RubyGems - zeroc-ice - Versions diffs - 3.6.5 → 3.7.4 - Mend

zeroc-ice 3.6.5 → 3.7.4

Files changed (777) hide show

checksums.yaml +5 -5
data/ICE_LICENSE +17 -17
data/LICENSE +12 -12
data/bin/slice2rb +1 -6
data/ext/Communicator.cpp +223 -61
data/ext/Communicator.h +1 -6
data/ext/Config.h +23 -7
data/ext/Connection.cpp +108 -76
data/ext/Connection.h +4 -6
data/ext/Endpoint.cpp +16 -54
data/ext/Endpoint.h +1 -6
data/ext/ImplicitContext.cpp +1 -10
data/ext/ImplicitContext.h +1 -6
data/ext/Init.cpp +4 -6
data/ext/Logger.cpp +1 -6
data/ext/Logger.h +1 -6
data/ext/Operation.cpp +38 -54
data/ext/Operation.h +1 -6
data/ext/Properties.cpp +3 -8
data/ext/Properties.h +1 -6
data/ext/Proxy.cpp +111 -70
data/ext/Proxy.h +1 -6
data/ext/Slice.cpp +5 -20
data/ext/Slice.h +1 -6
data/ext/Types.cpp +313 -224
data/ext/Types.h +118 -71
data/ext/Util.cpp +69 -36
data/ext/Util.h +117 -42
data/ext/ValueFactoryManager.cpp +440 -0
data/ext/ValueFactoryManager.h +95 -0
data/ext/extconf.rb +52 -48
data/ext/ice/cpp/include/Ice/Application.h +275 -105
data/ext/ice/cpp/include/Ice/AsyncResult.h +124 -337
data/ext/ice/cpp/include/Ice/AsyncResultF.h +4 -7
data/ext/ice/cpp/include/Ice/BatchRequestInterceptor.h +39 -16
data/ext/ice/cpp/include/Ice/BatchRequestQueueF.h +1 -6
data/ext/ice/cpp/include/Ice/Buffer.h +10 -15
data/ext/ice/cpp/include/Ice/CommunicatorAsync.h +56 -17
data/ext/ice/cpp/include/Ice/Comparable.h +205 -0
data/ext/ice/cpp/include/Ice/Config.h +16 -39
data/ext/ice/cpp/include/Ice/ConnectionAsync.h +203 -16
data/ext/ice/cpp/include/Ice/ConnectionIF.h +7 -6
data/ext/ice/cpp/include/Ice/ConsoleUtil.h +23 -0
data/ext/ice/cpp/include/Ice/DefaultValueFactory.h +57 -0
data/ext/ice/cpp/include/Ice/DispatchInterceptor.h +20 -12
data/ext/ice/cpp/include/Ice/Dispatcher.h +35 -19
data/ext/ice/cpp/include/Ice/DynamicLibrary.h +7 -10
data/ext/ice/cpp/include/Ice/DynamicLibraryF.h +1 -6
data/ext/ice/cpp/include/Ice/Exception.h +110 -63
data/ext/ice/cpp/include/Ice/ExceptionHelpers.h +74 -0
data/ext/ice/cpp/include/Ice/FactoryTable.h +22 -18
data/ext/ice/cpp/include/Ice/FactoryTableInit.h +28 -31
data/ext/ice/cpp/include/Ice/Format.h +17 -18
data/ext/ice/cpp/include/Ice/Functional.h +38 -38
data/ext/ice/cpp/include/Ice/GCObject.h +9 -10
data/ext/ice/cpp/include/Ice/Handle.h +6 -16
data/ext/ice/cpp/include/Ice/Ice.h +9 -10
data/ext/ice/cpp/include/Ice/IconvStringConverter.h +377 -0
data/ext/ice/cpp/include/Ice/Incoming.h +132 -38
data/ext/ice/cpp/include/Ice/IncomingAsync.h +109 -31
data/ext/ice/cpp/include/Ice/IncomingAsyncF.h +7 -6
data/ext/ice/cpp/include/Ice/Initialize.h +872 -60
data/ext/ice/cpp/include/Ice/InputStream.h +1514 -0
data/ext/ice/cpp/include/Ice/InstanceF.h +1 -7
data/ext/ice/cpp/include/Ice/InterfaceByValue.h +57 -0
data/ext/ice/cpp/include/Ice/LocalObject.h +13 -14
data/ext/ice/cpp/include/Ice/LocalObjectF.h +1 -6
data/ext/ice/cpp/include/Ice/LoggerUtil.h +56 -24
data/ext/ice/cpp/include/Ice/MetricsAdminI.h +124 -71
data/ext/ice/cpp/include/Ice/MetricsFunctional.h +25 -10
data/ext/ice/cpp/include/Ice/MetricsObserverI.h +116 -32
data/ext/ice/cpp/include/Ice/NativePropertiesAdmin.h +61 -30
data/ext/ice/cpp/include/Ice/Object.h +413 -78
data/ext/ice/cpp/include/Ice/ObjectF.h +12 -8
data/ext/ice/cpp/include/Ice/ObserverHelper.h +18 -13
data/ext/ice/cpp/include/Ice/Optional.h +1114 -0
data/ext/ice/cpp/include/Ice/OutgoingAsync.h +684 -89
data/ext/ice/cpp/include/Ice/OutgoingAsyncF.h +12 -11
data/ext/ice/cpp/include/Ice/OutputStream.h +1092 -0
data/ext/ice/cpp/include/Ice/Protocol.h +49 -17
data/ext/ice/cpp/include/Ice/Proxy.h +3438 -745
data/ext/ice/cpp/include/Ice/ProxyF.h +13 -38
data/ext/ice/cpp/include/Ice/ProxyFactoryF.h +1 -6
data/ext/ice/cpp/include/Ice/ProxyHandle.h +43 -55
data/ext/ice/cpp/include/Ice/ReferenceF.h +1 -6
data/ext/ice/cpp/include/Ice/RegisterPlugins.h +84 -12
data/ext/ice/cpp/include/Ice/RequestHandlerF.h +10 -9
data/ext/ice/cpp/include/Ice/ResponseHandlerF.h +6 -6
data/ext/ice/cpp/include/Ice/SHA1.h +42 -0
data/ext/ice/cpp/include/Ice/ServantManagerF.h +1 -6
data/ext/ice/cpp/include/Ice/Service.h +273 -154
data/ext/ice/cpp/include/Ice/SliceChecksums.h +5 -6
data/ext/ice/cpp/include/Ice/SlicedData.h +121 -53
data/ext/ice/cpp/include/Ice/SlicedDataF.h +17 -11
data/ext/ice/cpp/include/Ice/StreamHelpers.h +453 -140
data/ext/ice/cpp/include/Ice/StringConverter.h +78 -0
data/ext/ice/cpp/include/Ice/ThreadPoolF.h +1 -6
data/ext/ice/cpp/include/Ice/UUID.h +19 -0
data/ext/ice/cpp/include/{IceUtil → Ice}/UniquePtr.h +22 -28
data/ext/ice/cpp/include/Ice/UniqueRef.h +97 -0
data/ext/ice/cpp/include/Ice/UserExceptionFactory.h +45 -13
data/ext/ice/cpp/include/Ice/Value.h +139 -0
data/ext/ice/cpp/include/Ice/ValueF.h +21 -0
data/ext/ice/cpp/include/IceSSL/Config.h +8 -28
data/ext/ice/cpp/include/IceSSL/IceSSL.h +17 -11
data/ext/ice/cpp/include/IceSSL/OpenSSL.h +147 -0
data/ext/ice/cpp/include/IceSSL/Plugin.h +461 -448
data/ext/ice/cpp/include/IceSSL/SChannel.h +72 -0
data/ext/ice/cpp/include/IceSSL/SecureTransport.h +72 -0
data/ext/ice/cpp/include/IceSSL/UWP.h +62 -0
data/ext/ice/cpp/include/IceUtil/Atomic.h +7 -14
data/ext/ice/cpp/include/IceUtil/Cond.h +17 -23
data/ext/ice/cpp/include/IceUtil/Config.h +166 -46
data/ext/ice/cpp/include/IceUtil/ConsoleUtil.h +92 -0
data/ext/ice/cpp/include/IceUtil/CountDownLatch.h +5 -10
data/ext/ice/cpp/include/IceUtil/CtrlCHandler.h +63 -41
data/ext/ice/cpp/include/IceUtil/DisableWarnings.h +5 -13
data/ext/ice/cpp/include/IceUtil/Exception.h +284 -75
data/ext/ice/cpp/include/IceUtil/FileUtil.h +143 -0
data/ext/ice/cpp/include/IceUtil/Functional.h +4 -6
data/ext/ice/cpp/include/IceUtil/Handle.h +11 -16
data/ext/ice/cpp/include/IceUtil/IceUtil.h +4 -15
data/ext/ice/cpp/include/IceUtil/InputUtil.h +3 -8
data/ext/ice/cpp/include/IceUtil/Iterator.h +2 -7
data/ext/ice/cpp/include/IceUtil/Lock.h +8 -15
data/ext/ice/cpp/include/IceUtil/Monitor.h +1 -7
data/ext/ice/cpp/include/IceUtil/Mutex.h +19 -23
data/ext/ice/cpp/include/IceUtil/MutexProtocol.h +2 -7
data/ext/ice/cpp/include/IceUtil/MutexPtrLock.h +4 -9
data/ext/ice/cpp/include/IceUtil/MutexPtrTryLock.h +4 -9
data/ext/ice/cpp/include/IceUtil/Optional.h +134 -23
data/ext/ice/cpp/include/IceUtil/Options.h +17 -23
data/ext/ice/cpp/include/IceUtil/OutputUtil.h +61 -37
data/ext/ice/cpp/include/IceUtil/PopDisableWarnings.h +6 -11
data/ext/ice/cpp/include/IceUtil/PushDisableWarnings.h +18 -15
data/ext/ice/cpp/include/IceUtil/Random.h +39 -8
data/ext/ice/cpp/include/IceUtil/RecMutex.h +7 -13
data/ext/ice/cpp/include/IceUtil/ResourceConfig.h +53 -0
data/ext/ice/cpp/include/IceUtil/ScannerConfig.h +10 -15
data/ext/ice/cpp/include/IceUtil/ScopedArray.h +8 -7
data/ext/ice/cpp/include/IceUtil/Shared.h +5 -12
data/ext/ice/cpp/{src → include}/IceUtil/StopWatch.h +2 -7
data/ext/ice/cpp/include/IceUtil/StringConverter.h +146 -126
data/ext/ice/cpp/include/IceUtil/StringUtil.h +32 -26
data/ext/ice/cpp/include/IceUtil/Thread.h +10 -17
data/ext/ice/cpp/include/IceUtil/ThreadException.h +33 -47
data/ext/ice/cpp/include/IceUtil/Time.h +3 -8
data/ext/ice/cpp/include/IceUtil/Timer.h +18 -18
data/ext/ice/cpp/include/IceUtil/UUID.h +6 -7
data/ext/ice/cpp/include/IceUtil/UndefSysMacros.h +1 -6
data/ext/ice/cpp/include/generated/Ice/BuiltinSequences.h +170 -0
data/ext/ice/cpp/include/generated/Ice/Communicator.h +1156 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/CommunicatorF.h +51 -16
data/ext/ice/cpp/include/generated/Ice/Connection.h +1660 -0
data/ext/ice/cpp/include/generated/Ice/ConnectionF.h +119 -0
data/ext/ice/cpp/include/generated/Ice/Current.h +322 -0
