20 -31
data/ext/ice/cpp/src/IceUtil/FileUtil.cpp +25 -116
data/ext/ice/cpp/src/IceUtil/InputUtil.cpp +1 -1
data/ext/ice/cpp/src/IceUtil/MutexProtocol.cpp +1 -1
data/ext/ice/cpp/src/IceUtil/Options.cpp +23 -46
data/ext/ice/cpp/src/IceUtil/OutputUtil.cpp +7 -6
data/ext/ice/cpp/src/IceUtil/Random.cpp +13 -13
data/ext/ice/cpp/src/IceUtil/RecMutex.cpp +3 -9
data/ext/ice/cpp/src/IceUtil/Shared.cpp +8 -3
data/ext/ice/cpp/src/IceUtil/StringConverter.cpp +501 -264
data/ext/ice/cpp/src/IceUtil/StringUtil.cpp +540 -235
data/ext/ice/cpp/src/IceUtil/ThreadException.cpp +37 -74
data/ext/ice/cpp/src/IceUtil/Time.cpp +1 -1
data/ext/ice/cpp/src/IceUtil/UUID.cpp +10 -10
data/ext/ice/cpp/src/IceUtil/Unicode.cpp +98 -97
data/ext/ice/cpp/src/IceUtil/Unicode.h +21 -35
data/ext/ice/cpp/src/IceUtil/UtilException.cpp +838 -0
data/ext/ice/cpp/src/Slice/CPlusPlusUtil.cpp +815 -163
data/ext/ice/cpp/src/Slice/CPlusPlusUtil.h +76 -0
data/ext/ice/cpp/src/Slice/Checksum.cpp +2 -2
data/ext/ice/cpp/{include → src}/Slice/Checksum.h +2 -2
data/ext/ice/cpp/src/Slice/FileTracker.cpp +25 -78
data/ext/ice/cpp/{include → src}/Slice/FileTracker.h +9 -9
data/ext/ice/cpp/src/Slice/Grammar.cpp +1994 -1943
data/ext/ice/cpp/src/Slice/Grammar.h +44 -24
data/ext/ice/cpp/src/Slice/GrammarUtil.h +14 -14
data/ext/ice/cpp/src/Slice/JavaUtil.cpp +2658 -1927
data/ext/ice/cpp/{include → src}/Slice/JavaUtil.h +178 -59
data/ext/ice/cpp/src/Slice/MD5.cpp +1 -1
data/ext/ice/cpp/src/Slice/MD5.h +1 -1
data/ext/ice/cpp/src/Slice/MD5I.cpp +0 -1
data/ext/ice/cpp/src/Slice/MD5I.h +1 -1
data/ext/ice/cpp/src/Slice/PHPUtil.cpp +12 -15
data/ext/ice/cpp/{include → src}/Slice/PHPUtil.h +6 -15
data/ext/ice/cpp/src/Slice/Parser.cpp +802 -307
data/ext/ice/cpp/{include → src}/Slice/Parser.h +76 -84
data/ext/ice/cpp/src/Slice/Preprocessor.cpp +43 -21
data/ext/ice/cpp/{include → src}/Slice/Preprocessor.h +7 -12
data/ext/ice/cpp/src/Slice/Python.cpp +207 -86
data/ext/ice/cpp/src/Slice/PythonUtil.cpp +683 -679
data/ext/ice/cpp/{include → src}/Slice/PythonUtil.h +19 -8
data/ext/ice/cpp/src/Slice/Ruby.cpp +38 -34
data/ext/ice/cpp/src/Slice/RubyUtil.cpp +177 -445
data/ext/ice/cpp/{include → src}/Slice/RubyUtil.h +6 -6
data/ext/ice/cpp/src/Slice/Scanner.cpp +218 -306
data/ext/ice/cpp/src/Slice/{Util.cpp → SliceUtil.cpp} +37 -64
data/ext/ice/cpp/src/Slice/StringLiteralUtil.cpp +374 -0
data/ext/ice/cpp/src/Slice/Util.h +54 -0
data/ext/ice/mcpp/Makefile +5 -2
data/ice.gemspec +2 -7
data/lib/Glacier2.rb +1 -1
data/lib/Glacier2/Metrics.rb +7 -46
data/lib/Glacier2/PermissionsVerifier.rb +24 -95
data/lib/Glacier2/PermissionsVerifierF.rb +3 -3
data/lib/Glacier2/Router.rb +32 -74
data/lib/Glacier2/RouterF.rb +3 -3
data/lib/Glacier2/SSLInfo.rb +4 -7
data/lib/Glacier2/Session.rb +88 -307
data/lib/Ice.rb +83 -52
data/lib/Ice/BuiltinSequences.rb +4 -4
data/lib/Ice/Communicator.rb +56 -58
data/lib/Ice/CommunicatorF.rb +3 -3
data/lib/Ice/Connection.rb +153 -162
data/lib/Ice/ConnectionF.rb +3 -3
data/lib/Ice/Current.rb +4 -11
data/lib/Ice/Endpoint.rb +57 -133
data/lib/Ice/EndpointF.rb +3 -3
data/lib/Ice/EndpointTypes.rb +3 -7
data/lib/Ice/FacetMap.rb +4 -4
data/lib/Ice/Identity.rb +5 -8
data/lib/Ice/ImplicitContext.rb +5 -34
data/lib/Ice/ImplicitContextF.rb +3 -3
data/lib/Ice/Instrumentation.rb +23 -275
data/lib/Ice/InstrumentationF.rb +3 -3
data/lib/Ice/LocalException.rb +95 -141
data/lib/Ice/Locator.rb +51 -165
data/lib/Ice/LocatorF.rb +3 -3
data/lib/Ice/Logger.rb +5 -34
data/lib/Ice/LoggerF.rb +3 -3
data/lib/Ice/Metrics.rb +61 -416
data/lib/Ice/ObjectAdapter.rb +34 -0
data/lib/Ice/ObjectAdapterF.rb +3 -3
data/lib/Ice/ObjectFactory.rb +5 -30
data/lib/Ice/Plugin.rb +7 -60
