| author | lana |
| Thu, 26 Dec 2013 12:04:16 -0800 | |
| changeset 23010 | 6dadb192ad81 |
| parent 16109 | eb00701a5769 |
| child 30376 | 2ccf2cf7ea48 |
| permissions | -rw-r--r-- |
| 2 | 1 |
/* |
|
23010
6dadb192ad81
8029235: Update copyright year to match last edit in jdk8 jdk repository for 2013
lana
parents:
16109
diff
changeset
|
2 |
* Copyright (c) 2005, 2013, Oracle and/or its affiliates. All rights reserved. |
| 2 | 3 |
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. |
4 |
* |
|
5 |
* This code is free software; you can redistribute it and/or modify it |
|
6 |
* under the terms of the GNU General Public License version 2 only, as |
|
7 |
* published by the Free Software Foundation. |
|
8 |
* |
|
9 |
* This code is distributed in the hope that it will be useful, but WITHOUT |
|
10 |
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or |
|
11 |
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License |
|
12 |
* version 2 for more details (a copy is included in the LICENSE file that |
|
13 |
* accompanied this code). |
|
14 |
* |
|
15 |
* You should have received a copy of the GNU General Public License version |
|
16 |
* 2 along with this work; if not, write to the Free Software Foundation, |
|
17 |
* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. |
|
18 |
* |
|
| 5506 | 19 |
* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA |
20 |
* or visit www.oracle.com if you need additional information or have any |
|
21 |
* questions. |
|
| 2 | 22 |
*/ |
23 |
||
24 |
/* |
|
25 |
* @test |
|
26 |
* @bug 6261831 |
|
27 |
* @summary Tests the use of the subject delegation feature on the authenticated |
|
28 |
* principals within the RMI connector server's creator codebase with |
|
29 |
* subject delegation. |
|
30 |
* @author Luis-Miguel Alventosa |
|
31 |
* @run clean SubjectDelegation3Test SimpleStandard SimpleStandardMBean |
|
32 |
* @run build SubjectDelegation3Test SimpleStandard SimpleStandardMBean |
|
33 |
* @run main SubjectDelegation3Test policy31 ok |
|
34 |
* @run main SubjectDelegation3Test policy32 ko |
|
35 |
* @run main SubjectDelegation3Test policy33 ko |
|
36 |
* @run main SubjectDelegation3Test policy34 ok |
|
37 |
* @run main SubjectDelegation3Test policy35 ko |
|
38 |
*/ |
|
39 |
||
40 |
import com.sun.jmx.remote.security.JMXPluggableAuthenticator; |
|
41 |
import java.io.File; |
|
42 |
import java.lang.management.ManagementFactory; |
|
43 |
import java.rmi.RemoteException; |
|
44 |
import java.rmi.registry.LocateRegistry; |
|
45 |
import java.rmi.registry.Registry; |
|
46 |
import java.util.Collections; |
|
47 |
import java.util.HashMap; |
|
48 |
import java.util.Properties; |
|
49 |
import javax.management.Attribute; |
|
50 |
import javax.management.MBeanServer; |
|
51 |
import javax.management.MBeanServerConnection; |
|
52 |
import javax.management.Notification; |
|
53 |
import javax.management.NotificationListener; |
|
54 |
import javax.management.ObjectName; |
|
55 |
import javax.management.remote.JMXConnector; |
|
56 |
import javax.management.remote.JMXConnectorFactory; |
|
57 |
import javax.management.remote.JMXConnectorServer; |
|
58 |
import javax.management.remote.JMXConnectorServerFactory; |
|
59 |
import javax.management.remote.JMXPrincipal; |
|
60 |
import javax.management.remote.JMXServiceURL; |
|
61 |
import javax.security.auth.Subject; |
|
62 |
||
63 |
public class SubjectDelegation3Test {
|
|
64 |
||
65 |