data/ext/ice/cpp/include/generated/Ice/Endpoint.h +943 -0
data/ext/ice/cpp/include/generated/Ice/EndpointF.h +166 -0
data/ext/ice/cpp/include/generated/Ice/EndpointTypes.h +118 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/FacetMap.h +31 -15
data/ext/ice/cpp/include/generated/Ice/Identity.h +264 -0
data/ext/ice/cpp/include/generated/Ice/ImplicitContext.h +278 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ImplicitContextF.h +51 -16
data/ext/ice/cpp/include/generated/Ice/Instrumentation.h +1143 -0
data/ext/ice/cpp/include/generated/Ice/InstrumentationF.h +128 -0
data/ext/ice/cpp/include/generated/Ice/LocalException.h +7041 -0
data/ext/ice/cpp/include/generated/Ice/Locator.h +3850 -0
data/ext/ice/cpp/include/generated/Ice/LocatorF.h +147 -0
data/ext/ice/cpp/include/generated/Ice/Logger.h +231 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/LoggerF.h +51 -16
data/ext/ice/cpp/include/generated/Ice/Metrics.h +4717 -0
data/ext/ice/cpp/include/generated/Ice/ObjectAdapter.h +1175 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ObjectAdapterF.h +51 -16
data/ext/ice/cpp/include/generated/Ice/ObjectFactory.h +197 -0
data/ext/ice/cpp/include/generated/Ice/Plugin.h +306 -0
data/ext/ice/cpp/include/generated/Ice/PluginF.h +110 -0
data/ext/ice/cpp/include/generated/Ice/Process.h +971 -0
data/ext/ice/cpp/include/generated/Ice/ProcessF.h +125 -0
data/ext/ice/cpp/include/generated/Ice/Properties.h +446 -0
data/ext/ice/cpp/include/generated/Ice/PropertiesAdmin.h +1360 -0
data/ext/ice/cpp/include/generated/Ice/PropertiesF.h +134 -0
data/ext/ice/cpp/include/generated/Ice/RemoteLogger.h +2689 -0
data/ext/ice/cpp/include/generated/Ice/Router.h +1838 -0
data/ext/ice/cpp/include/generated/Ice/RouterF.h +125 -0
data/ext/ice/cpp/include/generated/Ice/ServantLocator.h +299 -0
data/ext/ice/cpp/include/{Ice → generated/Ice}/ServantLocatorF.h +51 -16
data/ext/ice/cpp/include/{Ice → generated/Ice}/SliceChecksumDict.h +34 -14
data/ext/ice/cpp/include/generated/Ice/ValueFactory.h +318 -0
data/ext/ice/cpp/include/generated/Ice/Version.h +357 -0
data/ext/ice/cpp/include/generated/IceSSL/ConnectionInfo.h +223 -0
data/ext/ice/cpp/include/generated/IceSSL/ConnectionInfoF.h +101 -0
data/ext/ice/cpp/include/generated/IceSSL/EndpointInfo.h +181 -0
data/ext/ice/cpp/src/Ice/ACM.cpp +38 -27
data/ext/ice/cpp/src/Ice/ACM.h +9 -7
data/ext/ice/cpp/src/Ice/ACMF.h +30 -0
data/ext/ice/cpp/src/Ice/Acceptor.cpp +6 -6
data/ext/ice/cpp/src/Ice/Acceptor.h +4 -8
data/ext/ice/cpp/src/Ice/AcceptorF.h +1 -6
data/ext/ice/cpp/src/Ice/ArgVector.cpp +59 -0
data/ext/ice/cpp/src/Ice/ArgVector.h +36 -0
data/ext/ice/cpp/src/Ice/AsyncResult.cpp +15 -544
data/ext/ice/cpp/src/Ice/Base64.cpp +22 -28
data/ext/ice/cpp/src/Ice/Base64.h +1 -6
data/ext/ice/cpp/src/Ice/BatchRequestQueue.cpp +41 -18
data/ext/ice/cpp/src/Ice/BatchRequestQueue.h +15 -15
data/ext/ice/cpp/src/Ice/Buffer.cpp +75 -18
data/ext/ice/cpp/src/Ice/BuiltinSequences.cpp +21 -12
data/ext/ice/cpp/src/Ice/CollocatedRequestHandler.cpp +86 -197
data/ext/ice/cpp/src/Ice/CollocatedRequestHandler.h +17 -23
data/ext/ice/cpp/src/Ice/Communicator.cpp +43 -15
data/ext/ice/cpp/src/Ice/CommunicatorF.cpp +28 -11
data/ext/ice/cpp/src/Ice/CommunicatorI.cpp +318 -117
data/ext/ice/cpp/src/Ice/CommunicatorI.h +95 -40
data/ext/ice/cpp/src/{IceUtil → Ice}/Cond.cpp +3 -8
data/ext/ice/cpp/src/Ice/ConnectRequestHandler.cpp +55 -122
data/ext/ice/cpp/src/Ice/ConnectRequestHandler.h +15 -31
data/ext/ice/cpp/src/Ice/ConnectRequestHandlerF.h +6 -7
data/ext/ice/cpp/src/Ice/Connection.cpp +111 -20
data/ext/ice/cpp/src/Ice/ConnectionF.cpp +28 -11
data/ext/ice/cpp/src/Ice/ConnectionFactory.cpp +300 -107
data/ext/ice/cpp/src/Ice/ConnectionFactory.h +44 -28
data/ext/ice/cpp/src/Ice/ConnectionFactoryF.h +30 -0
data/ext/ice/cpp/src/Ice/ConnectionI.cpp +785 -713
data/ext/ice/cpp/src/Ice/ConnectionI.h +105 -80
data/ext/ice/cpp/src/Ice/ConnectionRequestHandler.cpp +2 -20
data/ext/ice/cpp/src/Ice/ConnectionRequestHandler.h +5 -9
data/ext/ice/cpp/src/Ice/Connector.cpp +6 -6
data/ext/ice/cpp/src/Ice/Connector.h +4 -8
data/ext/ice/cpp/src/Ice/ConnectorF.h +1 -6
data/ext/ice/cpp/src/{IceUtil → Ice}/CountDownLatch.cpp +4 -9
data/ext/ice/cpp/src/Ice/Current.cpp +30 -12
data/ext/ice/cpp/src/Ice/DefaultsAndOverrides.cpp +10 -16
data/ext/ice/cpp/src/Ice/DefaultsAndOverrides.h +1 -6
data/ext/ice/cpp/src/Ice/DefaultsAndOverridesF.h +1 -6
data/ext/ice/cpp/src/Ice/DispatchInterceptor.cpp +13 -25
data/ext/ice/cpp/src/Ice/DynamicLibrary.cpp +34 -28
data/ext/ice/cpp/src/Ice/Endpoint.cpp +107 -19
data/ext/ice/cpp/src/Ice/EndpointF.cpp +28 -11
data/ext/ice/cpp/src/Ice/EndpointFactory.cpp +152 -6
data/ext/ice/cpp/src/Ice/EndpointFactory.h +72 -11
data/ext/ice/cpp/src/Ice/EndpointFactoryF.h +1 -6
data/ext/ice/cpp/src/Ice/EndpointFactoryManager.cpp +41 -36
data/ext/ice/cpp/src/Ice/EndpointFactoryManager.h +10 -9
data/ext/ice/cpp/src/Ice/EndpointFactoryManagerF.h +1 -6
data/ext/ice/cpp/src/Ice/EndpointI.cpp +18 -7
data/ext/ice/cpp/src/Ice/EndpointI.h +39 -18
data/ext/ice/cpp/src/Ice/EndpointIF.h +18 -10
data/ext/ice/cpp/src/Ice/EndpointTypes.cpp +19 -12
data/ext/ice/cpp/src/Ice/EventHandler.cpp +6 -9
data/ext/ice/cpp/src/Ice/EventHandler.h +13 -13
data/ext/ice/cpp/src/Ice/EventHandlerF.h +5 -7
data/ext/ice/cpp/src/Ice/Exception.cpp +102 -98
data/ext/ice/cpp/src/Ice/FacetMap.cpp +21 -12
data/ext/ice/cpp/src/Ice/FactoryTable.cpp +37 -33
data/ext/ice/cpp/src/Ice/FactoryTableInit.cpp +2 -9
data/ext/ice/cpp/src/Ice/GCObject.cpp +29 -31
data/ext/ice/cpp/src/Ice/HashUtil.h +3 -9
data/ext/ice/cpp/src/Ice/HttpParser.cpp +1 -7
data/ext/ice/cpp/src/Ice/HttpParser.h +1 -6
data/ext/ice/cpp/src/Ice/IPEndpointI.cpp +128 -111
data/ext/ice/cpp/src/Ice/IPEndpointI.h +23 -19
data/ext/ice/cpp/src/Ice/IPEndpointIF.h +6 -7
data/ext/ice/cpp/src/Ice/IconvStringConverter.cpp +51 -0
data/ext/ice/cpp/src/Ice/Identity.cpp +25 -16
data/ext/ice/cpp/src/Ice/ImplicitContext.cpp +41 -13
data/ext/ice/cpp/src/Ice/ImplicitContextF.cpp +28 -11
data/ext/ice/cpp/src/Ice/ImplicitContextI.cpp +11 -28
data/ext/ice/cpp/src/Ice/ImplicitContextI.h +7 -10
data/ext/ice/cpp/src/Ice/Incoming.cpp +284 -255
data/ext/ice/cpp/src/Ice/IncomingAsync.cpp +104 -214
data/ext/ice/cpp/src/Ice/IncomingRequest.h +5 -9
data/ext/ice/cpp/src/Ice/Initialize.cpp +309 -193
data/ext/ice/cpp/src/Ice/InputStream.cpp +2726 -0
data/ext/ice/cpp/src/Ice/Instance.cpp +243 -262
data/ext/ice/cpp/src/Ice/Instance.h +30 -23
data/ext/ice/cpp/src/Ice/Instrumentation.cpp +137 -23
data/ext/ice/cpp/src/Ice/InstrumentationF.cpp +28 -11
data/ext/ice/cpp/src/Ice/InstrumentationI.cpp +118 -105
data/ext/ice/cpp/src/Ice/InstrumentationI.h +30 -36
data/ext/ice/cpp/src/Ice/LocalException.cpp +1191 -422
data/ext/ice/cpp/src/Ice/LocalObject.cpp +1 -7
data/ext/ice/cpp/src/Ice/Locator.cpp +1282 -1222
data/ext/ice/cpp/src/Ice/LocatorF.cpp +30 -12
data/ext/ice/cpp/src/Ice/LocatorInfo.cpp +150 -186
data/ext/ice/cpp/src/Ice/LocatorInfo.h +31 -36
data/ext/ice/cpp/src/Ice/LocatorInfoF.h +1 -6
data/ext/ice/cpp/src/Ice/Logger.cpp +39 -12
data/ext/ice/cpp/src/Ice/LoggerAdminI.cpp +182 -88
data/ext/ice/cpp/src/Ice/LoggerAdminI.h +4 -9
data/ext/ice/cpp/src/Ice/LoggerF.cpp +28 -11
data/ext/ice/cpp/src/Ice/LoggerI.cpp +26 -55
data/ext/ice/cpp/src/Ice/LoggerI.h +7 -18
data/ext/ice/cpp/src/Ice/LoggerUtil.cpp +10 -17
data/ext/ice/cpp/src/Ice/Metrics.cpp +1280 -1107
data/ext/ice/cpp/src/Ice/MetricsAdminI.cpp +58 -33
data/ext/ice/cpp/src/Ice/MetricsObserverI.cpp +1 -7
data/ext/ice/cpp/src/Ice/Network.cpp +753 -408
data/ext/ice/cpp/src/Ice/Network.h +99 -36
data/ext/ice/cpp/src/Ice/NetworkF.h +2 -7