data/lib/Ice/PluginF.rb +3 -3
data/lib/Ice/Process.rb +16 -52
data/lib/Ice/ProcessF.rb +3 -3
data/lib/Ice/Properties.rb +5 -41
data/lib/Ice/PropertiesAdmin.rb +19 -56
data/lib/Ice/PropertiesF.rb +3 -3
data/lib/Ice/RemoteLogger.rb +34 -115
data/lib/Ice/Router.rb +29 -101
data/lib/Ice/RouterF.rb +3 -3
data/lib/Ice/ServantLocator.rb +31 -0
data/lib/Ice/{ObjectFactoryF.rb → ServantLocatorF.rb} +6 -6
data/lib/Ice/SliceChecksumDict.rb +3 -3
data/lib/Ice/ValueFactory.rb +33 -0
data/lib/Ice/Version.rb +5 -11
data/lib/IceBox.rb +1 -1
data/lib/IceBox/IceBox.rb +44 -148
data/lib/IceGrid.rb +1 -4
data/lib/IceGrid/Admin.rb +551 -427
data/lib/IceGrid/Descriptor.rb +62 -529
data/lib/IceGrid/Exception.rb +24 -45
data/lib/IceGrid/FileParser.rb +14 -50
data/lib/IceGrid/PluginFacade.rb +40 -0
data/lib/IceGrid/Registry.rb +151 -58
data/lib/IceGrid/Session.rb +25 -64
data/lib/IceGrid/UserAccountMapper.rb +14 -50
data/lib/IcePatch2.rb +1 -1
data/lib/IcePatch2/FileInfo.rb +5 -11
data/lib/IcePatch2/FileServer.rb +33 -76
data/lib/IceStorm.rb +1 -1
data/lib/IceStorm/IceStorm.rb +79 -206
data/lib/IceStorm/Metrics.rb +11 -89
data/slice/Glacier2/Metrics.ice +8 -4
data/slice/Glacier2/PermissionsVerifier.ice +10 -7
data/slice/Glacier2/PermissionsVerifierF.ice +7 -4
data/slice/Glacier2/Router.ice +10 -8
data/slice/Glacier2/RouterF.ice +7 -4
data/slice/Glacier2/SSLInfo.ice +8 -5
data/slice/Glacier2/Session.ice +15 -13
data/slice/Ice/BuiltinSequences.ice +7 -4
data/slice/Ice/Communicator.ice +141 -66
data/slice/Ice/CommunicatorF.ice +7 -4
data/slice/Ice/Connection.ice +183 -86
data/slice/Ice/ConnectionF.ice +7 -4
data/slice/Ice/Current.ice +13 -9
data/slice/Ice/Endpoint.ice +63 -14
data/slice/Ice/EndpointF.ice +7 -4
data/slice/Ice/EndpointTypes.ice +8 -6
data/slice/Ice/FacetMap.ice +7 -4
data/slice/Ice/Identity.ice +13 -5
data/slice/Ice/ImplicitContext.ice +20 -18
data/slice/Ice/ImplicitContextF.ice +7 -4
data/slice/Ice/Instrumentation.ice +20 -19
data/slice/Ice/InstrumentationF.ice +8 -5
data/slice/Ice/LocalException.ice +87 -87
data/slice/Ice/Locator.ice +19 -18
data/slice/Ice/LocatorF.ice +7 -4
data/slice/Ice/Logger.ice +9 -7
data/slice/Ice/LoggerF.ice +7 -4
data/slice/Ice/Metrics.ice +18 -14
data/slice/Ice/ObjectAdapter.ice +30 -13
data/slice/Ice/ObjectAdapterF.ice +7 -4
data/slice/Ice/ObjectFactory.ice +15 -12
data/slice/Ice/Plugin.ice +9 -6
data/slice/Ice/PluginF.ice +8 -5
data/slice/Ice/Process.ice +9 -6
data/slice/Ice/ProcessF.ice +7 -4
data/slice/Ice/Properties.ice +15 -12
data/slice/Ice/PropertiesAdmin.ice +9 -5
data/slice/Ice/PropertiesF.ice +7 -4
data/slice/Ice/RemoteLogger.ice +33 -24
data/slice/Ice/Router.ice +16 -7
data/slice/Ice/RouterF.ice +7 -4
data/slice/Ice/ServantLocator.ice +13 -10
data/slice/Ice/ServantLocatorF.ice +7 -4
data/slice/Ice/SliceChecksumDict.ice +7 -4
data/slice/Ice/ValueFactory.ice +127 -0
data/slice/Ice/Version.ice +9 -5
data/slice/IceBT/ConnectionInfo.ice +53 -0
data/slice/IceBT/EndpointInfo.ice +51 -0
data/slice/IceBT/Types.ice +39 -0
data/slice/IceBox/IceBox.ice +20 -21
data/slice/IceDiscovery/IceDiscovery.ice +9 -5
data/slice/IceGrid/Admin.ice +390 -30
data/slice/IceGrid/Descriptor.ice +37 -29
data/slice/IceGrid/Exception.ice +33 -27
data/slice/IceGrid/FileParser.ice +9 -6
data/slice/IceGrid/PluginFacade.ice +11 -9
data/slice/IceGrid/Registry.ice +139 -16
data/slice/IceGrid/Session.ice +10 -8
data/slice/IceGrid/UserAccountMapper.ice +9 -6
data/slice/IceIAP/ConnectionInfo.ice +70 -0
data/slice/IceIAP/EndpointInfo.ice +64 -0
data/slice/IceLocatorDiscovery/IceLocatorDiscovery.ice +9 -7
data/slice/IcePatch2/FileInfo.ice +9 -8
data/slice/IcePatch2/FileServer.ice +17 -13