public static void main(String[] args) throws Exception {
|
|
66 |
// Check for supported operating systems: Solaris |
|
67 |
// |
|
68 |
// This test runs only on Solaris due to CR 6285916 |
|
69 |
// |
|
70 |
String osName = System.getProperty("os.name");
|
|
71 |
System.out.println("os.name = " + osName);
|
|
72 |
if (!osName.equals("SunOS")) {
|
|
73 |
System.out.println("This test runs on Solaris only.");
|
|
74 |
System.out.println("Bye! Bye!");
|
|
75 |
return; |
|
76 |
} |
|
77 |
String policyFile = args[0]; |
|
78 |
String testResult = args[1]; |
|
79 |
System.out.println("Policy file = " + policyFile);
|
|
80 |
System.out.println("Expected test result = " + testResult);
|
|
81 |
JMXConnectorServer jmxcs = null; |
|
82 |
JMXConnector jmxc = null; |
|
83 |
try {
|
|
84 |
// Create an RMI registry |
|
85 |
// |
|
86 |
System.out.println("Start RMI registry...");
|
|
87 |
Registry reg = null; |
|
88 |
int port = 5800; |
|
89 |
while (port++ < 6000) {
|
|
90 |
try {
|
|
91 |
reg = LocateRegistry.createRegistry(port); |
|
92 |
System.out.println("RMI registry running on port " + port);
|
|
93 |
break; |
|
94 |
} catch (RemoteException e) {
|
|
95 |
// Failed to create RMI registry... |
|
96 |
System.out.println("Failed to create RMI registry " +
|
|
97 |
"on port " + port); |
|
98 |
} |
|
99 |
} |
|
100 |
if (reg == null) {
|
|
101 |
System.exit(1); |
|
102 |
} |
|
103 |
// Set the default password file |
|
104 |
// |
|
105 |
final String passwordFile = System.getProperty("test.src") +
|
|
106 |
File.separator + "jmxremote.password"; |
|
107 |
System.out.println("Password file = " + passwordFile);
|
|
108 |
// Set policy file |
|
109 |
// |
|
110 |
final String policy = System.getProperty("test.src") +
|
|
111 |
File.separator + policyFile; |
|
112 |
System.out.println("PolicyFile = " + policy);
|
|
113 |
System.setProperty("java.security.policy", policy);
|
|
114 |
// Instantiate the MBean server |
|
115 |
// |
|
116 |
System.out.println("Create the MBean server");
|
|
117 |
MBeanServer mbs = ManagementFactory.getPlatformMBeanServer(); |
|
118 |
// Register the SimpleStandardMBean |
|
119 |
// |
|
120 |
System.out.println("Create SimpleStandard MBean");
|
|
121 |
SimpleStandard s = new SimpleStandard("delegate");
|
|
122 |
mbs.registerMBean(s, new ObjectName("MBeans:type=SimpleStandard"));
|
|
123 |
// Create Properties containing the username/password entries |
|
124 |
// |
|
125 |
Properties props = new Properties(); |
|
126 |
props.setProperty("jmx.remote.x.password.file", passwordFile);
|
|
127 |
// Initialize environment map to be passed to the connector server |
|
128 |
// |
|
129 |
System.out.println("Initialize environment map");
|
|
130 |
HashMap env = new HashMap(); |
|
131 |
env.put("jmx.remote.authenticator",
|
|
132 |
new JMXPluggableAuthenticator(props)); |
|
| 16109 | 133 |
// Set Security Manager |
134 |
// |
|
135 |
System.setSecurityManager(new SecurityManager()); |
|
| 2 | 136 |
// Create an RMI connector server |
137 |
// |
|
138 |
System.out.println("Create an RMI connector server");
|
|
139 |
JMXServiceURL url = |
|
140 |
new JMXServiceURL("rmi", null, 0,
|
|
141 |
"/jndi/rmi://:" + port + "/server" + port); |
|
142 |
jmxcs = |
|
143 |
JMXConnectorServerFactory.newJMXConnectorServer(url, env, mbs); |
|
144 |
jmxcs.start(); |
|
145 |
// Create an RMI connector client |
|
146 |
// |
|
147 |
System.out.println("Create an RMI connector client");
|
|
