Imported Upstream version 1.5.1

tests/configs/dirconfig_no_ssl.test

@@ -0,0 +1,110 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = false
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# If you want to monitor your XtreemFS installation through SNMP 
+# uncomment the following lines. You have to set snmp.enabled = true
+# and provide a listen port and optional a address. Also optional 
+# is a path to an aclfile which controls which hosts can access the
+# monitoring information via SNMP.
+#snmp.enabled = true
+#snmp.address = localhost
+#snmp.port = 34638
+#snmp.aclfile = etc/xos/xtreemfs/snmp.acl
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 6
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_no_ssl/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_no_ssl/db-log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200
+
+# replication configuration
+#babudb.plugin.0 = contrib/server-repl-plugin/config/dir-test1.properties
+
+uuid = test-localhost-DIR

tests/configs/dirconfig_ssl_ignore_errors.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Leaf.p12
+ssl.service_creds.pw = dir_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_ignore_errors/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_ignore_errors/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/dirconfig_ssl_long_chain.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Leaf.p12
+ssl.service_creds.pw = dir_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_long_chain/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_long_chain/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/dirconfig_ssl_no_verification.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Leaf.p12
+ssl.service_creds.pw = dir_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_no_verification/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_no_verification/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/dirconfig_ssl_short_chain.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Root.p12
+ssl.service_creds.pw = dir_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_short_chain/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_short_chain/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/dirconfig_ssl_version.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Root.p12
+ssl.service_creds.pw = dir_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/dirconfig_ssl_version_sslv3.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=sslv3
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Root.p12
+ssl.service_creds.pw = dir_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/dirconfig_ssl_version_tlsv1.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv1
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Root.p12
+ssl.service_creds.pw = dir_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/dirconfig_ssl_version_tlsv11.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv11
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Root.p12
+ssl.service_creds.pw = dir_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/dirconfig_ssl_version_tlsv12.test

@@ -0,0 +1,115 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48638
+
+# port for the status page (HTTP server)
+http_port = 46638
+
+# optional address for network device ("any" if not specified)
+# listen.address = 127.0.0.1
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv12
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/DIR_Root.p12
+ssl.service_creds.pw = dir_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+uuid = test-localhost-DIR 
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/dir_ssl_version/database
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 200

tests/configs/mrcconfig_no_ssl.test

@@ -0,0 +1,173 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+# listen.address = 127.0.0.1
+
+# optinal host name that is used to register the service at the DIR
+# hostname = foo.bar.com
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+#dir_service1.host = localhost
+#dir_service1.port = 32639
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = false
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# If you want to monitor your XtreemFS installation through SNMP 
+# uncomment the following lines. You have to set snmp.enabled = true
+# and provide a listen port and optional a address. Also optional 
+# is a path to an aclfile which controls which hosts can access the
+# monitoring information via SNMP.
+#snmp.enabled = true
+#snmp.address = localhost
+#snmp.port = 34636
+#snmp.aclfile = etc/xos/xtreemfs/snmp.acl
+
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 7
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_no_ssl/database
+#babudb.baseDir = /home/stender/tmp/mrc
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_no_ssl/db-log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+#babudb.sync = ASYNC
+babudb.sync = FDATASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+#TOGGLE COMMENT OF THE FOLLOWING LINES TO ENABLE THE REPLICATION
+#CHECK THE REFERENCE FOR FURTHER INFORMATIONS
+
+# replication configuration
+#babudb.plugin.0 = contrib/server-repl-plugin/config/mrc-test1.properties
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_ignore_errors.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Leaf.p12
+ssl.service_creds.pw = mrc_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_ignore_errors/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_ignore_errors/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_long_chain.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Leaf.p12
+ssl.service_creds.pw = mrc_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_long_chain/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_long_chain/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_no_verification.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Leaf.p12
+ssl.service_creds.pw = mrc_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_no_verification/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_no_verification/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_short_chain.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Root.p12
+ssl.service_creds.pw = mrc_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_short_chain/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_short_chain/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_version.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Root.p12
+ssl.service_creds.pw = mrc_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_version/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_version_sslv3.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=sslv3
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Root.p12
+ssl.service_creds.pw = mrc_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_version/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_version_tlsv1.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv1
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Root.p12
+ssl.service_creds.pw = mrc_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_version/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_version_tlsv11.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv11
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Root.p12
+ssl.service_creds.pw = mrc_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_version/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/mrcconfig_ssl_version_tlsv12.test