data/ext/ice/cpp/src/Ice/NetworkProxy.cpp +20 -19
data/ext/ice/cpp/src/Ice/NetworkProxy.h +5 -7
data/ext/ice/cpp/src/Ice/NetworkProxyF.h +1 -6
data/ext/ice/cpp/src/Ice/OSLogLoggerI.cpp +57 -0
data/ext/ice/cpp/src/Ice/OSLogLoggerI.h +40 -0
data/ext/ice/cpp/src/Ice/Object.cpp +227 -232
data/ext/ice/cpp/src/Ice/ObjectAdapter.cpp +45 -13
data/ext/ice/cpp/src/Ice/ObjectAdapterF.cpp +28 -11
data/ext/ice/cpp/src/Ice/ObjectAdapterFactory.cpp +83 -33
data/ext/ice/cpp/src/Ice/ObjectAdapterFactory.h +13 -12
data/ext/ice/cpp/src/Ice/ObjectAdapterFactoryF.h +25 -0
data/ext/ice/cpp/src/Ice/ObjectAdapterI.cpp +298 -191
data/ext/ice/cpp/src/Ice/ObjectAdapterI.h +44 -39
data/ext/ice/cpp/src/Ice/ObjectFactory.cpp +41 -13
data/ext/ice/cpp/src/Ice/ObserverHelper.cpp +9 -37
data/ext/ice/cpp/src/Ice/OpaqueEndpointI.cpp +67 -67
data/ext/ice/cpp/src/Ice/OpaqueEndpointI.h +15 -11
data/ext/ice/cpp/src/Ice/OutgoingAsync.cpp +801 -366
data/ext/ice/cpp/src/Ice/OutputStream.cpp +1367 -0
data/ext/ice/cpp/src/Ice/Plugin.cpp +52 -14
data/ext/ice/cpp/src/Ice/PluginF.cpp +28 -11
data/ext/ice/cpp/src/Ice/PluginManagerI.cpp +27 -51
data/ext/ice/cpp/src/Ice/PluginManagerI.h +7 -13
data/ext/ice/cpp/src/Ice/Process.cpp +294 -128
data/ext/ice/cpp/src/Ice/ProcessF.cpp +30 -12
data/ext/ice/cpp/src/Ice/Properties.cpp +42 -15
data/ext/ice/cpp/src/Ice/PropertiesAdmin.cpp +382 -340
data/ext/ice/cpp/src/Ice/PropertiesAdminI.cpp +83 -24
data/ext/ice/cpp/src/Ice/PropertiesAdminI.h +29 -10
data/ext/ice/cpp/src/Ice/PropertiesF.cpp +30 -12
data/ext/ice/cpp/src/Ice/PropertiesI.cpp +46 -57
data/ext/ice/cpp/src/Ice/PropertiesI.h +18 -26
data/ext/ice/cpp/src/Ice/PropertyNames.cpp +112 -19
data/ext/ice/cpp/src/Ice/PropertyNames.h +4 -7
data/ext/ice/cpp/src/Ice/Protocol.cpp +6 -19
data/ext/ice/cpp/src/Ice/ProtocolInstance.cpp +37 -7
data/ext/ice/cpp/src/Ice/ProtocolInstance.h +9 -25
data/ext/ice/cpp/src/Ice/ProtocolInstanceF.h +1 -6
data/ext/ice/cpp/src/Ice/ProtocolPluginFacade.cpp +6 -6
data/ext/ice/cpp/src/Ice/ProtocolPluginFacade.h +3 -6
data/ext/ice/cpp/src/Ice/ProtocolPluginFacadeF.h +1 -6
data/ext/ice/cpp/src/Ice/Proxy.cpp +729 -957
data/ext/ice/cpp/src/Ice/ProxyFactory.cpp +33 -38
data/ext/ice/cpp/src/Ice/ProxyFactory.h +16 -16
data/ext/ice/cpp/src/Ice/Reference.cpp +190 -106
data/ext/ice/cpp/src/Ice/Reference.h +39 -28
data/ext/ice/cpp/src/Ice/ReferenceFactory.cpp +69 -118
data/ext/ice/cpp/src/Ice/ReferenceFactory.h +12 -17
data/ext/ice/cpp/src/Ice/ReferenceFactoryF.h +1 -6
data/ext/ice/cpp/src/Ice/RegisterPluginsInit.cpp +19 -9
data/ext/ice/cpp/src/Ice/RegisterPluginsInit.h +1 -6
data/ext/ice/cpp/src/Ice/RemoteLogger.cpp +766 -565
data/ext/ice/cpp/src/Ice/ReplyStatus.h +1 -6
data/ext/ice/cpp/src/Ice/RequestHandler.cpp +5 -8
data/ext/ice/cpp/src/Ice/RequestHandler.h +10 -18
data/ext/ice/cpp/src/Ice/RequestHandlerFactory.cpp +10 -11
data/ext/ice/cpp/src/Ice/RequestHandlerFactory.h +2 -7
data/ext/ice/cpp/src/Ice/ResponseHandler.cpp +3 -11
data/ext/ice/cpp/src/Ice/ResponseHandler.h +16 -12
data/ext/ice/cpp/src/Ice/RetryQueue.cpp +12 -20
data/ext/ice/cpp/src/Ice/RetryQueue.h +7 -11
data/ext/ice/cpp/src/Ice/RetryQueueF.h +1 -6
data/ext/ice/cpp/src/Ice/Router.cpp +614 -492
data/ext/ice/cpp/src/Ice/RouterF.cpp +30 -12
data/ext/ice/cpp/src/Ice/RouterInfo.cpp +93 -99
data/ext/ice/cpp/src/Ice/RouterInfo.h +42 -38
data/ext/ice/cpp/src/Ice/RouterInfoF.h +1 -6
data/ext/ice/cpp/src/{IceUtil → Ice}/SHA1.cpp +23 -28
data/ext/ice/cpp/src/Ice/Selector.cpp +948 -855
data/ext/ice/cpp/src/Ice/Selector.h +100 -152
data/ext/ice/cpp/src/Ice/ServantLocator.cpp +41 -13
data/ext/ice/cpp/src/Ice/ServantLocatorF.cpp +28 -11
data/ext/ice/cpp/src/Ice/ServantManager.cpp +24 -45
data/ext/ice/cpp/src/Ice/ServantManager.h +1 -6
data/ext/ice/cpp/src/Ice/SharedContext.h +2 -7
data/ext/ice/cpp/src/Ice/SliceChecksumDict.cpp +21 -12
data/ext/ice/cpp/src/Ice/SliceChecksums.cpp +2 -7
data/ext/ice/cpp/src/Ice/SlicedData.cpp +72 -25
data/ext/ice/cpp/src/Ice/StreamSocket.cpp +208 -76
data/ext/ice/cpp/src/Ice/StreamSocket.h +13 -9
data/ext/ice/cpp/src/Ice/StringConverterPlugin.cpp +57 -22
data/ext/ice/cpp/src/Ice/StringUtil.h +30 -0
data/ext/ice/cpp/src/Ice/SysLoggerI.cpp +6 -7
data/ext/ice/cpp/src/Ice/SysLoggerI.h +2 -8
data/ext/ice/cpp/src/Ice/SystemdJournalI.cpp +66 -0
data/ext/ice/cpp/src/Ice/SystemdJournalI.h +39 -0
data/ext/ice/cpp/src/Ice/TcpAcceptor.cpp +169 -49
data/ext/ice/cpp/src/Ice/TcpAcceptor.h +12 -10
data/ext/ice/cpp/src/Ice/TcpConnector.cpp +6 -12
data/ext/ice/cpp/src/Ice/TcpConnector.h +1 -7
data/ext/ice/cpp/src/Ice/TcpEndpointI.cpp +51 -46
data/ext/ice/cpp/src/Ice/TcpEndpointI.h +12 -14
data/ext/ice/cpp/src/Ice/TcpTransceiver.cpp +17 -32
data/ext/ice/cpp/src/Ice/TcpTransceiver.h +7 -15
data/ext/ice/cpp/src/{IceUtil → Ice}/Thread.cpp +41 -54
data/ext/ice/cpp/src/Ice/ThreadPool.cpp +242 -274
data/ext/ice/cpp/src/Ice/ThreadPool.h +46 -48
data/ext/ice/cpp/src/{IceUtil → Ice}/Timer.cpp +38 -26
data/ext/ice/cpp/src/Ice/TraceLevels.cpp +2 -7
data/ext/ice/cpp/src/Ice/TraceLevels.h +1 -6
data/ext/ice/cpp/src/Ice/TraceLevelsF.h +2 -7
data/ext/ice/cpp/src/Ice/TraceUtil.cpp +53 -36
data/ext/ice/cpp/src/Ice/TraceUtil.h +13 -11
data/ext/ice/cpp/src/Ice/Transceiver.cpp +1 -7
data/ext/ice/cpp/src/Ice/Transceiver.h +8 -12
data/ext/ice/cpp/src/Ice/TransceiverF.h +3 -8
data/ext/ice/cpp/src/Ice/UdpConnector.cpp +5 -13
data/ext/ice/cpp/src/Ice/UdpConnector.h +1 -7
data/ext/ice/cpp/src/Ice/UdpEndpointI.cpp +118 -60
data/ext/ice/cpp/src/Ice/UdpEndpointI.h +13 -10
data/ext/ice/cpp/src/Ice/UdpTransceiver.cpp +177 -236
data/ext/ice/cpp/src/Ice/UdpTransceiver.h +15 -22
data/ext/ice/cpp/src/Ice/Value.cpp +76 -0
data/ext/ice/cpp/src/Ice/ValueFactory.cpp +83 -0
data/ext/ice/cpp/src/Ice/ValueFactoryManagerI.cpp +61 -0
data/ext/ice/cpp/src/Ice/ValueFactoryManagerI.h +37 -0
data/ext/ice/cpp/src/Ice/Version.cpp +25 -20
data/ext/ice/cpp/src/Ice/VirtualShared.h +38 -0
data/ext/ice/cpp/src/Ice/WSAcceptor.cpp +3 -14
data/ext/ice/cpp/src/Ice/WSAcceptor.h +3 -12
data/ext/ice/cpp/src/Ice/WSConnector.cpp +5 -16
data/ext/ice/cpp/src/Ice/WSConnector.h +3 -11
data/ext/ice/cpp/src/Ice/WSEndpoint.cpp +188 -89
data/ext/ice/cpp/src/Ice/WSEndpoint.h +22 -37
data/ext/ice/cpp/src/Ice/WSTransceiver.cpp +65 -66
data/ext/ice/cpp/src/Ice/WSTransceiver.h +7 -27
data/ext/ice/cpp/src/IceDiscovery/IceDiscovery.cpp +596 -281
data/ext/ice/cpp/src/IceDiscovery/IceDiscovery.h +1383 -543
data/ext/ice/cpp/src/IceDiscovery/LocatorI.cpp +89 -32
data/ext/ice/cpp/src/IceDiscovery/LocatorI.h +59 -28
data/ext/ice/cpp/src/IceDiscovery/LookupI.cpp +315 -66
data/ext/ice/cpp/src/IceDiscovery/LookupI.h +83 -41
data/ext/ice/cpp/src/IceDiscovery/PluginI.cpp +57 -64
data/ext/ice/cpp/src/IceDiscovery/PluginI.h +3 -8
data/ext/ice/cpp/src/IceLocatorDiscovery/IceLocatorDiscovery.cpp +450 -172
data/ext/ice/cpp/src/IceLocatorDiscovery/IceLocatorDiscovery.h +863 -406
data/ext/ice/cpp/src/IceLocatorDiscovery/Plugin.h +47 -0
data/ext/ice/cpp/src/IceLocatorDiscovery/PluginI.cpp +636 -144
data/ext/ice/cpp/src/IceSSL/AcceptorI.cpp +20 -173
data/ext/ice/cpp/src/IceSSL/AcceptorI.h +8 -22
data/ext/ice/cpp/src/IceSSL/CertificateI.cpp +279 -0
data/ext/ice/cpp/src/IceSSL/CertificateI.h +64 -0
data/ext/ice/cpp/src/IceSSL/ConnectionInfo.cpp +42 -17
data/ext/ice/cpp/src/IceSSL/ConnectionInfoF.cpp +61 -0
data/ext/ice/cpp/src/IceSSL/ConnectorI.cpp +15 -64
data/ext/ice/cpp/src/IceSSL/ConnectorI.h +6 -18
data/ext/ice/cpp/src/IceSSL/EndpointI.cpp +207 -204
data/ext/ice/cpp/src/IceSSL/EndpointI.h +43 -40
data/ext/ice/cpp/src/IceSSL/EndpointInfo.cpp +42 -16
data/ext/ice/cpp/src/IceSSL/Instance.cpp +1 -11