data/slice/IceSSL/ConnectionInfo.ice +14 -17
data/slice/IceSSL/ConnectionInfoF.ice +24 -0
data/slice/IceSSL/EndpointInfo.ice +9 -30
data/slice/IceStorm/IceStorm.ice +22 -18
data/slice/IceStorm/Metrics.ice +9 -5
metadata +154 -120
data/ext/ObjectFactory.cpp +0 -140
data/ext/ObjectFactory.h +0 -50
data/ext/ice/cpp/include/Ice/BasicStream.h +0 -1335
data/ext/ice/cpp/include/Ice/Communicator.h +0 -200
data/ext/ice/cpp/include/Ice/Connection.h +0 -497
data/ext/ice/cpp/include/Ice/DeprecatedStringConverter.h +0 -62
data/ext/ice/cpp/include/Ice/Endpoint.h +0 -341
data/ext/ice/cpp/include/Ice/Identity.h +0 -168
data/ext/ice/cpp/include/Ice/Instrumentation.h +0 -365
data/ext/ice/cpp/include/Ice/LocalException.h +0 -1030
data/ext/ice/cpp/include/Ice/Locator.h +0 -2193
data/ext/ice/cpp/include/Ice/Metrics.h +0 -2974
data/ext/ice/cpp/include/Ice/ObjectAdapter.h +0 -168
data/ext/ice/cpp/include/Ice/ObjectFactory.h +0 -92
data/ext/ice/cpp/include/Ice/ObjectFactoryF.h +0 -66
data/ext/ice/cpp/include/Ice/Outgoing.h +0 -225
data/ext/ice/cpp/include/Ice/Plugin.h +0 -125
data/ext/ice/cpp/include/Ice/Process.h +0 -574
data/ext/ice/cpp/include/Ice/PropertiesAdmin.h +0 -830
data/ext/ice/cpp/include/Ice/RemoteLogger.h +0 -1500
data/ext/ice/cpp/include/Ice/Router.h +0 -1159
data/ext/ice/cpp/include/Ice/Stream.h +0 -447
data/ext/ice/cpp/include/Ice/StreamF.h +0 -30
data/ext/ice/cpp/include/Ice/Version.h +0 -262
data/ext/ice/cpp/include/IceSSL/ConnectionInfo.h +0 -158
data/ext/ice/cpp/include/IceSSL/EndpointInfo.h +0 -142
data/ext/ice/cpp/include/IceUtil/AbstractMutex.h +0 -119
data/ext/ice/cpp/include/IceUtil/Cache.h +0 -362
data/ext/ice/cpp/include/Slice/CPlusPlusUtil.h +0 -65
data/ext/ice/cpp/include/Slice/CsUtil.h +0 -92
data/ext/ice/cpp/include/Slice/DotNetNames.h +0 -34
data/ext/ice/cpp/include/Slice/ObjCUtil.h +0 -127
data/ext/ice/cpp/include/Slice/Util.h +0 -56
data/ext/ice/cpp/src/Ice/BasicStream.cpp +0 -3428
data/ext/ice/cpp/src/Ice/DeprecatedStringConverter.cpp +0 -62
data/ext/ice/cpp/src/Ice/ObjectFactoryManager.cpp +0 -139
data/ext/ice/cpp/src/Ice/ObjectFactoryManager.h +0 -43
data/ext/ice/cpp/src/Ice/Outgoing.cpp +0 -694
data/ext/ice/cpp/src/Ice/Stream.cpp +0 -53
data/ext/ice/cpp/src/Ice/StreamI.cpp +0 -832
data/ext/ice/cpp/src/Ice/StreamI.h +0 -198
data/ext/ice/cpp/src/IceSSL/Certificate.cpp +0 -1336
data/ext/ice/cpp/src/IceUtil/Exception.cpp +0 -792
data/ext/ice/cpp/src/IceUtil/FileUtil.h +0 -185
data/ext/ice/cpp/src/Slice/CsUtil.cpp +0 -2660
data/ext/ice/cpp/src/Slice/DotNetNames.cpp +0 -146
data/ext/ice/cpp/src/Slice/ObjCUtil.cpp +0 -1310
data/lib/IceGrid/Locator.rb +0 -106
data/lib/IceGrid/Observer.rb +0 -572
data/lib/IceGrid/Query.rb +0 -169
data/slice/Freeze/BackgroundSaveEvictor.ice +0 -111
data/slice/Freeze/CatalogData.ice +0 -49
data/slice/Freeze/Connection.ice +0 -121
data/slice/Freeze/DB.ice +0 -37
data/slice/Freeze/Evictor.ice +0 -346
data/slice/Freeze/EvictorF.ice +0 -22
data/slice/Freeze/EvictorStorage.ice +0 -72
data/slice/Freeze/Exception.ice +0 -100
data/slice/Freeze/Transaction.ice +0 -58
data/slice/Freeze/TransactionalEvictor.ice +0 -50
data/slice/IceGrid/Locator.ice +0 -57
data/slice/IceGrid/Observer.ice +0 -395
data/slice/IceGrid/Query.ice +0 -131

data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.h CHANGED

@@ -1,53 +1,50 @@
 // **********************************************************************
 //
-// Copyright (c) 2003-2018 ZeroC, Inc. All rights reserved.
+// Copyright (c) 2003-2017 ZeroC, Inc. All rights reserved.
 //
 // This copy of Ice is licensed to you under the terms described in the
 // ICE_LICENSE file included in this distribution.
