#

# Copyright (c) 2014, Oracle and/or its affiliates. All rights reserved.

# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.

#

# This code is free software; you can redistribute it and/or modify it

# under the terms of the GNU General Public License version 2 only, as

# published by the Free Software Foundation.

#

# This code is distributed in the hope that it will be useful, but WITHOUT

# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or

# FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License

# version 2 for more details (a copy is included in the LICENSE file that

# accompanied this code).

#

# You should have received a copy of the GNU General Public License version

# 2 along with this work; if not, write to the Free Software Foundation,

# Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

#

# Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA

# or visit www.oracle.com if you need additional information or have any

# questions.

#

# @test

# @bug 8023197

# @summary Pre-configured command line options for keytool and jarsigner

#

if [ "${TESTJAVA}" = "" ] ; then

  JAVAC_CMD=`which javac`

  TESTJAVA=`dirname $JAVAC_CMD`/..

fi

KS=ks

KEYTOOL="$TESTJAVA/bin/keytool ${TESTTOOLVMOPTS}"

JAR="$TESTJAVA/bin/jar ${TESTTOOLVMOPTS}"

JARSIGNER="$TESTJAVA/bin/jarsigner ${TESTTOOLVMOPTS}"

rm $KS 2> /dev/null

# keytool

cat <<EOF > kt.conf

# A Pre-configured options file

keytool.all = -storepass:env PASS -keypass:env PASS -keystore \${user.dir}/$KS -debug

keytool.genkey = -keyalg ec -ext bc

keytool.delete = -keystore nothing

EOF

# kt.conf is read

$KEYTOOL -conf kt.conf -genkeypair -dname CN=A -alias a || exit 1

$KEYTOOL -conf kt.conf -list -alias a -v > a_certinfo || exit 2

grep "Signature algorithm name" a_certinfo | grep ECDSA || exit 3

grep "BasicConstraints" a_certinfo || exit 4

# kt.conf is read, and dup multi-valued options processed as expected

$KEYTOOL -conf kt.conf -genkeypair -dname CN=B -alias b -ext ku=ds \

        || exit 11

$KEYTOOL -conf kt.conf -list -alias b -v > b_certinfo || exit 12

grep "BasicConstraints" b_certinfo || exit 14

grep "DigitalSignature" b_certinfo || exit 15

# Single-valued option in command section override all

$KEYTOOL -conf kt.conf -delete -alias a && exit 16

# Single-valued option on command line overrides again

$KEYTOOL -conf kt.conf -delete -alias b -keystore $KS || exit 17

# jarsigner

cat <<EOF > js.conf

jarsigner.all = -keystore \${user.dir}/$KS -storepass:env PASS -debug -strict

jarsigner.sign = -digestalg SHA1

jarsigner.verify = -verbose:summary

EOF

$JAR cvf a.jar ks js.conf kt.conf

$JARSIGNER -conf js.conf a.jar a || exit 21

$JARSIGNER -conf js.conf -verify a.jar > jarsigner.out || exit 22

grep "and 2 more" jarsigner.out || exit 23

$JAR xvf a.jar META-INF/MANIFEST.MF

grep "SHA1-Digest" META-INF/MANIFEST.MF || exit 24

# Error cases

# File does not exist

$KEYTOOL -conf no-such-file -help -list && exit 31

# Cannot have both standard name (-genkeypair) and legacy name (-genkey)

cat <<EOF > bad.conf

keytool.all = -storepass:env PASS -keypass:env PASS -keystore ks

keytool.genkeypair = -keyalg rsa

keytool.genkey = -keyalg ec

EOF

$KEYTOOL -conf bad.conf -genkeypair -alias me -dname "cn=me" && exit 32

# Unknown options are rejected by tool

cat <<EOF > bad.conf

keytool.all=-unknown

EOF

$KEYTOOL -conf bad.conf -help -list && exit 33

# System property must be present

cat <<EOF > bad.conf

keytool.all = -keystore \${no.such.prop}

EOF

$KEYTOOL -conf bad.conf -help -list && exit 34

echo Done

exit 0