data/ext/ice/cpp/src/IceSSL/Instance.h +7 -12
data/ext/ice/cpp/src/IceSSL/InstanceF.h +11 -12
data/ext/ice/cpp/src/IceSSL/OpenSSLCertificateI.cpp +583 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLEngine.cpp +134 -115
data/ext/ice/cpp/src/IceSSL/OpenSSLEngine.h +59 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLEngineF.h +27 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLPluginI.cpp +127 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLTransceiverI.cpp +477 -182
data/ext/ice/cpp/src/IceSSL/OpenSSLTransceiverI.h +32 -26
data/ext/ice/cpp/src/IceSSL/OpenSSLUtil.cpp +286 -0
data/ext/ice/cpp/src/IceSSL/OpenSSLUtil.h +58 -0
data/ext/ice/cpp/src/IceSSL/PluginI.cpp +71 -46
data/ext/ice/cpp/src/IceSSL/PluginI.h +13 -23
data/ext/ice/cpp/src/IceSSL/RFC2253.cpp +9 -60
data/ext/ice/cpp/src/IceSSL/RFC2253.h +7 -12
data/ext/ice/cpp/src/IceSSL/SChannelCertificateI.cpp +580 -0
data/ext/ice/cpp/src/IceSSL/SChannelEngine.cpp +523 -74
data/ext/ice/cpp/src/IceSSL/SChannelEngine.h +123 -0
data/ext/ice/cpp/src/IceSSL/SChannelEngineF.h +31 -0
data/ext/ice/cpp/src/IceSSL/SChannelPluginI.cpp +73 -0
data/ext/ice/cpp/src/IceSSL/SChannelTransceiverI.cpp +187 -221
data/ext/ice/cpp/src/IceSSL/SChannelTransceiverI.h +24 -26
data/ext/ice/cpp/src/IceSSL/SSLEngine.cpp +97 -94
data/ext/ice/cpp/src/IceSSL/SSLEngine.h +26 -192
data/ext/ice/cpp/src/IceSSL/SSLEngineF.h +4 -24
data/ext/ice/cpp/src/IceSSL/SecureTransportCertificateI.cpp +868 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportEngine.cpp +69 -201
data/ext/ice/cpp/src/IceSSL/SecureTransportEngine.h +59 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportEngineF.h +29 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportPluginI.cpp +75 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.cpp +174 -161
data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.h +29 -33
data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.cpp +864 -0
data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.h +45 -0
data/ext/ice/cpp/src/IceSSL/TrustManager.cpp +12 -22
data/ext/ice/cpp/src/IceSSL/TrustManager.h +4 -9
data/ext/ice/cpp/src/IceSSL/TrustManagerF.h +3 -8
data/ext/ice/cpp/src/IceSSL/UWPCertificateI.cpp +266 -0
data/ext/ice/cpp/src/IceSSL/UWPEngine.cpp +338 -0
data/ext/ice/cpp/src/IceSSL/UWPEngine.h +41 -0
data/ext/ice/cpp/src/IceSSL/UWPEngineF.h +26 -0
data/ext/ice/cpp/src/IceSSL/UWPPluginI.cpp +89 -0
data/ext/ice/cpp/src/IceSSL/UWPTransceiverI.cpp +383 -0
data/ext/ice/cpp/src/IceSSL/UWPTransceiverI.h +71 -0
data/ext/ice/cpp/src/IceSSL/Util.cpp +71 -1260
data/ext/ice/cpp/src/IceSSL/Util.h +48 -142
data/ext/ice/cpp/src/IceUtil/ConsoleUtil.cpp +157 -0
data/ext/ice/cpp/src/IceUtil/ConvertUTF.cpp +22 -27
data/ext/ice/cpp/src/IceUtil/ConvertUTF.h +34 -31
data/ext/ice/cpp/src/IceUtil/CtrlCHandler.cpp +22 -36
data/ext/ice/cpp/src/IceUtil/FileUtil.cpp +30 -126
data/ext/ice/cpp/src/IceUtil/InputUtil.cpp +1 -6
data/ext/ice/cpp/src/IceUtil/MutexProtocol.cpp +1 -6
data/ext/ice/cpp/src/IceUtil/Options.cpp +20 -33
data/ext/ice/cpp/src/IceUtil/OutputUtil.cpp +47 -21
data/ext/ice/cpp/src/IceUtil/Random.cpp +15 -20
data/ext/ice/cpp/src/IceUtil/RecMutex.cpp +4 -19
data/ext/ice/cpp/src/IceUtil/Shared.cpp +8 -8
data/ext/ice/cpp/src/IceUtil/StringConverter.cpp +501 -269
data/ext/ice/cpp/src/IceUtil/StringUtil.cpp +582 -244
data/ext/ice/cpp/src/IceUtil/ThreadException.cpp +37 -79
data/ext/ice/cpp/src/IceUtil/Time.cpp +6 -11
data/ext/ice/cpp/src/IceUtil/UUID.cpp +17 -22
data/ext/ice/cpp/src/IceUtil/Unicode.cpp +97 -101
data/ext/ice/cpp/src/IceUtil/Unicode.h +21 -40
data/ext/ice/cpp/src/IceUtil/UtilException.cpp +839 -0
data/ext/ice/cpp/src/Slice/CPlusPlusUtil.cpp +894 -234
data/ext/ice/cpp/src/Slice/CPlusPlusUtil.h +72 -0
data/ext/ice/cpp/src/Slice/Checksum.cpp +2 -7
data/ext/ice/cpp/src/Slice/Checksum.h +21 -0
data/ext/ice/cpp/src/Slice/FileTracker.cpp +25 -83
data/ext/ice/cpp/{include → src}/Slice/FileTracker.h +9 -14
data/ext/ice/cpp/src/Slice/Grammar.cpp +1981 -1944
data/ext/ice/cpp/src/Slice/Grammar.h +39 -19
data/ext/ice/cpp/src/Slice/GrammarUtil.h +14 -20
data/ext/ice/cpp/src/Slice/JavaUtil.cpp +2752 -1948
data/ext/ice/cpp/src/Slice/JavaUtil.h +398 -0
data/ext/ice/cpp/src/Slice/MD5.cpp +1 -6
data/ext/ice/cpp/src/Slice/MD5.h +1 -6
data/ext/ice/cpp/src/Slice/MD5I.cpp +8 -1
data/ext/ice/cpp/src/Slice/MD5I.h +1 -1
data/ext/ice/cpp/src/Slice/PHPUtil.cpp +17 -20
data/ext/ice/cpp/src/Slice/PHPUtil.h +36 -0
data/ext/ice/cpp/src/Slice/Parser.cpp +1190 -426
data/ext/ice/cpp/{include → src}/Slice/Parser.h +143 -91
data/ext/ice/cpp/src/Slice/Preprocessor.cpp +67 -36
data/ext/ice/cpp/{include → src}/Slice/Preprocessor.h +8 -18
data/ext/ice/cpp/src/Slice/Python.cpp +218 -111
data/ext/ice/cpp/src/Slice/PythonUtil.cpp +787 -699
data/ext/ice/cpp/src/Slice/PythonUtil.h +70 -0
data/ext/ice/cpp/src/Slice/Ruby.cpp +42 -43
data/ext/ice/cpp/src/Slice/RubyUtil.cpp +175 -445
data/ext/ice/cpp/{include → src}/Slice/RubyUtil.h +6 -11
data/ext/ice/cpp/src/Slice/Scanner.cpp +390 -399
data/ext/ice/cpp/src/Slice/{Util.cpp → SliceUtil.cpp} +36 -69
data/ext/ice/cpp/src/Slice/StringLiteralUtil.cpp +456 -0
data/ext/ice/cpp/src/Slice/Util.h +50 -0
data/ice.gemspec +2 -9
data/lib/Glacier2.rb +1 -6
data/lib/Glacier2/Metrics.rb +6 -50
data/lib/Glacier2/PermissionsVerifier.rb +23 -99
data/lib/Glacier2/PermissionsVerifierF.rb +2 -7
data/lib/Glacier2/Router.rb +31 -78
data/lib/Glacier2/RouterF.rb +2 -7
data/lib/Glacier2/SSLInfo.rb +3 -11
data/lib/Glacier2/Session.rb +87 -311
data/lib/Ice.rb +84 -58
data/lib/Ice/BuiltinSequences.rb +3 -8
data/lib/Ice/Communicator.rb +54 -61
data/lib/Ice/CommunicatorF.rb +2 -7
data/lib/Ice/Connection.rb +152 -166
data/lib/Ice/ConnectionF.rb +2 -7
data/lib/Ice/Current.rb +3 -15
data/lib/Ice/Endpoint.rb +56 -137
data/lib/Ice/EndpointF.rb +2 -7
data/lib/Ice/EndpointTypes.rb +2 -11
data/lib/Ice/FacetMap.rb +3 -8
data/lib/Ice/Identity.rb +4 -12
data/lib/Ice/ImplicitContext.rb +4 -38
data/lib/Ice/ImplicitContextF.rb +2 -7
data/lib/Ice/Instrumentation.rb +22 -279
data/lib/Ice/InstrumentationF.rb +2 -7
data/lib/Ice/LocalException.rb +94 -145
data/lib/Ice/Locator.rb +50 -169
data/lib/Ice/LocatorF.rb +2 -7
data/lib/Ice/Logger.rb +4 -38
data/lib/Ice/LoggerF.rb +2 -7
data/lib/Ice/Metrics.rb +60 -420
data/lib/Ice/ObjectAdapter.rb +29 -0
data/lib/Ice/ObjectAdapterF.rb +2 -7
data/lib/Ice/ObjectFactory.rb +4 -34
data/lib/Ice/Plugin.rb +6 -64
data/lib/Ice/PluginF.rb +2 -7
data/lib/Ice/Process.rb +15 -56
data/lib/Ice/ProcessF.rb +2 -7
data/lib/Ice/Properties.rb +4 -45
data/lib/Ice/PropertiesAdmin.rb +18 -60
data/lib/Ice/PropertiesF.rb +2 -7
data/lib/Ice/RemoteLogger.rb +33 -119
data/lib/Ice/Router.rb +28 -105
data/lib/Ice/RouterF.rb +2 -7
data/lib/Ice/ServantLocator.rb +26 -0
data/lib/Ice/ServantLocatorF.rb +24 -0
data/lib/Ice/SliceChecksumDict.rb +2 -7
data/lib/Ice/ValueFactory.rb +28 -0
data/lib/Ice/Version.rb +4 -15
data/lib/IceBox.rb +1 -6
data/lib/IceBox/IceBox.rb +43 -152
data/lib/IceGrid.rb +1 -9
data/lib/IceGrid/Admin.rb +550 -431
data/lib/IceGrid/Descriptor.rb +61 -533
data/lib/IceGrid/Exception.rb +23 -49
data/lib/IceGrid/FileParser.rb +13 -54
data/lib/IceGrid/PluginFacade.rb +35 -0
data/lib/IceGrid/Registry.rb +150 -62
data/lib/IceGrid/Session.rb +24 -68
data/lib/IceGrid/UserAccountMapper.rb +13 -54
data/lib/IcePatch2.rb +1 -6
data/lib/IcePatch2/FileInfo.rb +4 -15
data/lib/IcePatch2/FileServer.rb +32 -80
data/lib/IceStorm.rb +1 -6
data/lib/IceStorm/IceStorm.rb +78 -210
data/lib/IceStorm/Metrics.rb +10 -93
data/slice/Glacier2/Metrics.ice +20 -10
data/slice/Glacier2/PermissionsVerifier.ice +19 -12