 //
 // **********************************************************************
-#ifndef ICE_SSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
-#define ICE_SSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
+#ifndef ICESSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
+#define ICESSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
 #include <IceSSL/Config.h>
 #include <IceSSL/InstanceF.h>
-#include <IceSSL/SSLEngineF.h>
+#include <IceSSL/SecureTransportEngineF.h>
 #include <IceSSL/Plugin.h>
 #include <Ice/Transceiver.h>
+#include <Ice/UniqueRef.h>
 #include <Ice/Network.h>
-#include <Ice/StreamSocket.h>
-#include <Ice/WSTransceiver.h>
-#ifdef ICE_USE_SECURE_TRANSPORT
 #include <Security/Security.h>
+#include <Security/SecureTransport.h>
 #include <CoreFoundation/CoreFoundation.h>
 namespace IceSSL
 {
-class ConnectorI;
-class AcceptorI;
+namespace SecureTransport
+{
-class TransceiverI : public IceInternal::Transceiver, public IceInternal::WSTransceiverDelegate
+class TransceiverI : public IceInternal::Transceiver
 {
 public:
     virtual IceInternal::NativeInfoPtr getNativeInfo();
-    virtual IceInternal::SocketOperation initialize(IceInternal::Buffer&, IceInternal::Buffer&, bool&);
+    virtual IceInternal::SocketOperation initialize(IceInternal::Buffer&, IceInternal::Buffer&);
     virtual IceInternal::SocketOperation closing(bool, const Ice::LocalException&);
     virtual void close();
     virtual IceInternal::SocketOperation write(IceInternal::Buffer&);
-    virtual IceInternal::SocketOperation read(IceInternal::Buffer&, bool&);
+    virtual IceInternal::SocketOperation read(IceInternal::Buffer&);
     virtual std::string protocol() const;
     virtual std::string toString() const;
     virtual std::string toDetailedString() const;
     virtual Ice::ConnectionInfoPtr getInfo() const;
-    virtual Ice::ConnectionInfoPtr getWSInfo(const Ice::HeaderDict&) const;
     virtual void checkSendSize(const IceInternal::Buffer&);
     virtual void setBufferSize(int rcvSize, int sndSize);
@@ -56,26 +53,22 @@ public:
 private:
-    TransceiverI(const InstancePtr&, const IceInternal::StreamSocketPtr&, const std::string&, bool);
+    TransceiverI(const InstancePtr&, const IceInternal::TransceiverPtr&, const std::string&, bool);
     virtual ~TransceiverI();
-    void fillConnectionInfo(const ConnectionInfoPtr&, std::vector<CertificatePtr>&) const;
-    friend class ConnectorI;
-    friend class AcceptorI;
+    friend class IceSSL::SecureTransport::SSLEngine;
     const InstancePtr _instance;
-    const SecureTransportEnginePtr _engine;
+    const SSLEnginePtr _engine;
     const std::string _host;
     const std::string _adapterName;
     const bool _incoming;
-    const IceInternal::StreamSocketPtr _stream;
+    const IceInternal::TransceiverPtr _delegate;
+    IceInternal::UniqueRef<SSLContextRef> _ssl;
+    IceInternal::UniqueRef<SecTrustRef> _trust;
+    bool _connected;
-    SSLContextRef _ssl;
-    SecTrustRef _trust;
-    bool _verified;
-    size_t _buffered;
     enum SSLWantFlags
     {
         SSLWantRead = 0x1,
@@ -85,11 +78,15 @@ private:
     mutable Ice::Byte _flags;
     size_t _maxSendPacketSize;
     size_t _maxRecvPacketSize;
+    std::string _cipher;
+    std::vector<CertificatePtr> _certs;
+    bool _verified;
+    size_t _buffered;
 };
 typedef IceUtil::Handle<TransceiverI> TransceiverIPtr;
-}
+} // SecureTransport namespace end
-#endif
+} // IceSSL namespace end
 #endif

data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.cpp ADDED

@@ -0,0 +1,857 @@
+// **********************************************************************
+//
+// Copyright (c) 2003-2017 ZeroC, Inc. All rights reserved.
+//
+// This copy of Ice is licensed to you under the terms described in the
+// ICE_LICENSE file included in this distribution.
+//
+// **********************************************************************
+#include <IceSSL/SecureTransportUtil.h>
+#include <IceSSL/Plugin.h>
+#include <Ice/Base64.h>
+#include <Ice/UniqueRef.h>
+#include <Ice/LocalException.h>
+#include <IceUtil/FileUtil.h>
+#include <IceUtil/StringUtil.h>
+#include <fstream>
+#include <Security/Security.h>
+#include <CoreFoundation/CoreFoundation.h>
+using namespace Ice;
+using namespace IceInternal;
+using namespace IceSSL;
+using namespace IceSSL::SecureTransport;
+using namespace std;
+namespace
+{
+CFMutableDataRef
+readCertFile(const string& file)
+{
+    ifstream is(IceUtilInternal::streamFilename(file).c_str(), ios::in | ios::binary);
+    if(!is.good())
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "error opening file " + file);
+    }
+    is.seekg(0, is.end);
+    size_t size = is.tellg();
+    is.seekg(0, is.beg);
+    UniqueRef<CFMutableDataRef> data(CFDataCreateMutable(kCFAllocatorDefault, size));
+    CFDataSetLength(data.get(), size);
+    is.read(reinterpret_cast<char*>(CFDataGetMutableBytePtr(data.get())), size);
+    if(!is.good())
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "error reading file " + file);
+    }
+    return data.release();
+}
+}
+string
+IceSSL::SecureTransport::sslErrorToString(CFErrorRef err)
+{
+    ostringstream os;
+    if(err)
+    {
+        UniqueRef<CFStringRef> s(CFErrorCopyDescription(err));
+        os << "(error: " << CFErrorGetCode(err) << " description: " << fromCFString(s.get()) << ")";
+    }
+    return os.str();
+}
+string
+IceSSL::SecureTransport::sslErrorToString(OSStatus status)
+{
+    ostringstream os;
+    os << "(error: " << status;
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+    UniqueRef<CFStringRef> s(SecCopyErrorMessageString(status, 0));
+    if(s)
+    {
+        os << " description: " << fromCFString(s.get());
+    }
+#endif
+    os << ")";
+    return os.str();
+}
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+CFDictionaryRef
+IceSSL::SecureTransport::getCertificateProperty(SecCertificateRef cert, CFTypeRef key)
+{
+    UniqueRef<CFDictionaryRef> property;
+    UniqueRef<CFArrayRef> keys(CFArrayCreate(ICE_NULLPTR, &key , 1, &kCFTypeArrayCallBacks));
+    UniqueRef<CFErrorRef> err;
+    UniqueRef<CFDictionaryRef> values(SecCertificateCopyValues(cert, keys.get(), &err.get()));
+    if(err)
+    {
+        ostringstream os;
+        os << "IceSSL: error getting property for certificate:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    assert(values);
+    property.retain(static_cast<CFDictionaryRef>(CFDictionaryGetValue(values.get(), key)));
+    return property.release();
+}
+namespace
+{
+//
+// Check the certificate basic constraints to check if the certificate is marked as a CA.
+//
+bool
+isCA(SecCertificateRef cert)
+{
+    UniqueRef<CFDictionaryRef> property(getCertificateProperty(cert, kSecOIDBasicConstraints));
+    if(property)
+    {
+        CFArrayRef propertyValues = static_cast<CFArrayRef>(CFDictionaryGetValue(property.get(), kSecPropertyKeyValue));
+        for(int i = 0, size = CFArrayGetCount(propertyValues); i < size; ++i)
+        {
+            CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(propertyValues, i));
+            CFStringRef label = static_cast<CFStringRef>(CFDictionaryGetValue(dict, kSecPropertyKeyLabel));
+            if(CFEqual(label, CFSTR("Certificate Authority")))
+            {
+                return CFEqual(static_cast<CFStringRef>(CFDictionaryGetValue(dict, kSecPropertyKeyValue)), CFSTR("Yes"));
+            }
+        }
+    }
+    return false;
+}
+//
+// Load keychain items (Certificates or Private Keys) from a file. On return items param contain
+// the list of items, the caller must release it.
