jdk-sandbox: test/jdk/sun/security/ssl/SSLContextImpl/IllegalProtocolProperty.java@24e8cdead5f3 (annotated)

22068 95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	1	/*
59302 24e8cdead5f3 8234725: sun/security/ssl/SSLContextImpl tests support TLSv1.3 ssahoo parents: 47216 diff changeset	2	* Copyright (c) 2013, 2019, Oracle and/or its affiliates. All rights reserved.
22068 95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	4	*
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	7	* published by the Free Software Foundation.
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	8	*
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	9	* This code is distributed in the hope that it will be useful, but WITHOUT
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	10	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	11	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	12	* version 2 for more details (a copy is included in the LICENSE file that
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	13	* accompanied this code).
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	14	*
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	15	* You should have received a copy of the GNU General Public License version
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	16	* 2 along with this work; if not, write to the Free Software Foundation,
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	17	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	18	*
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	19	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	20	* or visit www.oracle.com if you need additional information or have any
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	21	* questions.
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	22	*/
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	23
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	24	// SunJSSE does not support dynamic system properties, no way to re-use
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	25	// system properties in samevm/agentvm mode.
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	26
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	27	/*
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	28	* @test
59302 24e8cdead5f3 8234725: sun/security/ssl/SSLContextImpl tests support TLSv1.3 ssahoo parents: 47216 diff changeset	29	* @bug 7093640 8234725
22068 95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	30	* @summary Enable TLS 1.1 and TLS 1.2 by default in client side of SunJSSE
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	31	* @run main/othervm -Djdk.tls.client.protocols="XSLv3,TLSv1"
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	32	* IllegalProtocolProperty
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	33	*/
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	34
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	35	import javax.net.ssl.*;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	36	import java.security.NoSuchAlgorithmException;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	37
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	38	public class IllegalProtocolProperty {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	39	static enum ContextVersion {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	40	TLS_CV_01("SSL", "TLSv1", "TLSv1.2", true),
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	41	TLS_CV_02("TLS", "TLSv1", "TLSv1.2", true),
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	42	TLS_CV_03("SSLv3", "TLSv1", "TLSv1.2", false),
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	43	TLS_CV_04("TLSv1", "TLSv1", "TLSv1.2", false),
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	44	TLS_CV_05("TLSv1.1", "TLSv1.1", "TLSv1.2", false),
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	45	TLS_CV_06("TLSv1.2", "TLSv1.2", "TLSv1.2", false),
59302 24e8cdead5f3 8234725: sun/security/ssl/SSLContextImpl tests support TLSv1.3 ssahoo parents: 47216 diff changeset	46	TLS_CV_07("Default", "TLSv1", "TLSv1.2", true),
24e8cdead5f3 8234725: sun/security/ssl/SSLContextImpl tests support TLSv1.3 ssahoo parents: 47216 diff changeset	47	TLS_CV_08("TLSv1.3", "TLSv1.3", "TLSv1.3", false);
22068 95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	48
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	49	final String contextVersion;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	50	final String defaultProtocolVersion;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	51	final String supportedProtocolVersion;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	52	final boolean impacted;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	53
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	54	ContextVersion(String contextVersion, String defaultProtocolVersion,
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	55	String supportedProtocolVersion, boolean impacted) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	56	this.contextVersion = contextVersion;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	57	this.defaultProtocolVersion = defaultProtocolVersion;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	58	this.supportedProtocolVersion = supportedProtocolVersion;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	59	this.impacted = impacted;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	60	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	61	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	62
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	63	public static void main(String[] args) throws Exception {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	64	for (ContextVersion cv : ContextVersion.values()) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	65	System.out.println("Checking SSLContext of " + cv.contextVersion);
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	66
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	67	SSLContext context;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	68	try {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	69	context = SSLContext.getInstance(cv.contextVersion);
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	70	if (cv.impacted) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	71	throw new Exception(
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	72	"illegal system property jdk.tls.client.protocols: " +
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	73	System.getProperty("jdk.tls.client.protocols"));
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	74	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	75	} catch (NoSuchAlgorithmException nsae) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	76	if (cv.impacted) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	77	System.out.println(
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	78	"\tIgnore: illegal system property " +
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	79	"jdk.tls.client.protocols=" +
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	80	System.getProperty("jdk.tls.client.protocols"));
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	81	continue;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	82	} else {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	83	throw nsae;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	84	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	85	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	86
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	87	// Default SSLContext is initialized automatically.
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	88	if (!cv.contextVersion.equals("Default")) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	89	// Use default TK, KM and random.
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	90	context.init((KeyManager[])null, (TrustManager[])null, null);
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	91	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	92
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	93	SSLParameters parameters = context.getDefaultSSLParameters();
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	94
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	95	String[] protocols = parameters.getProtocols();
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	96	String[] ciphers = parameters.getCipherSuites();
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	97
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	98	if (protocols.length == 0 \|\| ciphers.length == 0) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	99	throw new Exception("No default protocols or cipher suites");
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	100	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	101
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	102	boolean isMatch = false;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	103	for (String protocol : protocols) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	104	System.out.println("\tdefault protocol version " + protocol);
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	105	if (protocol.equals(cv.defaultProtocolVersion)) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	106	isMatch = true;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	107	break;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	108	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	109	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	110
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	111	if (!isMatch) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	112	throw new Exception("No matched default protocol");
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	113	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	114
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	115	parameters = context.getSupportedSSLParameters();
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	116
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	117	protocols = parameters.getProtocols();
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	118	ciphers = parameters.getCipherSuites();
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	119
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	120	if (protocols.length == 0 \|\| ciphers.length == 0) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	121	throw new Exception("No supported protocols or cipher suites");
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	122	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	123
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	124	isMatch = false;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	125	for (String protocol : protocols) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	126	System.out.println("\tsupported protocol version " + protocol);
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	127	if (protocol.equals(cv.supportedProtocolVersion)) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	128	isMatch = true;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	129	break;
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	130	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	131	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	132
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	133	if (!isMatch) {
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	134	throw new Exception("No matched supported protocol");
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	135	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	136	System.out.println("\t... Success");
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	137	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	138	}
95a7a3cd72a0 7093640: Enable client-side TLS 1.2 by default xuelei parents: diff changeset	139	}

author	ssahoo
	Wed, 27 Nov 2019 22:11:08 -0800
changeset 59302	24e8cdead5f3
parent 47216	71c04702a3d5
permissions	-rw-r--r--