data/slice/Glacier2/PermissionsVerifierF.ice +16 -9
data/slice/Glacier2/Router.ice +19 -13
data/slice/Glacier2/RouterF.ice +16 -9
data/slice/Glacier2/SSLInfo.ice +17 -10
data/slice/Glacier2/Session.ice +24 -18
data/slice/Ice/BuiltinSequences.ice +18 -9
data/slice/Ice/Communicator.ice +180 -64
data/slice/Ice/CommunicatorF.ice +18 -9
data/slice/Ice/Connection.ice +208 -75
data/slice/Ice/ConnectionF.ice +18 -9
data/slice/Ice/Current.ice +37 -28
data/slice/Ice/Endpoint.ice +73 -21
data/slice/Ice/EndpointF.ice +19 -10
data/slice/Ice/EndpointTypes.ice +21 -13
data/slice/Ice/FacetMap.ice +19 -10
data/slice/Ice/Identity.ice +24 -10
data/slice/Ice/ImplicitContext.ice +41 -33
data/slice/Ice/ImplicitContextF.ice +17 -9
data/slice/Ice/Instrumentation.ice +37 -30
data/slice/Ice/InstrumentationF.ice +19 -10
data/slice/Ice/LocalException.ice +118 -112
data/slice/Ice/Locator.ice +28 -21
data/slice/Ice/LocatorF.ice +18 -9
data/slice/Ice/Logger.ice +26 -18
data/slice/Ice/LoggerF.ice +18 -9
data/slice/Ice/Metrics.ice +42 -30
data/slice/Ice/ObjectAdapter.ice +88 -53
data/slice/Ice/ObjectAdapterF.ice +18 -9
data/slice/Ice/ObjectFactory.ice +28 -17
data/slice/Ice/Plugin.ice +25 -13
data/slice/Ice/PluginF.ice +22 -9
data/slice/Ice/Process.ice +20 -11
data/slice/Ice/ProcessF.ice +18 -9
data/slice/Ice/Properties.ice +42 -28
data/slice/Ice/PropertiesAdmin.ice +20 -10
data/slice/Ice/PropertiesF.ice +18 -9
data/slice/Ice/RemoteLogger.ice +23 -19
data/slice/Ice/Router.ice +28 -13
data/slice/Ice/RouterF.ice +18 -9
data/slice/Ice/ServantLocator.ice +40 -29
data/slice/Ice/ServantLocatorF.ice +18 -9
data/slice/Ice/SliceChecksumDict.ice +18 -9
data/slice/Ice/ValueFactory.ice +132 -0
data/slice/Ice/Version.ice +20 -10
data/slice/IceBT/ConnectionInfo.ice +58 -0
data/slice/IceBT/EndpointInfo.ice +56 -0
data/slice/IceBT/Types.ice +44 -0
data/slice/IceBox/IceBox.ice +45 -27
data/slice/IceDiscovery/IceDiscovery.ice +75 -10
data/slice/IceGrid/Admin.ice +410 -44
data/slice/IceGrid/Descriptor.ice +47 -34
data/slice/IceGrid/Exception.ice +43 -32
data/slice/IceGrid/FileParser.ice +21 -12
data/slice/IceGrid/PluginFacade.ice +26 -18
data/slice/IceGrid/Registry.ice +150 -21
data/slice/IceGrid/Session.ice +25 -17
data/slice/IceGrid/UserAccountMapper.ice +23 -14
data/slice/IceIAP/ConnectionInfo.ice +73 -0
data/slice/IceIAP/EndpointInfo.ice +67 -0
data/slice/IceLocatorDiscovery/IceLocatorDiscovery.ice +19 -12
data/slice/IcePatch2/FileInfo.ice +19 -13
data/slice/IcePatch2/FileServer.ice +27 -18
data/slice/IceSSL/ConnectionInfo.ice +27 -23
data/slice/IceSSL/ConnectionInfoF.ice +30 -0
data/slice/IceSSL/EndpointInfo.ice +21 -36
data/slice/IceStorm/IceStorm.ice +33 -24
data/slice/IceStorm/Metrics.ice +19 -11
metadata +148 -120
data/ext/ObjectFactory.cpp +0 -140
data/ext/ObjectFactory.h +0 -50
data/ext/ice/cpp/include/Ice/ACMF.h +0 -30
data/ext/ice/cpp/include/Ice/BasicStream.h +0 -1335
data/ext/ice/cpp/include/Ice/BuiltinSequences.h +0 -82
data/ext/ice/cpp/include/Ice/Communicator.h +0 -200
data/ext/ice/cpp/include/Ice/Connection.h +0 -497
data/ext/ice/cpp/include/Ice/ConnectionF.h +0 -74
data/ext/ice/cpp/include/Ice/ConnectionFactoryF.h +0 -30
data/ext/ice/cpp/include/Ice/Current.h +0 -102
data/ext/ice/cpp/include/Ice/DefaultObjectFactory.h +0 -48
data/ext/ice/cpp/include/Ice/DeprecatedStringConverter.h +0 -62
data/ext/ice/cpp/include/Ice/Endpoint.h +0 -341
data/ext/ice/cpp/include/Ice/EndpointF.h +0 -93
data/ext/ice/cpp/include/Ice/EndpointTypes.h +0 -82
data/ext/ice/cpp/include/Ice/Identity.h +0 -168
data/ext/ice/cpp/include/Ice/ImplicitContext.h +0 -102
data/ext/ice/cpp/include/Ice/Instrumentation.h +0 -365
data/ext/ice/cpp/include/Ice/InstrumentationF.h +0 -75
data/ext/ice/cpp/include/Ice/LocalException.h +0 -1030
data/ext/ice/cpp/include/Ice/Locator.h +0 -2193
data/ext/ice/cpp/include/Ice/LocatorF.h +0 -93
data/ext/ice/cpp/include/Ice/Logger.h +0 -100
data/ext/ice/cpp/include/Ice/Metrics.h +0 -2974
data/ext/ice/cpp/include/Ice/ObjectAdapter.h +0 -168
data/ext/ice/cpp/include/Ice/ObjectAdapterFactoryF.h +0 -26
data/ext/ice/cpp/include/Ice/ObjectFactory.h +0 -92
data/ext/ice/cpp/include/Ice/ObjectFactoryF.h +0 -66
data/ext/ice/cpp/include/Ice/ObjectFactoryManagerF.h +0 -26
data/ext/ice/cpp/include/Ice/Outgoing.h +0 -225
data/ext/ice/cpp/include/Ice/Plugin.h +0 -125
data/ext/ice/cpp/include/Ice/PluginF.h +0 -70
data/ext/ice/cpp/include/Ice/Process.h +0 -574
data/ext/ice/cpp/include/Ice/ProcessF.h +0 -83
data/ext/ice/cpp/include/Ice/Properties.h +0 -136
data/ext/ice/cpp/include/Ice/PropertiesAdmin.h +0 -830
data/ext/ice/cpp/include/Ice/PropertiesF.h +0 -87
data/ext/ice/cpp/include/Ice/RemoteLogger.h +0 -1500
data/ext/ice/cpp/include/Ice/Router.h +0 -1159
data/ext/ice/cpp/include/Ice/RouterF.h +0 -83
data/ext/ice/cpp/include/Ice/ServantLocator.h +0 -96
data/ext/ice/cpp/include/Ice/Stream.h +0 -447
data/ext/ice/cpp/include/Ice/StreamF.h +0 -30
data/ext/ice/cpp/include/Ice/Version.h +0 -262
data/ext/ice/cpp/include/IceSSL/ConnectionInfo.h +0 -158
data/ext/ice/cpp/include/IceSSL/EndpointInfo.h +0 -142
data/ext/ice/cpp/include/IceUtil/AbstractMutex.h +0 -119
data/ext/ice/cpp/include/IceUtil/Cache.h +0 -362
data/ext/ice/cpp/include/IceUtil/IconvStringConverter.h +0 -302
data/ext/ice/cpp/include/IceUtil/SHA1.h +0 -47
data/ext/ice/cpp/include/Slice/CPlusPlusUtil.h +0 -65
data/ext/ice/cpp/include/Slice/Checksum.h +0 -26
data/ext/ice/cpp/include/Slice/CsUtil.h +0 -92
data/ext/ice/cpp/include/Slice/DotNetNames.h +0 -34
data/ext/ice/cpp/include/Slice/JavaUtil.h +0 -279
data/ext/ice/cpp/include/Slice/ObjCUtil.h +0 -127
data/ext/ice/cpp/include/Slice/PHPUtil.h +0 -50
data/ext/ice/cpp/include/Slice/PythonUtil.h +0 -64
data/ext/ice/cpp/include/Slice/Util.h +0 -56
data/ext/ice/cpp/src/Ice/BasicStream.cpp +0 -3428
data/ext/ice/cpp/src/Ice/DeprecatedStringConverter.cpp +0 -62
data/ext/ice/cpp/src/Ice/ObjectFactoryF.cpp +0 -44
data/ext/ice/cpp/src/Ice/ObjectFactoryManager.cpp +0 -139
data/ext/ice/cpp/src/Ice/ObjectFactoryManager.h +0 -43
data/ext/ice/cpp/src/Ice/Outgoing.cpp +0 -694
data/ext/ice/cpp/src/Ice/Stream.cpp +0 -53
data/ext/ice/cpp/src/Ice/StreamI.cpp +0 -832
data/ext/ice/cpp/src/Ice/StreamI.h +0 -198
data/ext/ice/cpp/src/IceSSL/Certificate.cpp +0 -1336
data/ext/ice/cpp/src/IceUtil/ArgVector.cpp +0 -64
data/ext/ice/cpp/src/IceUtil/ArgVector.h +0 -41
data/ext/ice/cpp/src/IceUtil/Exception.cpp +0 -792
data/ext/ice/cpp/src/IceUtil/FileUtil.h +0 -185
data/ext/ice/cpp/src/Slice/CsUtil.cpp +0 -2660
data/ext/ice/cpp/src/Slice/DotNetNames.cpp +0 -146
data/ext/ice/cpp/src/Slice/ObjCUtil.cpp +0 -1310
data/lib/Ice/ObjectFactoryF.rb +0 -29
data/lib/IceGrid/Locator.rb +0 -106
data/lib/IceGrid/Observer.rb +0 -572
data/lib/IceGrid/Query.rb +0 -169
data/slice/Freeze/BackgroundSaveEvictor.ice +0 -111
data/slice/Freeze/CatalogData.ice +0 -49
data/slice/Freeze/Connection.ice +0 -121
data/slice/Freeze/ConnectionF.ice +0 -20
data/slice/Freeze/DB.ice +0 -37
data/slice/Freeze/Evictor.ice +0 -346
data/slice/Freeze/EvictorF.ice +0 -22
data/slice/Freeze/EvictorStorage.ice +0 -72
data/slice/Freeze/Exception.ice +0 -100
data/slice/Freeze/Transaction.ice +0 -58
data/slice/Freeze/TransactionalEvictor.ice +0 -50
data/slice/Ice/ObjectFactoryF.ice +0 -21
data/slice/IceGrid/Locator.ice +0 -57
data/slice/IceGrid/Observer.ice +0 -395
data/slice/IceGrid/Query.ice +0 -131

data/ext/ice/cpp/src/IceSSL/SecureTransportTransceiverI.h CHANGED

@@ -1,53 +1,47 @@
-// **********************************************************************
 //
-// Copyright (c) 2003-2018 ZeroC, Inc. All rights reserved.