+//
+CFArrayRef
+loadKeychainItems(const string& file, SecExternalItemType type, SecKeychainRef keychain, const string& passphrase,
+                  const PasswordPromptPtr& prompt, int retryMax)
+{
+    UniqueRef<CFMutableDataRef> data(readCertFile(file));
+    SecItemImportExportKeyParameters params;
+    memset(&params, 0, sizeof(params));
+    params.version =  SEC_KEY_IMPORT_EXPORT_PARAMS_VERSION;
+    params.flags |= kSecKeyNoAccessControl;
+    UniqueRef<CFStringRef> passphraseHolder;
+    if(!passphrase.empty())
+    {
+        passphraseHolder.reset(toCFString(passphrase));
+        params.passphrase = passphraseHolder.get();
+    }
+    UniqueRef<CFArrayRef> items;
+    SecExternalItemType importType = type;
+    SecExternalFormat format = type == kSecItemTypeUnknown ? kSecFormatPKCS12 : kSecFormatUnknown;
+    UniqueRef<CFStringRef> path(toCFString(file));
+    OSStatus err = SecItemImport(data.get(), path.get(), &format, &importType, 0, &params, keychain, &items.get());
+    //
+    // If passphrase failure and no password was configured, we obtain
+    // the password from the given prompt or configure the import to
+    // prompt the user with an alert dialog.
+    //
+    UniqueRef<CFStringRef> alertPromptHolder;
+    if(passphrase.empty() &&
+       (err == errSecPassphraseRequired || err == errSecInvalidData || err == errSecPkcs12VerifyFailure))
+    {
+        if(!prompt)
+        {
+            params.flags |= kSecKeySecurePassphrase;
+            ostringstream os;
+            os << "Enter the password for\n" << file;
+            alertPromptHolder.reset(toCFString(os.str()));
+            params.alertPrompt = alertPromptHolder.get();
+        }
+        int count = 0;
+        while((err == errSecPassphraseRequired || err == errSecInvalidData || err == errSecPkcs12VerifyFailure) &&
+              count < retryMax)
+        {
+            if(prompt)
+            {
+                passphraseHolder.reset(toCFString(prompt->getPassword()));
+                params.passphrase = passphraseHolder.get();
+            }
+            err = SecItemImport(data.get(), path.get(), &format, &importType, 0, &params, keychain, &items.get());
+            ++count;
+        }
+    }
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: error reading " << (type == kSecItemTypePrivateKey ? "private key" : "certificate");
+        os << " `" << file << "':\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    if(type != kSecItemTypeUnknown && importType != kSecItemTypeAggregate && importType != type)
+    {
+        ostringstream os;
+        os << "IceSSL: error reading " << (type == kSecItemTypePrivateKey ? "private key" : "certificate");
+        os << " `" << file << "' doesn't contain the expected item";
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    return items.release();
+}
+SecKeychainRef
+openKeychain(const std::string& path, const std::string& keychainPassword)
+{
+    string keychainPath = path;
+    UniqueRef<SecKeychainRef> keychain;
+    OSStatus err = 0;
+    if(keychainPath.empty())
+    {
+        if((err = SecKeychainCopyDefault(&keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to retrieve default keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else
+    {
+        //
+        // KeyChain path is relative to the current working directory.
+        //
+        if(!IceUtilInternal::isAbsolutePath(keychainPath))
+        {
+            string cwd;
+            if(IceUtilInternal::getcwd(cwd) == 0)
+            {
+                keychainPath = string(cwd) + '/' + keychainPath;
+            }
+        }
+        if((err = SecKeychainOpen(keychainPath.c_str(), &keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unable to open keychain: `" +
+                                                keychainPath + "'\n" + sslErrorToString(err));
+        }
+    }
+    SecKeychainStatus status;
+    err = SecKeychainGetStatus(keychain.get(), &status);
+    if(err == noErr)
+    {
+        const char* pass = keychainPassword.empty() ? 0 : keychainPassword.c_str();
+        if((err = SecKeychainUnlock(keychain.get(), keychainPassword.size(), pass, pass != 0)))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to unlock keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else if(err == errSecNoSuchKeychain)
+    {
+        const char* pass = keychainPassword.empty() ? 0 : keychainPassword.c_str();
+        keychain.reset(0);
+        if((err = SecKeychainCreate(keychainPath.c_str(), keychainPassword.size(), pass, pass == 0, 0, &keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to create keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: unable to open keychain:\n" + sslErrorToString(err));
+    }
+    //
+    // Set keychain settings to avoid keychain lock.
+    //
+    SecKeychainSettings settings;
+    settings.version = SEC_KEYCHAIN_SETTINGS_VERS1;
+    settings.lockOnSleep = FALSE;
+    settings.useLockInterval = FALSE;
+    settings.lockInterval = INT_MAX;
+    if((err = SecKeychainSetSettings(keychain.get(), &settings)))
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error setting keychain settings:\n" + sslErrorToString(err));
+    }
+    return keychain.release();
+}
+//
+// Imports a certificate private key and optionally add it to a keychain.
+//
+SecIdentityRef
+loadPrivateKey(const string& file, SecCertificateRef cert, SecKeychainRef keychain, const string& password,
+               const PasswordPromptPtr& prompt, int retryMax)
+{
+    //
+    // Check if we already imported the certificate
+    //
+    UniqueRef<CFDataRef> hash;
+    UniqueRef<CFDictionaryRef> subjectKeyProperty(getCertificateProperty(cert, kSecOIDSubjectKeyIdentifier));
+    if(subjectKeyProperty)
+    {
+        CFArrayRef values = static_cast<CFArrayRef>(CFDictionaryGetValue(subjectKeyProperty.get(),
+                                                                         kSecPropertyKeyValue));
+        for(int i = 0; i < CFArrayGetCount(values); ++i)
+        {
+            CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(values, i));
+            if(CFEqual(CFDictionaryGetValue(dict, kSecPropertyKeyLabel), CFSTR("Key Identifier")))
+            {
+                hash.retain(static_cast<CFDataRef>(CFDictionaryGetValue(dict, kSecPropertyKeyValue)));
+                break;
+            }
+        }
+    }
+    const void* values[] = { keychain };
+    UniqueRef<CFArrayRef> searchList(CFArrayCreate(kCFAllocatorDefault, values, 1, &kCFTypeArrayCallBacks));
+    UniqueRef<CFMutableDictionaryRef> query(CFDictionaryCreateMutable(0,
+                                                                      0,
+                                                                      &kCFTypeDictionaryKeyCallBacks,
+                                                                      &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecMatchSearchList, searchList.get());
+    CFDictionarySetValue(query.get(), kSecAttrSubjectKeyID, hash.get());
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    UniqueRef<CFTypeRef> value(0);
+    OSStatus err = SecItemCopyMatching(query.get(), &value.get());
+    UniqueRef<SecCertificateRef> item(static_cast<SecCertificateRef>(const_cast<void*>(value.release())));
+    if(err == noErr)
+    {
+        //
+        // If the certificate has already been imported, create the
+        // identity. The key should also have been imported.