@@ -0,0 +1,167 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48636
+
+http_port = 46636
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# interval for querying the Directory Service for new OSDs
+osd_check_interval = 10
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# specify whether access time stamps are updated
+no_atime = true
+no_fsync = true
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv12
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/MRC_Root.p12
+ssl.service_creds.pw = mrc_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+# time span between two database checkpoint attempts (in ms)
+database.checkpoint.interval = 1800000
+
+# time span for which no requests must have been received to create a checkpoint (in ms)
+database.checkpoint.idle_interval = 1000
+
+# minimum size in bytes the log file must have to create a checkpoint
+database.checkpoint.logfile_size = 16384
+
+# Authentication providers are used to retrieve the user identities
+# from the client or from certificate.
+# The default provider is org.xtreemfs.mrc.auth.NullAuthProvider, which just
+# takes the information provided by the client. The name of a pluggable
+# provider can be used here.
+authentication_provider = org.xtreemfs.common.auth.NullAuthProvider
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't. So far, pluggable
+# policies have to inherit from either org.xtreemfs.mrc.ac.FileAccessPolicy,
+# org.xtreemfs.mrc.osdstatus.OSDSelectionPolicy,
+# org.xtreemfs.common.auth.AuthenticationProvider, or javax.ssl.TrustManager.
+# Policies identified by policy IDs (OSDSelectionPolicy and FileAccessPolicy)
+# require a public static long field called POLICY_ID that assigns the policy
+# a unique number.
+policy_dir = /etc/xos/xtreemfs/policies
+
+geographic_coordinates = 52.455483,13.297405
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+#####################################################################
+# BabuDB configuration                                              #
+#####################################################################
+
+# optional debug level (
+# 0 = emergency, 
+# 1 = alert, 
+# 2 = critical, 
+# 3 = error, 
+# 4 = warning, 
+# 5 = notice, 
+# 6 = info, 
+# 7 = debug)
+babudb.debug.level = 4
+
+# optional debug category
+#babudb.debug.category = all
+
+# name for the database configuration file
+#babudb.cfgFile = config.db
+
+# base directory to store database index snapshots in
+babudb.baseDir = /tmp/xtreemfs-test/mrc_ssl_version/database
+
+# directory in which the database logs are stored
+babudb.logDir = /tmp/xtreemfs-test/mrc_ssl_version/log
+
+# SyncMode the synchronization mode to use for the logFile
+# ASYNC - asynchronously write log entries (data is lost when system crashes).
+# FSYNC - executes an fsync on the logfile before acknowledging the operation.
+# FDATASYNC
+# SYNC_WRITE - synchronously writes the log entry to disk before ack. Does not
+#              update the metadata.
+# SYNC_WRITE_METADATA - synchronously writes the log entry to disk and updates
+#                       the metadata before ack.
+babudb.sync = ASYNC
+
+# max queue length: if > 0, the queue for each worker is limited to maxQ
+babudb.worker.maxQueueLength = 250
+
+# number of worker threads to use
+babudb.worker.numThreads = 0
+
+# a checkpoint is generated, if maxLogfileSize is exceeded
+babudb.maxLogfileSize = 16777216
+
+# interval between two checks in seconds, 0 disables auto checkPointing
+babudb.checkInterval = 300
+
+# if set to a value > 0, operations are acknowledged immediately before
+# they are written to the disk log. The disk logger will do batch writes
+# and call fSync... every pseudoSyncWait seconds. This can be used to
+# increase performance and emulate PostgreSQL behavior.
+babudb.pseudoSyncWait = 0
+
+# flag that determines whether the indices shall be compressed or not.
+#babudb.compression = false
+
+# UUID for the MRC
+uuid = test-localhost-MRC