+// Copyright (c) ZeroC, Inc. All rights reserved.
 //
-// This copy of Ice is licensed to you under the terms described in the
-// ICE_LICENSE file included in this distribution.
-//
-// **********************************************************************
-#ifndef ICE_SSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
-#define ICE_SSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
+#ifndef ICESSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
+#define ICESSL_SECURE_TRANSPORT_TRANSCEIVER_I_H
+#ifdef __APPLE__
 #include <IceSSL/Config.h>
 #include <IceSSL/InstanceF.h>
-#include <IceSSL/SSLEngineF.h>
+#include <IceSSL/SecureTransportEngineF.h>
 #include <IceSSL/Plugin.h>
 #include <Ice/Transceiver.h>
+#include <Ice/UniqueRef.h>
 #include <Ice/Network.h>
-#include <Ice/StreamSocket.h>
-#include <Ice/WSTransceiver.h>
-#ifdef ICE_USE_SECURE_TRANSPORT
 #include <Security/Security.h>
+#include <Security/SecureTransport.h>
 #include <CoreFoundation/CoreFoundation.h>
 namespace IceSSL
 {
-class ConnectorI;
-class AcceptorI;
+namespace SecureTransport
+{
-class TransceiverI : public IceInternal::Transceiver, public IceInternal::WSTransceiverDelegate
+class TransceiverI : public IceInternal::Transceiver
 {
 public:
     virtual IceInternal::NativeInfoPtr getNativeInfo();
-    virtual IceInternal::SocketOperation initialize(IceInternal::Buffer&, IceInternal::Buffer&, bool&);
+    virtual IceInternal::SocketOperation initialize(IceInternal::Buffer&, IceInternal::Buffer&);
     virtual IceInternal::SocketOperation closing(bool, const Ice::LocalException&);
     virtual void close();
     virtual IceInternal::SocketOperation write(IceInternal::Buffer&);
-    virtual IceInternal::SocketOperation read(IceInternal::Buffer&, bool&);
+    virtual IceInternal::SocketOperation read(IceInternal::Buffer&);
     virtual std::string protocol() const;
     virtual std::string toString() const;
     virtual std::string toDetailedString() const;
     virtual Ice::ConnectionInfoPtr getInfo() const;
-    virtual Ice::ConnectionInfoPtr getWSInfo(const Ice::HeaderDict&) const;
     virtual void checkSendSize(const IceInternal::Buffer&);
     virtual void setBufferSize(int rcvSize, int sndSize);
@@ -56,39 +50,41 @@ public:
 private:
-    TransceiverI(const InstancePtr&, const IceInternal::StreamSocketPtr&, const std::string&, bool);
+    TransceiverI(const InstancePtr&, const IceInternal::TransceiverPtr&, const std::string&, bool);
     virtual ~TransceiverI();
-    void fillConnectionInfo(const ConnectionInfoPtr&, std::vector<CertificatePtr>&) const;
-    friend class ConnectorI;
-    friend class AcceptorI;
+    friend class IceSSL::SecureTransport::SSLEngine;
     const InstancePtr _instance;
-    const SecureTransportEnginePtr _engine;
+    const SSLEnginePtr _engine;
     const std::string _host;
     const std::string _adapterName;
     const bool _incoming;
-    const IceInternal::StreamSocketPtr _stream;
+    const IceInternal::TransceiverPtr _delegate;
+    IceInternal::UniqueRef<SSLContextRef> _ssl;
+    IceInternal::UniqueRef<SecTrustRef> _trust;
+    bool _connected;
-    SSLContextRef _ssl;
-    SecTrustRef _trust;
-    bool _verified;
-    size_t _buffered;
     enum SSLWantFlags
     {
         SSLWantRead = 0x1,
         SSLWantWrite = 0x2
     };
-    mutable Ice::Byte _flags;
+    mutable Ice::Byte _tflags;
     size_t _maxSendPacketSize;
     size_t _maxRecvPacketSize;
+    std::string _cipher;
+    std::vector<CertificatePtr> _certs;
+    bool _verified;
+    size_t _buffered;
 };
 typedef IceUtil::Handle<TransceiverI> TransceiverIPtr;
-}
+} // SecureTransport namespace end
+} // IceSSL namespace end
 #endif

data/ext/ice/cpp/src/IceSSL/SecureTransportUtil.cpp ADDED

@@ -0,0 +1,864 @@
+//
+// Copyright (c) ZeroC, Inc. All rights reserved.
+//
+#include <IceSSL/SecureTransportUtil.h>
+#include <IceSSL/Plugin.h>
+#include <Ice/Base64.h>
+#include <Ice/UniqueRef.h>
+#include <Ice/LocalException.h>
+#include <IceUtil/FileUtil.h>
+#include <IceUtil/StringUtil.h>
+#include <fstream>
+#include <Security/Security.h>
+#include <CoreFoundation/CoreFoundation.h>
+using namespace Ice;
+using namespace IceInternal;
+using namespace IceSSL;
+using namespace IceSSL::SecureTransport;
+using namespace std;
+namespace
+{
+CFMutableDataRef
+readCertFile(const string& file)
+{
+    ifstream is(IceUtilInternal::streamFilename(file).c_str(), ios::in | ios::binary);
+    if(!is.good())
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "error opening file " + file);
+    }
+    is.seekg(0, is.end);
+    size_t size = static_cast<size_t>(is.tellg());
+    is.seekg(0, is.beg);
+    UniqueRef<CFMutableDataRef> data(CFDataCreateMutable(kCFAllocatorDefault, static_cast<CFIndex>(size)));
+    CFDataSetLength(data.get(), static_cast<CFIndex>(size));
+    is.read(reinterpret_cast<char*>(CFDataGetMutableBytePtr(data.get())),
+            static_cast<streamsize>(size));
+    if(!is.good())
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "error reading file " + file);
+    }
+    return data.release();
+}
+}
+string
+IceSSL::SecureTransport::sslErrorToString(CFErrorRef err)
+{
+    ostringstream os;
+    if(err)
+    {
+        UniqueRef<CFStringRef> s(CFErrorCopyDescription(err));
+        os << "(error: " << CFErrorGetCode(err) << " description: " << fromCFString(s.get()) << ")";
+    }
+    return os.str();
+}
+string
+IceSSL::SecureTransport::sslErrorToString(OSStatus status)
+{
+    ostringstream os;
+    os << "(error: " << status;
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+    UniqueRef<CFStringRef> s(SecCopyErrorMessageString(status, 0));
+    if(s)
+    {
+        os << " description: " << fromCFString(s.get());
+    }
+#endif
+    os << ")";
+    return os.str();
+}
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+CFDictionaryRef
+IceSSL::SecureTransport::getCertificateProperty(SecCertificateRef cert, CFTypeRef key)
+{
+    UniqueRef<CFDictionaryRef> property;
+    UniqueRef<CFArrayRef> keys(CFArrayCreate(ICE_NULLPTR, &key , 1, &kCFTypeArrayCallBacks));
+    UniqueRef<CFErrorRef> err;
+    UniqueRef<CFDictionaryRef> values(SecCertificateCopyValues(cert, keys.get(), &err.get()));
+    if(err)
+    {
+        ostringstream os;
+        os << "IceSSL: error getting property for certificate:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    assert(values);
+    property.retain(static_cast<CFDictionaryRef>(CFDictionaryGetValue(values.get(), key)));
+    return property.release();
+}
+namespace
+{
+//
+// Check the certificate basic constraints to check if the certificate is marked as a CA.
+//
+bool
+isCA(SecCertificateRef cert)
+{
+    UniqueRef<CFDictionaryRef> property(getCertificateProperty(cert, kSecOIDBasicConstraints));
+    if(property)
+    {
+        CFArrayRef propertyValues = static_cast<CFArrayRef>(CFDictionaryGetValue(property.get(), kSecPropertyKeyValue));
+        for(CFIndex i = 0, size = CFArrayGetCount(propertyValues); i < size; ++i)
+        {
+            CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(propertyValues, i));
+            CFStringRef label = static_cast<CFStringRef>(CFDictionaryGetValue(dict, kSecPropertyKeyLabel));
+            if(CFEqual(label, CFSTR("Certificate Authority")))
+            {
+                return CFEqual(static_cast<CFStringRef>(CFDictionaryGetValue(dict, kSecPropertyKeyValue)), CFSTR("Yes"));
+            }
+        }
+    }
+    return false;
+}
+//
+// Load keychain items (Certificates or Private Keys) from a file. On return items param contain
+// the list of items, the caller must release it.
+//
+CFArrayRef
+loadKeychainItems(const string& file, SecExternalItemType type, SecKeychainRef keychain, const string& passphrase,
+                  const PasswordPromptPtr& prompt, int retryMax)
+{
+    UniqueRef<CFMutableDataRef> data(readCertFile(file));
+    SecItemImportExportKeyParameters params;
+    memset(&params, 0, sizeof(params));
+    params.version =  SEC_KEY_IMPORT_EXPORT_PARAMS_VERSION;
+    params.flags |= kSecKeyNoAccessControl;
+    UniqueRef<CFStringRef> passphraseHolder;
+    if(!passphrase.empty())
+    {
+        passphraseHolder.reset(toCFString(passphrase));
+        params.passphrase = passphraseHolder.get();
+    }
+    UniqueRef<CFArrayRef> items;
+    SecExternalItemType importType = type;
+    SecExternalFormat format = type == kSecItemTypeUnknown ? kSecFormatPKCS12 : kSecFormatUnknown;
+    UniqueRef<CFStringRef> path(toCFString(file));
+    OSStatus err = SecItemImport(data.get(), path.get(), &format, &importType, 0, &params, keychain, &items.get());
+    //
+    // If passphrase failure and no password was configured, we obtain
+    // the password from the given prompt or configure the import to
+    // prompt the user with an alert dialog.
+    //
+    UniqueRef<CFStringRef> alertPromptHolder;
+    if(passphrase.empty() &&
+       (err == errSecPassphraseRequired || err == errSecInvalidData || err == errSecPkcs12VerifyFailure))
+    {
+        if(!prompt)
+        {
+            params.flags |= kSecKeySecurePassphrase;
+            ostringstream os;
+            os << "Enter the password for\n" << file;
+            alertPromptHolder.reset(toCFString(os.str()));
+            params.alertPrompt = alertPromptHolder.get();
+        }
+        int count = 0;
+        while((err == errSecPassphraseRequired || err == errSecInvalidData || err == errSecPkcs12VerifyFailure) &&
+              count < retryMax)
+        {
+            if(prompt)
+            {
+                passphraseHolder.reset(toCFString(prompt->getPassword()));
+                params.passphrase = passphraseHolder.get();
+            }
+            err = SecItemImport(data.get(), path.get(), &format, &importType, 0, &params, keychain, &items.get());
+            ++count;
+        }
+    }
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: error reading " << (type == kSecItemTypePrivateKey ? "private key" : "certificate");
+        os << " `" << file << "':\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    if(type != kSecItemTypeUnknown && importType != kSecItemTypeAggregate && importType != type)
+    {
+        ostringstream os;
+        os << "IceSSL: error reading " << (type == kSecItemTypePrivateKey ? "private key" : "certificate");
+        os << " `" << file << "' doesn't contain the expected item";
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    return items.release();
+}
+SecKeychainRef
+openKeychain(const std::string& path, const std::string& keychainPassword)
+{
+    string keychainPath = path;
+    UniqueRef<SecKeychainRef> keychain;
+    OSStatus err = 0;
+    if(keychainPath.empty())
+    {
+        if((err = SecKeychainCopyDefault(&keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to retrieve default keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else
+    {
+        //
+        // KeyChain path is relative to the current working directory.