+        //
+        UniqueRef<SecIdentityRef> identity;
+        err = SecIdentityCreateWithCertificate(keychain, item.get(), &identity.get());
+        if(err != noErr)
+        {
+            ostringstream os;
+            os << "IceSSL: error creating certificate identity:\n" << sslErrorToString(err);
+            throw CertificateReadException(__FILE__, __LINE__, os.str());
+        }
+        return identity.release();
+    }
+    else if(err != errSecItemNotFound)
+    {
+        ostringstream os;
+        os << "IceSSL: error searching for keychain items:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    //
+    // If the certificate isn't already in the keychain, load the
+    // private key into the keychain and add the certificate.
+    //
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypePrivateKey, keychain, password, prompt, retryMax));
+    int count = CFArrayGetCount(items.get());
+    UniqueRef<SecKeyRef> key;
+    for(int i = 0; i < count; ++i)
+    {
+        SecKeychainItemRef item =
+            static_cast<SecKeychainItemRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), 0)));
+        if(SecKeyGetTypeID() == CFGetTypeID(item))
+        {
+            key.retain(reinterpret_cast<SecKeyRef>(item));
+            break;
+        }
+    }
+    if(!key)
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "IceSSL: no key in file `" + file + "'");
+    }
+    //
+    // Add the certificate to the keychain
+    //
+    query.reset(CFDictionaryCreateMutable(kCFAllocatorDefault,
+                                          0,
+                                          &kCFTypeDictionaryKeyCallBacks,
+                                          &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecUseKeychain, keychain);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecValueRef, cert);
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    value.reset(0);
+    err = SecItemAdd(query.get(), static_cast<CFTypeRef*>(&value.get()));
+    UniqueRef<CFArrayRef> added(static_cast<CFArrayRef>(value.release()));
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: failure adding certificate to keychain\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    item.retain(static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(added.get(), 0))));
+    //
+    // Create the association between the private  key and the certificate,
+    // kSecKeyLabel attribute should match the subject key identifier.
+    //
+    vector<SecKeychainAttribute> attributes;
+    if(hash)
+    {
+        SecKeychainAttribute attr;
+        attr.tag = kSecKeyLabel;
+        attr.data = const_cast<UInt8*>(CFDataGetBytePtr(hash.get()));
+        attr.length = CFDataGetLength(hash.get());
+        attributes.push_back(attr);
+    }
+    //
+    // kSecKeyPrintName attribute correspond to the keychain display
+    // name.
+    //
+    string label;
+    UniqueRef<CFStringRef> commonName(0);
+    if(SecCertificateCopyCommonName(item.get(), &commonName.get()) == noErr)
+    {
+        label = fromCFString(commonName.get());
+        SecKeychainAttribute attr;
+        attr.tag = kSecKeyPrintName;
+        attr.data = const_cast<char*>(label.c_str());
+        attr.length = label.size();
+        attributes.push_back(attr);
+    }
+    SecKeychainAttributeList attrs;
+    attrs.attr = &attributes[0];
+    attrs.count = attributes.size();
+    SecKeychainItemModifyAttributesAndData(reinterpret_cast<SecKeychainItemRef>(key.get()), &attrs, 0, 0);
+    UniqueRef<SecIdentityRef> identity;
+    err = SecIdentityCreateWithCertificate(keychain, item.get(), &identity.get());
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: error creating certificate identity:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    return identity.release();
+}
+} // anonymous namespace end
+#else
+namespace
+{
+CFArrayRef
+loadCerts(const string& file)
+{
+    UniqueRef<CFArrayRef> certs(CFArrayCreateMutable(kCFAllocatorDefault, 0, &kCFTypeArrayCallBacks));
+    if(file.find(".pem") != string::npos)
+    {
+        vector<char> buffer;
+        readFile(file, buffer);
+        string strbuf(buffer.begin(), buffer.end());
+        string::size_type size, startpos, endpos = 0;
+        bool first = true;
+        while(true)
+        {
+            startpos = strbuf.find("-----BEGIN CERTIFICATE-----", endpos);
+            if(startpos != string::npos)
+            {
+                startpos += sizeof("-----BEGIN CERTIFICATE-----");
+                endpos = strbuf.find("-----END CERTIFICATE-----", startpos);
+                if(endpos == string::npos)
+                {
+                    InitializationException ex(__FILE__, __LINE__);
+                    ex.reason = "IceSSL: certificate " + file + " is not a valid PEM-encoded certificate";
+                    throw ex;
+                }
+                size = endpos - startpos;
+            }
+            else if(first)
+            {
+                startpos = 0;
+                endpos = string::npos;
+                size = strbuf.size();
+            }
+            else
+            {
+                break;
+            }
+            vector<unsigned char> data(IceInternal::Base64::decode(string(&buffer[startpos], size)));
+            UniqueRef<CFDataRef> certdata(CFDataCreate(kCFAllocatorDefault, &data[0], data.size()));
+            UniqueRef<SecCertificateRef> cert(SecCertificateCreateWithData(0, certdata.get()));
+            if(!cert)
+            {
+                InitializationException ex(__FILE__, __LINE__);
+                ex.reason = "IceSSL: certificate " + file + " is not a valid PEM-encoded certificate";
+                throw ex;
+            }
+            CFArrayAppendValue(const_cast<CFMutableArrayRef>(certs.get()), cert.get());
+            first = false;
+        }
+    }
+    else
+    {
+        UniqueRef<CFDataRef> data(readCertFile(file));
+        UniqueRef<SecCertificateRef> cert(SecCertificateCreateWithData(0, data.get()));
+        if(!cert)
+        {
+            InitializationException ex(__FILE__, __LINE__);
+            ex.reason = "IceSSL: certificate " + file + " is not a valid DER-encoded certificate";
+            throw ex;
+        }
+        CFArrayAppendValue(const_cast<CFMutableArrayRef>(certs.get()), cert.get());
+    }
+    return certs.release();
+}
+}
+#endif
+//
+// Imports a certificate (it might contain an identity or certificate depending on the format).