148 |
HashMap cli_env = new HashMap(); |
|
149 |
// These credentials must match those in the default password file |
|
150 |
// |
|
151 |
String[] credentials = new String[] { "monitorRole" , "QED" };
|
|
152 |
cli_env.put("jmx.remote.credentials", credentials);
|
|
153 |
jmxc = JMXConnectorFactory.connect(url, cli_env); |
|
154 |
Subject delegationSubject = |
|
155 |
new Subject(true, |
|
156 |
Collections.singleton(new JMXPrincipal("delegate")),
|
|
157 |
Collections.EMPTY_SET, |
|
158 |
Collections.EMPTY_SET); |
|
159 |
MBeanServerConnection mbsc = |
|
160 |
jmxc.getMBeanServerConnection(delegationSubject); |
|
161 |
// Get domains from MBeanServer |
|
162 |
// |
|
163 |
System.out.println("Domains:");
|
|
164 |
String domains[] = mbsc.getDomains(); |
|
165 |
for (int i = 0; i < domains.length; i++) {
|
|
166 |
System.out.println("\tDomain[" + i + "] = " + domains[i]);
|
|
167 |
} |
|
168 |
// Get MBean count |
|
169 |
// |
|
170 |
System.out.println("MBean count = " + mbsc.getMBeanCount());
|
|
171 |
// Get State attribute |
|
172 |
// |
|
173 |
String oldState = |
|
174 |
(String) mbsc.getAttribute( |
|
175 |
new ObjectName("MBeans:type=SimpleStandard"),
|
|
176 |
"State"); |
|
177 |
System.out.println("Old State = \"" + oldState + "\"");
|
|
178 |
// Set State attribute |
|
179 |
// |
|
180 |
System.out.println("Set State to \"changed state\"");
|
|
181 |
mbsc.setAttribute(new ObjectName("MBeans:type=SimpleStandard"),
|
|
182 |
new Attribute("State", "changed state"));
|
|
183 |
// Get State attribute |
|
184 |
// |
|
185 |
String newState = |
|
186 |
(String) mbsc.getAttribute( |
|
187 |
new ObjectName("MBeans:type=SimpleStandard"),
|
|
188 |
"State"); |
|
189 |
System.out.println("New State = \"" + newState + "\"");
|
|
190 |
if (!newState.equals("changed state")) {
|
|
191 |
System.out.println("Invalid State = \"" + newState + "\"");
|
|
192 |
System.exit(1); |
|
193 |
} |
|
194 |
// Add notification listener on SimpleStandard MBean |
|
195 |
// |
|
196 |
System.out.println("Add notification listener...");
|
|
197 |
mbsc.addNotificationListener( |
|
198 |
new ObjectName("MBeans:type=SimpleStandard"),
|
|
199 |
new NotificationListener() {
|
|
200 |
public void handleNotification(Notification notification, |
|
201 |
Object handback) {
|
|
202 |
System.out.println("Received notification: " +
|
|
203 |
notification); |
|
204 |
} |
|
205 |
}, |
|
206 |
null, |
|
207 |
null); |
|
208 |
// Unregister SimpleStandard MBean |
|
209 |
// |
|
210 |
System.out.println("Unregister SimpleStandard MBean...");
|
|
211 |
mbsc.unregisterMBean(new ObjectName("MBeans:type=SimpleStandard"));
|
|
212 |
} catch (SecurityException e) {
|
|
213 |
if (testResult.equals("ko")) {
|
|
214 |
System.out.println("Got expected security exception = " + e);
|
|
215 |
} else {
|
|
216 |
System.out.println("Got unexpected security exception = " + e);
|
|
217 |
e.printStackTrace(); |
|
218 |
throw e; |
|
219 |
} |
|
220 |
} catch (Exception e) {
|
|
221 |
System.out.println("Unexpected exception caught = " + e);
|
|
222 |
e.printStackTrace(); |
|
223 |
throw e; |
|
224 |
} finally {
|
|
225 |
// Close connector client |
|
226 |
// |
|
227 |
if (jmxc != null) |
|
228 |
jmxc.close(); |
|
229 |
// Stop connector server |
|
230 |
// |
|
231 |
if (jmxcs != null) |
|
232 |
jmxcs.stop(); |
|
233 |
// Say goodbye |
|
234 |
// |
|
235 |
System.out.println("Bye! Bye!");
|
|
236 |
} |
|
237 |
} |
|
238 |
} |