+        //
+        if(!IceUtilInternal::isAbsolutePath(keychainPath))
+        {
+            string cwd;
+            if(IceUtilInternal::getcwd(cwd) == 0)
+            {
+                keychainPath = string(cwd) + '/' + keychainPath;
+            }
+        }
+        if((err = SecKeychainOpen(keychainPath.c_str(), &keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unable to open keychain: `" +
+                                                keychainPath + "'\n" + sslErrorToString(err));
+        }
+    }
+    SecKeychainStatus status;
+    err = SecKeychainGetStatus(keychain.get(), &status);
+    if(err == noErr)
+    {
+        const char* pass = keychainPassword.empty() ? 0 : keychainPassword.c_str();
+        if((err = SecKeychainUnlock(keychain.get(), static_cast<UInt32>(keychainPassword.size()), pass, pass != 0)))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to unlock keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else if(err == errSecNoSuchKeychain)
+    {
+        const char* pass = keychainPassword.empty() ? 0 : keychainPassword.c_str();
+        keychain.reset(0);
+        if((err = SecKeychainCreate(keychainPath.c_str(),
+                                    static_cast<UInt32>(keychainPassword.size()), pass, pass == 0, 0, &keychain.get())))
+        {
+            throw PluginInitializationException(__FILE__, __LINE__,
+                                                "IceSSL: unable to create keychain:\n" + sslErrorToString(err));
+        }
+    }
+    else
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: unable to open keychain:\n" + sslErrorToString(err));
+    }
+    //
+    // Set keychain settings to avoid keychain lock.
+    //
+    SecKeychainSettings settings;
+    settings.version = SEC_KEYCHAIN_SETTINGS_VERS1;
+    settings.lockOnSleep = FALSE;
+    settings.useLockInterval = FALSE;
+    settings.lockInterval = INT_MAX;
+    if((err = SecKeychainSetSettings(keychain.get(), &settings)))
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error setting keychain settings:\n" + sslErrorToString(err));
+    }
+    return keychain.release();
+}
+//
+// Imports a certificate private key and optionally add it to a keychain.
+//
+SecIdentityRef
+loadPrivateKey(const string& file, SecCertificateRef cert, SecKeychainRef keychain, const string& password,
+               const PasswordPromptPtr& prompt, int retryMax)
+{
+    //
+    // Check if we already imported the certificate
+    //
+    UniqueRef<CFDataRef> hash;
+    UniqueRef<CFDictionaryRef> subjectKeyProperty(getCertificateProperty(cert, kSecOIDSubjectKeyIdentifier));
+    if(subjectKeyProperty)
+    {
+        CFArrayRef values = static_cast<CFArrayRef>(CFDictionaryGetValue(subjectKeyProperty.get(),
+                                                                         kSecPropertyKeyValue));
+        for(int i = 0; i < CFArrayGetCount(values); ++i)
+        {
+            CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(values, i));
+            if(CFEqual(CFDictionaryGetValue(dict, kSecPropertyKeyLabel), CFSTR("Key Identifier")))
+            {
+                hash.retain(static_cast<CFDataRef>(CFDictionaryGetValue(dict, kSecPropertyKeyValue)));
+                break;
+            }
+        }
+    }
+    const void* values[] = { keychain };
+    UniqueRef<CFArrayRef> searchList(CFArrayCreate(kCFAllocatorDefault, values, 1, &kCFTypeArrayCallBacks));
+    UniqueRef<CFMutableDictionaryRef> query(CFDictionaryCreateMutable(0,
+                                                                      0,
+                                                                      &kCFTypeDictionaryKeyCallBacks,
+                                                                      &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecMatchSearchList, searchList.get());
+    CFDictionarySetValue(query.get(), kSecAttrSubjectKeyID, hash.get());
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    UniqueRef<CFTypeRef> value(0);
+    OSStatus err = SecItemCopyMatching(query.get(), &value.get());
+    UniqueRef<SecCertificateRef> item(static_cast<SecCertificateRef>(const_cast<void*>(value.release())));
+    if(err == noErr)
+    {
+        //
+        // If the certificate has already been imported, create the
+        // identity. The key should also have been imported.
+        //
+        UniqueRef<SecIdentityRef> identity;
+        err = SecIdentityCreateWithCertificate(keychain, item.get(), &identity.get());
+        if(err != noErr)
+        {
+            ostringstream os;
+            os << "IceSSL: error creating certificate identity:\n" << sslErrorToString(err);
+            throw CertificateReadException(__FILE__, __LINE__, os.str());
+        }
+        return identity.release();
+    }
+    else if(err != errSecItemNotFound)
+    {
+        ostringstream os;
+        os << "IceSSL: error searching for keychain items:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    //
+    // If the certificate isn't already in the keychain, load the
+    // private key into the keychain and add the certificate.
+    //
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypePrivateKey, keychain, password, prompt, retryMax));
+    CFIndex count = CFArrayGetCount(items.get());
+    UniqueRef<SecKeyRef> key;
+    for(CFIndex i = 0; i < count; ++i)
+    {
+        SecKeychainItemRef itemRef =
+            static_cast<SecKeychainItemRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), 0)));
+        if(SecKeyGetTypeID() == CFGetTypeID(itemRef))
+        {
+            key.retain(reinterpret_cast<SecKeyRef>(itemRef));
+            break;
+        }
+    }
+    if(!key)
+    {
+        throw CertificateReadException(__FILE__, __LINE__, "IceSSL: no key in file `" + file + "'");
+    }
+    //
+    // Add the certificate to the keychain
+    //
+    query.reset(CFDictionaryCreateMutable(kCFAllocatorDefault,
+                                          0,
+                                          &kCFTypeDictionaryKeyCallBacks,
+                                          &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecUseKeychain, keychain);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecValueRef, cert);
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    value.reset(0);
+    err = SecItemAdd(query.get(), static_cast<CFTypeRef*>(&value.get()));
+    UniqueRef<CFArrayRef> added(static_cast<CFArrayRef>(value.release()));
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: failure adding certificate to keychain\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    item.retain(static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(added.get(), 0))));
+    //
+    // Create the association between the private  key and the certificate,
+    // kSecKeyLabel attribute should match the subject key identifier.
+    //
+    vector<SecKeychainAttribute> attributes;
+    if(hash)
+    {
+        SecKeychainAttribute attr;
+        attr.tag = kSecKeyLabel;
+        attr.data = const_cast<UInt8*>(CFDataGetBytePtr(hash.get()));
+        attr.length = static_cast<UInt32>(CFDataGetLength(hash.get()));
+        attributes.push_back(attr);
+    }
+    //
+    // kSecKeyPrintName attribute correspond to the keychain display
+    // name.
+    //
+    string label;
+    UniqueRef<CFStringRef> commonName(0);
+    if(SecCertificateCopyCommonName(item.get(), &commonName.get()) == noErr)
+    {
+        label = fromCFString(commonName.get());
+        SecKeychainAttribute attr;
+        attr.tag = kSecKeyPrintName;
+        attr.data = const_cast<char*>(label.c_str());
+        attr.length = static_cast<UInt32>(label.size());
+        attributes.push_back(attr);
+    }
+    SecKeychainAttributeList attrs;
+    attrs.attr = &attributes[0];
+    attrs.count = static_cast<UInt32>(attributes.size());
+    SecKeychainItemModifyAttributesAndData(reinterpret_cast<SecKeychainItemRef>(key.get()), &attrs, 0, 0);
+    UniqueRef<SecIdentityRef> identity;
+    err = SecIdentityCreateWithCertificate(keychain, item.get(), &identity.get());
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: error creating certificate identity:\n" << sslErrorToString(err);
+        throw CertificateReadException(__FILE__, __LINE__, os.str());
+    }
+    return identity.release();
+}
+} // anonymous namespace end
+#else
+namespace
+{
+CFArrayRef
+loadCerts(const string& file)
+{
+    UniqueRef<CFArrayRef> certs(CFArrayCreateMutable(kCFAllocatorDefault, 0, &kCFTypeArrayCallBacks));
+    if(file.find(".pem") != string::npos)
+    {
+        vector<char> buffer;
+        readFile(file, buffer);
+        string strbuf(buffer.begin(), buffer.end());
+        string::size_type size, startpos, endpos = 0;
+        bool first = true;
+        while(true)
+        {
+            startpos = strbuf.find("-----BEGIN CERTIFICATE-----", endpos);
+            if(startpos != string::npos)
+            {
+                startpos += sizeof("-----BEGIN CERTIFICATE-----");
+                endpos = strbuf.find("-----END CERTIFICATE-----", startpos);
+                if(endpos == string::npos)
+                {
+                    throw InitializationException(__FILE__, __LINE__, "IceSSL: certificate " + file +
+                                                  " is not a valid PEM-encoded certificate");
+                }
+                size = endpos - startpos;
+            }
+            else if(first)
+            {
+                startpos = 0;
+                endpos = string::npos;
+                size = strbuf.size();
+            }
+            else
+            {
+                break;
+            }
+            vector<unsigned char> data(IceInternal::Base64::decode(string(&buffer[startpos], size)));
+            UniqueRef<CFDataRef> certdata(CFDataCreate(kCFAllocatorDefault, &data[0],
+                                                       static_cast<CFIndex>(data.size())));
+            UniqueRef<SecCertificateRef> cert(SecCertificateCreateWithData(0, certdata.get()));
+            if(!cert)
+            {
+                throw InitializationException(__FILE__, __LINE__, "IceSSL: certificate " + file +
+                                              " is not a valid PEM-encoded certificate");
+            }
+            CFArrayAppendValue(const_cast<CFMutableArrayRef>(certs.get()), cert.get());
+            first = false;
+        }
+    }
+    else
+    {
+        UniqueRef<CFDataRef> data(readCertFile(file));
+        UniqueRef<SecCertificateRef> cert(SecCertificateCreateWithData(0, data.get()));
+        if(!cert)
+        {
+            throw InitializationException(__FILE__, __LINE__, "IceSSL: certificate " + file +
+                                          " is not a valid DER-encoded certificate");
+        }
+        CFArrayAppendValue(const_cast<CFMutableArrayRef>(certs.get()), cert.get());
+    }
+    return certs.release();
+}
+}
+#endif
+//
+// Imports a certificate (it might contain an identity or certificate depending on the format).
+//
+CFArrayRef
+IceSSL::SecureTransport::loadCertificateChain(const string& file,
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+                                              const string& /*keyFile*/,
+                                              const std::string& /*keychainPath*/,
+                                              const string& /*keychainPassword*/,
+#else
+                                              const string& keyFile,
+                                              const std::string& keychainPath,
+                                              const string& keychainPassword,
+#endif
+                                              const string& password,
+                                              const PasswordPromptPtr& prompt,
+                                              int retryMax)
+{
+    UniqueRef<CFArrayRef> chain;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    UniqueRef<CFDataRef> cert(readCertFile(file));
+    UniqueRef<CFMutableDictionaryRef> settings(CFDictionaryCreateMutable(0,
+                                                                         1,
+                                                                         &kCFTypeDictionaryKeyCallBacks,
+                                                                         &kCFTypeDictionaryValueCallBacks));
+    UniqueRef<CFArrayRef> items;
+    OSStatus err;
+    int count = 0;
+    do
+    {
+        items.reset();
+        UniqueRef<CFStringRef> pass(toCFString(password.empty() && prompt ? prompt->getPassword() : password));
+        CFDictionarySetValue(settings.get(), kSecImportExportPassphrase, pass.get());
+        err = SecPKCS12Import(cert.get(), settings.get(), &items.get());
+        ++count;
+    }
+    while(password.empty() && prompt && err == errSecAuthFailed && count < retryMax);
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: unable to import certificate from file " << file << " (error = " << err << ")";
+        throw InitializationException(__FILE__, __LINE__, os.str());
+    }
+    for(int i = 0; i < CFArrayGetCount(items.get()); ++i)
+    {
+        CFDictionaryRef dict = static_cast<CFDictionaryRef>(CFArrayGetValueAtIndex(items.get(), i));
+        SecIdentityRef identity = static_cast<SecIdentityRef>(
+            const_cast<void*>(CFDictionaryGetValue(dict, kSecImportItemIdentity)));
+        if(identity)
+        {
+            CFArrayRef certs = static_cast<CFArrayRef>(CFDictionaryGetValue(dict, kSecImportItemCertChain));
+            chain.reset(CFArrayCreateMutableCopy(kCFAllocatorDefault, 0, certs));
+            CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(chain.get()), 0, identity);
+        }
+    }
+    if(!chain)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't find identity in file " << file;
+        throw InitializationException(__FILE__, __LINE__, os.str());
+    }
+#else
+    UniqueRef<SecKeychainRef> keychain(openKeychain(keychainPath, keychainPassword));
+    if(keyFile.empty())
+    {
+        chain.reset(loadKeychainItems(file, kSecItemTypeUnknown, keychain.get(), password, prompt, retryMax));
+    }
+    else
+    {
+        //
+        // Load the certificate, don't load into the keychain as it
+        // might already have been imported.