tests/configs/osdconfig_no_ssl.test

@@ -0,0 +1,99 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# optinal host name that is used to register the service at the DIR
+# hostname = foo.bar.com
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_no_ssl/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = false
+
+# send and receive buffer sizes of sockets 
+#socket.send_buffer_size = 262144
+#socket.recv_buffer_size = 262144
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# If you want to monitor your XtreemFS installation through SNMP 
+# uncomment the following lines. You have to set snmp.enabled = true
+# and provide a listen port and optional a address. Also optional 
+# is a path to an aclfile which controls which hosts can access the
+# monitoring information via SNMP.
+#snmp.enabled = true
+#snmp.address = localhost
+#snmp.port = 34640
+#snmp.aclfile = etc/xos/xtreemfs/snmp.acl
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_ignore_errors.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_ignore_errors/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Leaf.p12
+ssl.service_creds.pw = osd_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_long_chain.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_long_chain/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Leaf.p12
+ssl.service_creds.pw = osd_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_no_verification.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_no_verification/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Leaf.p12
+ssl.service_creds.pw = osd_leaf
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_leaf.jks
+ssl.trusted_certs.pw = trusted_leaf
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_short_chain.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_short_chain/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Root.p12
+ssl.service_creds.pw = osd_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_version.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_version/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=ssltls
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Root.p12
+ssl.service_creds.pw = osd_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_version_sslv3.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_version/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=sslv3
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Root.p12
+ssl.service_creds.pw = osd_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_version_tlsv1.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_version/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv1
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Root.p12
+ssl.service_creds.pw = osd_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_version_tlsv11.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_version/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv11
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Root.p12
+ssl.service_creds.pw = osd_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD

tests/configs/osdconfig_ssl_version_tlsv12.test

@@ -0,0 +1,100 @@
+# optional debug level
+# 0: emergency
+# 1: alert
+# 2: critical
+# 3: error
+# 4: warning
+# 5: notice
+# 6: info (default)
+# 7: debug
+debug.level = 6
+
+# optional debug categories - a space or comma-separated list of log message categories
+# all (default) - enable logging for all categories
+# lifecycle     - log messaages pertaining to service lifecycles (threads)
+# buffer        - logs messages pertaining to buffers
+# net           - network-related log messages
+# auth          - authorization-related log messages
+# stage         - log messages pertaining to the request flow through the stages
+# proc          - log messages pertaining to any kind of request processing
+# db            - log messages pertaining storage on OSD or database access on MRC/DIR
+# replication   - logs messages pertaining to replication 
+# misc          - any other log messages
+#debug.categories = all
+
+# port for the service to listen on
+listen.port = 48640
+
+http_port = 46640
+
+# optional address for network device, "any" if not specified
+#listen.address = 127.0.0.1
+
+# Directory Service endpoint
+dir_service.host = localhost
+dir_service.port = 48638
+
+# directory containing XtreemFS file content
+object_dir = /tmp/xtreemfs-test/osd_ssl_version/
+
+# Number of storage threads. Increase it to improve concurrency in case of multiple open files.
+# Set it to a value >1 only if the underlying device can cope with concurrency, e.g. an SSD.
+#storage_threads = 1
+
+# granularity of the local clock (in ms) (0 disables it to always use the current system time)
+local_clock_renewal = 0
+
+# interval between two remote clock syncs (in ms)
+remote_time_sync = 60000
+
+# specify whether SSL is required
+ssl.enabled = true
+
+# SSL/TLS version to use
+# in JDK 6: sslv3, ssltls, tlsv1
+# in JDK 7 additionally: tlsv12
+# tlsv11 comes with JDK 6 or 7, depending on the vendor
+# 'ssltls' (default) accepts all versions,
+# the others accept only the exact version they name.
+ssl.protocol=tlsv12
+
+# server credentials for SSL handshakes
+ssl.service_creds = ../../tests/certs/client_ssl_test/OSD_Root.p12
+ssl.service_creds.pw = osd_root
+ssl.service_creds.container = pkcs12
+
+# trusted certificates for SSL handshakes
+ssl.trusted_certs = ../../tests/certs/client_ssl_test/trusted_root.jks
+ssl.trusted_certs.pw = trusted_root
+ssl.trusted_certs.container = jks
+
+report_free_space = true
+
+# specify whether internal OSD checksums are required
+# if the flag is set to true, the OSD will calculate checksums for
+# newly created objects, which will be checked when the object is read
+checksums.enabled = false
+
+# algorithm used for checksum calculation
+# by default, Adler32, CRC32, MD5 and SHA-1 are supported
+checksums.algorithm = Adler32
+
+checksums.enabled = false
+
+geographic_coordinates = 41.388417,2.114632
+
+capability_secret = Yagga
+
+# administrator password for privileged operations
+#admin_password = blub
+
+# Optional directory containing deployable policy implementations.
+# Policies can be directly deployed as .java or .class files in this directory
+# or one of its subdirectories. They will be compiled at startup time and
+# loaded at runtime. Policies may have external dependencies that can be
+# deployed either as .java, .class or .jar files. While Java and Class files
+# may be located in subdirectories, JAR files mustn't.
+policy_dir = /etc/xos/xtreemfs/policies
+
+# UUID for the OSD
+uuid = test-localhost-OSD