+//
+CFArrayRef
+IceSSL::SecureTransport::loadCertificateChain(const string& file,
+                                              const string& keyFile,
+                                              const std::string& keychainPath,
+                                              const string& keychainPassword,
+                                              const string& password,
+                                              const PasswordPromptPtr& prompt,
+                                              int retryMax)
+{
+    UniqueRef<CFArrayRef> chain;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    UniqueRef<CFDataRef> cert(readCertFile(file));
+    UniqueRef<CFMutableDictionaryRef> settings(CFDictionaryCreateMutable(0,
+                                                                         1,
+                                                                         &kCFTypeDictionaryKeyCallBacks,
+                                                                         &kCFTypeDictionaryValueCallBacks));
+    UniqueRef<CFArrayRef> items;
+    OSStatus err;
+    int count = 0;
+    do
+    {
+        items.reset();
+        UniqueRef<CFStringRef> pass(toCFString(password.empty() && prompt ? prompt->getPassword() : password));
+        CFDictionarySetValue(settings.get(), kSecImportExportPassphrase, pass.get());
+        err = SecPKCS12Import(cert.get(), settings.get(), &items.get());
+        ++count;
+    }
+    while(password.empty() && prompt && err == errSecAuthFailed && count < retryMax);
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: unable to import certificate from file " << file << " (error = " << err << ")";
+        throw InitializationException(__FILE__, __LINE__, os.str());
+    }
+    for(int i = 0; i < CFArrayGetCount(items.get()); ++i)
+    {
+        CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(items.get(), i));
+        SecIdentityRef identity = static_cast<SecIdentityRef>(
+            const_cast<void*>(CFDictionaryGetValue(dict, kSecImportItemIdentity)));
+        if(identity)
+        {
+            CFArrayRef certs = static_cast<CFArrayRef>(CFDictionaryGetValue(dict, kSecImportItemCertChain));
+            chain.reset(CFArrayCreateMutableCopy(kCFAllocatorDefault, 0, certs));
+            CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(chain.get()), 0, identity);
+        }
+    }
+    if(!chain)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't find identity in file " << file;
+        throw InitializationException(__FILE__, __LINE__, os.str());
+    }
+#else
+    UniqueRef<SecKeychainRef> keychain(openKeychain(keychainPath, keychainPassword));
+    if(keyFile.empty())
+    {
+        chain.reset(loadKeychainItems(file, kSecItemTypeUnknown, keychain.get(), password, prompt, retryMax));
+    }
+    else
+    {
+        //
+        // Load the certificate, don't load into the keychain as it
+        // might already have been imported.
+        //
+        UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, password, prompt, retryMax));
+        SecCertificateRef cert =
+            static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), 0)));
+        if(SecCertificateGetTypeID() != CFGetTypeID(cert))
+        {
+            ostringstream os;
+            os << "IceSSL: couldn't find certificate in `" << file << "'";
+            throw CertificateReadException(__FILE__, __LINE__, os.str());
+        }
+        //
+        // Load the private key for the given certificate. This will
+        // add the certificate/key to the keychain if they aren't
+        // already present in the keychain.
+        //
+        UniqueRef<SecIdentityRef> identity(loadPrivateKey(keyFile, cert, keychain.get(), password, prompt, retryMax));
+        chain.reset(CFArrayCreateMutableCopy(kCFAllocatorDefault, 0, items.get()));
+        CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(chain.get()), 0, identity.get());
+    }
+#endif
+    return chain.release();
+}
+SecCertificateRef
+IceSSL::SecureTransport::loadCertificate(const string& file)
+{
+    UniqueRef<SecCertificateRef> cert;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    UniqueRef<CFArrayRef> certs(loadCerts(file));
+    assert(CFArrayGetCount(certs.get()) > 0);
+    cert.retain((SecCertificateRef)CFArrayGetValueAtIndex(certs.get(), 0));
+#else
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, "", 0, 0));
+    cert.retain((SecCertificateRef)CFArrayGetValueAtIndex(items.get(), 0));
+#endif
+    return cert.release();
+}
+CFArrayRef
+IceSSL::SecureTransport::loadCACertificates(const string& file)
+{
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    return loadCerts(file);
+#else
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, "", 0, 0));
+    UniqueRef<CFArrayRef> certificateAuthorities(CFArrayCreateMutable(kCFAllocatorDefault, 0, &kCFTypeArrayCallBacks));
+    int count = CFArrayGetCount(items.get());
+    for(CFIndex i = 0; i < count; ++i)
+    {
+        SecCertificateRef cert =
+            static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), i)));
+        assert(SecCertificateGetTypeID() == CFGetTypeID(cert));
+        if(isCA(cert))
+        {
+            CFArrayAppendValue(const_cast<CFMutableArrayRef>(certificateAuthorities.get()), cert);
+        }
+    }
+    return certificateAuthorities.release();
+#endif
+}
+CFArrayRef
+IceSSL::SecureTransport::findCertificateChain(const std::string& keychainPath,
+                                              const std::string& keychainPassword,
+                                              const string& value)
+{
+    //
+    //  Search the keychain using key:value pairs. The following keys are supported:
+    //
+    //   Label
+    //   Serial
+    //   Subject
+    //   SubjectKeyId
+    //
+    //   A value must be enclosed in single or double quotes if it contains whitespace.