+        //
+        UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, password, prompt, retryMax));
+        SecCertificateRef cert =
+            static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), 0)));
+        if(SecCertificateGetTypeID() != CFGetTypeID(cert))
+        {
+            ostringstream os;
+            os << "IceSSL: couldn't find certificate in `" << file << "'";
+            throw CertificateReadException(__FILE__, __LINE__, os.str());
+        }
+        //
+        // Load the private key for the given certificate. This will
+        // add the certificate/key to the keychain if they aren't
+        // already present in the keychain.
+        //
+        UniqueRef<SecIdentityRef> identity(loadPrivateKey(keyFile, cert, keychain.get(), password, prompt, retryMax));
+        chain.reset(CFArrayCreateMutableCopy(kCFAllocatorDefault, 0, items.get()));
+        CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(chain.get()), 0, identity.get());
+    }
+#endif
+    return chain.release();
+}
+SecCertificateRef
+IceSSL::SecureTransport::loadCertificate(const string& file)
+{
+    UniqueRef<SecCertificateRef> cert;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    UniqueRef<CFArrayRef> certs(loadCerts(file));
+    assert(CFArrayGetCount(certs.get()) > 0);
+    cert.retain((SecCertificateRef)CFArrayGetValueAtIndex(certs.get(), 0));
+#else
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, "", 0, 0));
+    cert.retain((SecCertificateRef)CFArrayGetValueAtIndex(items.get(), 0));
+#endif
+    return cert.release();
+}
+CFArrayRef
+IceSSL::SecureTransport::loadCACertificates(const string& file)
+{
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    return loadCerts(file);
+#else
+    UniqueRef<CFArrayRef> items(loadKeychainItems(file, kSecItemTypeCertificate, 0, "", 0, 0));
+    UniqueRef<CFArrayRef> certificateAuthorities(CFArrayCreateMutable(kCFAllocatorDefault, 0, &kCFTypeArrayCallBacks));
+    CFIndex count = CFArrayGetCount(items.get());
+    for(CFIndex i = 0; i < count; ++i)
+    {
+        SecCertificateRef cert =
+            static_cast<SecCertificateRef>(const_cast<void*>(CFArrayGetValueAtIndex(items.get(), i)));
+        assert(SecCertificateGetTypeID() == CFGetTypeID(cert));
+        if(isCA(cert))
+        {
+            CFArrayAppendValue(const_cast<CFMutableArrayRef>(certificateAuthorities.get()), cert);
+        }
+    }
+    return certificateAuthorities.release();
+#endif
+}
+CFArrayRef
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+IceSSL::SecureTransport::findCertificateChain(const std::string&,
+                                              const std::string&,
+                                              const string& value)
+#else
+IceSSL::SecureTransport::findCertificateChain(const std::string& keychainPath,
+                                              const std::string& keychainPassword,
+                                              const string& value)
+#endif
+{
+    //
+    //  Search the keychain using key:value pairs. The following keys are supported:
+    //
+    //   Label
+    //   Serial
+    //   Subject
+    //   SubjectKeyId
+    //
+    //   A value must be enclosed in single or double quotes if it contains whitespace.
+    //
+    UniqueRef<CFMutableDictionaryRef> query(CFDictionaryCreateMutable(0,
+                                                                      0,
+                                                                      &kCFTypeDictionaryKeyCallBacks,
+                                                                      &kCFTypeDictionaryValueCallBacks));
+#if defined(ICE_USE_SECURE_TRANSPORT_MACOS)
+    UniqueRef<SecKeychainRef> keychain(openKeychain(keychainPath, keychainPassword));
+    const void* values[] = { keychain.get() };
+    UniqueRef<CFArrayRef> searchList(CFArrayCreate(kCFAllocatorDefault, values, 1, &kCFTypeArrayCallBacks));
+    CFDictionarySetValue(query.get(), kSecMatchSearchList, searchList.get());
+#endif
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    CFDictionarySetValue(query.get(), kSecMatchCaseInsensitive, kCFBooleanTrue);
+    size_t start = 0;
+    size_t pos;
+    bool valid = false;
+    while((pos = value.find(':', start)) != string::npos)
+    {
+        string field = IceUtilInternal::toUpper(IceUtilInternal::trim(value.substr(start, pos - start)));
+        string arg;
+        if(field != "LABEL" && field != "SERIAL" && field != "SUBJECT" && field != "SUBJECTKEYID")
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unknown key in `" + value + "'");
+        }
+        start = pos + 1;
+        while(start < value.size() && (value[start] == ' ' || value[start] == '\t'))
+        {
+            ++start;
+        }
+        if(start == value.size())
+        {
+            throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: missing argument in `" + value + "'");
+        }
+        if(value[start] == '"' || value[start] == '\'')
+        {
+            size_t end = start;
+            ++end;
+            while(end < value.size())
+            {
+                if(value[end] == value[start] && value[end - 1] != '\\')
+                {
+                    break;
+                }
+                ++end;
+            }
+            if(end == value.size() || value[end] != value[start])
+            {
+                throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: unmatched quote in `" + value + "'");
+            }
+            ++start;
+            arg = value.substr(start, end - start);
+            start = end + 1;
+        }
+        else
+        {
+            size_t end = value.find_first_of(" \t", start);
+            if(end == string::npos)
+            {
+                arg = value.substr(start);
+                start = value.size();
+            }
+            else
+            {
+                arg = value.substr(start, end - start);
+                start = end + 1;
+            }
+        }
+        if(field == "SUBJECT" || field == "LABEL")
+        {
+            UniqueRef<CFStringRef> v(toCFString(arg));
+            CFDictionarySetValue(query.get(), field == "LABEL" ? kSecAttrLabel : kSecMatchSubjectContains, v.get());
+            valid = true;
+        }
+        else if(field == "SUBJECTKEYID" || field == "SERIAL")
+        {
+            vector<unsigned char> buffer;
+            if(!parseBytes(arg, buffer))
+            {
+                throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: invalid value `" + value + "'");
+            }
+            UniqueRef<CFDataRef> v(CFDataCreate(kCFAllocatorDefault, &buffer[0], static_cast<CFIndex>(buffer.size())));
+            CFDictionarySetValue(query.get(), field == "SUBJECTKEYID" ? kSecAttrSubjectKeyID : kSecAttrSerialNumber,
+                                 v.get());
+            valid = true;
+        }
+    }
+    if(!valid)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__, "IceSSL: invalid value `" + value + "'");
+    }
+    UniqueRef<SecCertificateRef> cert;
+    OSStatus err = SecItemCopyMatching(query.get(), (CFTypeRef*)&cert.get());
+    if(err != noErr)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: find certificate `" + value + "' failed:\n" + sslErrorToString(err));
+    }
+    //
+    // Retrieve the certificate chain
+    //
+    UniqueRef<SecPolicyRef> policy(SecPolicyCreateSSL(true, 0));
+    UniqueRef<SecTrustRef> trust;
+    err = SecTrustCreateWithCertificates(reinterpret_cast<CFArrayRef>(cert.get()), policy.get(), &trust.get());
+    if(err || !trust)
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error creating trust object" +
+                                            (err ? ":\n" + sslErrorToString(err) : ""));
+    }
+    SecTrustResultType trustResult;
+    if((err = SecTrustEvaluate(trust.get(), &trustResult)))
+    {
+        throw PluginInitializationException(__FILE__, __LINE__,
+                                            "IceSSL: error evaluating trust:\n" + sslErrorToString(err));
+    }
+    CFIndex chainLength = SecTrustGetCertificateCount(trust.get());
+    UniqueRef<CFArrayRef> items(CFArrayCreateMutable(kCFAllocatorDefault, chainLength, &kCFTypeArrayCallBacks));
+    for(int i = 0; i < chainLength; ++i)
+    {
+        CFArrayAppendValue(const_cast<CFMutableArrayRef>(items.get()), SecTrustGetCertificateAtIndex(trust.get(), i));
+    }
+    //
+    // Replace the first certificate in the chain with the
+    // identity.
+    //
+    UniqueRef<SecIdentityRef> identity;
+#if defined(ICE_USE_SECURE_TRANSPORT_IOS)
+    //
+    // SecIdentityCreateWithCertificate isn't supported on iOS so we lookup the identity
+    // using the certicate label. If the user added the identity with SecItemAdd the
+    // identity has the same label as the certificate.
+    //
+    query.reset(CFDictionaryCreateMutable(0, 1, &kCFTypeDictionaryKeyCallBacks, &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassCertificate);
+    CFDictionarySetValue(query.get(), kSecValueRef, cert.get());
+    CFDictionarySetValue(query.get(), kSecReturnAttributes, kCFBooleanTrue);
+    UniqueRef<CFDictionaryRef> attributes;
+    err = SecItemCopyMatching(query.get(), reinterpret_cast<CFTypeRef*>(&attributes.get()));
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't create identity for certificate found in the keychain:\n" << sslErrorToString(err);
+        throw PluginInitializationException(__FILE__, __LINE__, os.str());
+    }
+    // Now lookup the identity with the label
+    query.reset(CFDictionaryCreateMutable(0, 0, &kCFTypeDictionaryKeyCallBacks, &kCFTypeDictionaryValueCallBacks));
+    CFDictionarySetValue(query.get(), kSecMatchLimit, kSecMatchLimitOne);
+    CFDictionarySetValue(query.get(), kSecClass, kSecClassIdentity);
+    CFDictionarySetValue(query.get(), kSecAttrLabel, (CFDataRef)CFDictionaryGetValue(attributes.get(), kSecAttrLabel));
+    CFDictionarySetValue(query.get(), kSecReturnRef, kCFBooleanTrue);
+    err = SecItemCopyMatching(query.get(), (CFTypeRef*)&identity.get());
+    if(err == noErr)
+    {
+        UniqueRef<SecCertificateRef> cert2;
+        if((err = SecIdentityCopyCertificate(identity.get(), &cert2.get())) == noErr)
+        {
+            err = CFEqual(cert2.get(), cert.get()) ? noErr : errSecItemNotFound;
+        }
+    }
+#else
+    err = SecIdentityCreateWithCertificate(keychain.get(), cert.get(), &identity.get());
+#endif
+    if(err != noErr)
+    {
+        ostringstream os;
+        os << "IceSSL: couldn't create identity for certificate found in the keychain:\n" << sslErrorToString(err);
+        throw PluginInitializationException(__FILE__, __LINE__, os.str());
+    }
+    CFArraySetValueAtIndex(const_cast<CFMutableArrayRef>(items.get()), 0, identity.get());
+    return items.release();
+}