+    //
+    UniqueRef<CFMutableDictionaryRef> query(CFDictionaryCreateMutable(0,
+                                                                      0,
+                                                                      &kCFTypeDictionaryKeyCallBacks,
+                                                                      &kCFTypeDictionaryValueCallBacks));
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+    UniqueRef<SecKeychainRef> keychain(openKeychain(keychainPath, keychainPassword));
+    const void* values[] = { keychain.get() };
+    UniqueRef<CFArrayRef> searchList(CFArrayCreate(kCFAllocatorDefault, values, 1, &kCFTypeArrayCallBacks));
+    CFDictionarySetValue(query.get(), kSecMatchSearchList, searchList.get());
+#endif
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    CFDictionarySetValue(query.get(), kSecMatchCaseInsensitive, kCFBooleanTrue);
+    size_t start = 0;
+    size_t pos;
+    bool valid = false;
+    while((pos = value.find(':', start)) != string::npos)
+    {
+        string field = IceUtilInternal::toUpper(IceUtilInternal::trim(value.substr(start, pos - start)));
+        string arg;
+        if(field != "LABEL" && field != "SERIAL" && field != "SUBJECT" && field != "SUBJECTKEYID")
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unknown key in `" + value + "'");
+        }
+        start = pos + 1;
+        while(start < value.size() && (value[start] == ' ' || value[start] == '\t'))
+        {
+            ++start;
+        }
+        if(start == value.size())
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: missing argument in `" + value + "'");
+        }
+        if(value[start] == '"' || value[start] == '\'')
+        {
+            size_t end = start;
+            ++end;
+            while(end < value.size())
+            {
+                if(value[end] == value[start] && value[end - 1] != '\\')
+                {
+                    break;
+                }
+                ++end;
+            }
+            if(end == value.size() || value[end] != value[start])
+            {
+                throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unmatched quote in `" + value + "'");
+            }
+            ++start;
+            arg = value.substr(start, end - start);
+            start = end + 1;
+        }
+        else
+        {
+            size_t end = value.find_first_of(" \t", start);
+            if(end == string::npos)
+            {
+                arg = value.substr(start);
+                start = value.size();
+            }
+            else
+            {
+                arg = value.substr(start, end - start);
+                start = end + 1;
+            }
+        }
+        if(field == "SUBJECT" || field == "LABEL")
+        {
+            UniqueRef<CFStringRef> v(toCFString(arg));
+            CFDictionarySetValue(query.get(), field == "LABEL" ? kSecAttrLabel : kSecMatchSubjectContains, v.get());
+            valid = true;
+        }
+        else if(field == "SUBJECTKEYID" || field == "SERIAL")
+        {
+            vector<unsigned char> buffer;
+            if(!parseBytes(arg, buffer))
+            {
+                throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: invalid value `" + value + "'");
+            }
+            UniqueRef<CFDataRef> v(CFDataCreate(kCFAllocatorDefault, &buffer[0], buffer.size()));
+            CFDictionarySetValue(query.get(), field == "SUBJECTKEYID" ? kSecAttrSubjectKeyID : kSecAttrSerialNumber,
+                                 v.get());
+            valid = true;
+        }
+    }
+    if(!valid)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: invalid value `" + value + "'");
+    }
+    UniqueRef<SecCertificateRef> cert;
+    OSStatus err = SecItemCopyMatching(query.get(), (CFTypeRef*)&cert.get());
+    if(err != noErr)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: find certificate `" + value + "' failed:\n" + sslErrorToString(err));
+    }
+    //
+    // Retrieve the certificate chain
+    //
+    UniqueRef<SecPolicyRef> policy(SecPolicyCreateSSL(true, 0));
+    UniqueRef<SecTrustRef> trust;
+    err = SecTrustCreateWithCertificates(reinterpret_cast<CFArrayRef>(cert.get()), policy.get(), &trust.get());
+    if(err || !trust)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error creating trust object" +
+                                            (err ? ":\n" + sslErrorToString(err) : ""));
+    }
+    SecTrustResultType trustResult;
+    if((err = SecTrustEvaluate(trust.get(), &trustResult)))
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error evaluating trust:\n" + sslErrorToString(err));
+    }
+    int chainLength = SecTrustGetCertificateCount(trust.get());
+    UniqueRef<CFArrayRef> items(CFArrayCreateMutable(kCFAllocatorDefault, chainLength, &kCFTypeArrayCallBacks));
+    for(int i = 0; i < chainLength; ++i)
+    {
+        CFArrayAppendValue(const_cast<CFMutableArrayRef>(items.get()), SecTrustGetCertificateAtIndex(trust.get(), i));
+    }
+    //
+    // Replace the first certificate in the chain with the
+    // identity.
+    //
+    UniqueRef<SecIdentityRef> identity;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    //
+    // SecIdentityCreateWithCertificate isn't supported on iOS so we lookup the identity
+    // using the certicate label. If the user added the identity with SecItemAdd the
+    // identity has the same label as the certificate.
+    //
+    query.reset(CFDictionaryCreateMutable(0, 1, &kCFTypeDictionaryKeyCallBacks, &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecValueRef, cert.get());
+    CFDictionarySetValue(query.get(), kSecReturnAttributes, kCFBooleanTrue);
+    UniqueRef<CFDictionaryRef> attributes;
+    err = SecItemCopyMatching(query.get(), reinterpret_cast<CFTypeRef*>(&attributes.get()));
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't create identity for certificate found in the keychain:\n" << sslErrorToString(err);
+        throw PluginInitializationException(__FILE__, __LINE__, os.str());
+    }
+    // Now lookup the identity with the label
+    query.reset(CFDictionaryCreateMutable(0, 0, &kCFTypeDictionaryKeyCallBacks, &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassIdentity);
+    CFDictionarySetValue(query.get(), kSecAttrLabel, (CFDataRef)CFDictionaryGetValue(attributes.get(), kSecAttrLabel));
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    err = SecItemCopyMatching(query.get(), (CFTypeRef*)&identity.get());
+    if(err == noErr)
+    {
+        UniqueRef<SecCertificateRef> cert2;
+        if((err = SecIdentityCopyCertificate(identity.get(), &cert2.get())) == noErr)
+        {
+            err = CFEqual(cert2.get(), cert.get()) ? noErr : errSecItemNotFound;
+        }
+    }
+#else
+    err = SecIdentityCreateWithCertificate(keychain.get(), cert.get(), &identity.get());
+#endif
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't create identity for certificate found in the keychain:\n" << sslErrorToString(err);
+        throw PluginInitializationException(__FILE__, __LINE__, os.str());
+    }
+    CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(items.get()), 0, identity.get());
+    return items.release();
+}