jdk-sandbox: jdk/test/sun/security/krb5/auto/SSL.java@b57c48f16179 (annotated)

4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	1	/*
14342 8435a30053c1 7197491: update copyright year to match last edit in jdk8 jdk repository alanb parents: 12701 diff changeset	2	* Copyright (c) 2009, 2012, Oracle and/or its affiliates. All rights reserved.
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	4	*
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	7	* published by the Free Software Foundation.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	8	*
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	9	* This code is distributed in the hope that it will be useful, but WITHOUT
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	10	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	11	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	12	* version 2 for more details (a copy is included in the LICENSE file that
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	13	* accompanied this code).
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	14	*
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	15	* You should have received a copy of the GNU General Public License version
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	16	* 2 along with this work; if not, write to the Free Software Foundation,
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	17	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	18	*
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4534 diff changeset	19	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4534 diff changeset	20	* or visit www.oracle.com if you need additional information or have any
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4534 diff changeset	21	* questions.
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	22	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	23
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	24	/*
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	25	* @test
4534 791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	26	* @bug 6894643 6913636
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	27	* @summary Test JSSE Kerberos ciphersuite
8396 587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	28	* @run main/othervm SSL TLS_KRB5_WITH_RC4_128_SHA
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	29	* @run main/othervm SSL TLS_KRB5_WITH_RC4_128_MD5
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	30	* @run main/othervm SSL TLS_KRB5_WITH_3DES_EDE_CBC_SHA
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	31	* @run main/othervm SSL TLS_KRB5_WITH_3DES_EDE_CBC_MD5
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	32	* @run main/othervm SSL TLS_KRB5_WITH_DES_CBC_SHA
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	33	* @run main/othervm SSL TLS_KRB5_WITH_DES_CBC_MD5
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	34	* @run main/othervm SSL TLS_KRB5_EXPORT_WITH_RC4_40_SHA
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	35	* @run main/othervm SSL TLS_KRB5_EXPORT_WITH_RC4_40_MD5
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	36	* @run main/othervm SSL TLS_KRB5_EXPORT_WITH_DES_CBC_40_SHA
587947f96036 7018928: test failure: sun/security/krb5/auto/SSL.java weijun parents: 7172 diff changeset	37	* @run main/othervm SSL TLS_KRB5_EXPORT_WITH_DES_CBC_40_MD5
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	38	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	39	import java.io.*;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	40	import java.net.InetAddress;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	41	import javax.net.ssl.*;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	42	import java.security.Principal;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	43	import java.util.Date;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	44	import sun.security.jgss.GSSUtil;
4534 791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	45	import sun.security.krb5.PrincipalName;
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	46	import sun.security.krb5.internal.ktab.KeyTab;
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	47
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	48	public class SSL {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	49
5975 076cd013e5e4 6946669: SSL/Krb5 should not call EncryptedData.reset(data, false) weijun parents: 5506 diff changeset	50	private static String krb5Cipher;
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	51	private static final int LOOP_LIMIT = 3;
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	52	private static int loopCount = 0;
4346 aee26e5a53b0 6906854: SSL/Krb5 testcase should not use a fixed port number vinnie parents: 4344 diff changeset	53	private static volatile String server;
aee26e5a53b0 6906854: SSL/Krb5 testcase should not use a fixed port number vinnie parents: 4344 diff changeset	54	private static volatile int port;
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	55
12701 c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	56	// 0-Not started, 1-Start OK, 2-Failure
c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	57	private static volatile int serverState = 0;
c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	58
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	59	public static void main(String[] args) throws Exception {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	60
5975 076cd013e5e4 6946669: SSL/Krb5 should not call EncryptedData.reset(data, false) weijun parents: 5506 diff changeset	61	krb5Cipher = args[0];
076cd013e5e4 6946669: SSL/Krb5 should not call EncryptedData.reset(data, false) weijun parents: 5506 diff changeset	62
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	63	KDC kdc = KDC.create(OneKDC.REALM);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	64	// Run this after KDC, so our own DNS service can be started
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	65	try {
4346 aee26e5a53b0 6906854: SSL/Krb5 testcase should not use a fixed port number vinnie parents: 4344 diff changeset	66	server = InetAddress.getLocalHost().getHostName().toLowerCase();
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	67	} catch (java.net.UnknownHostException e) {
4346 aee26e5a53b0 6906854: SSL/Krb5 testcase should not use a fixed port number vinnie parents: 4344 diff changeset	68	server = "localhost";
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	69	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	70
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	71	kdc.addPrincipal(OneKDC.USER, OneKDC.PASS);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	72	kdc.addPrincipalRandKey("krbtgt/" + OneKDC.REALM);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	73	KDC.saveConfig(OneKDC.KRB5_CONF, kdc);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	74	System.setProperty("java.security.krb5.conf", OneKDC.KRB5_CONF);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	75
4534 791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	76	// Add 3 versions of keys into keytab
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	77	KeyTab ktab = KeyTab.create(OneKDC.KTAB);
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	78	PrincipalName service = new PrincipalName(
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	79	"host/" + server, PrincipalName.KRB_NT_SRV_HST);
7172 01308fd663b3 6997740: ktab entry related test compilation error weijun parents: 5975 diff changeset	80	ktab.addEntry(service, "pass1".toCharArray(), 1, true);
01308fd663b3 6997740: ktab entry related test compilation error weijun parents: 5975 diff changeset	81	ktab.addEntry(service, "pass2".toCharArray(), 2, true);
01308fd663b3 6997740: ktab entry related test compilation error weijun parents: 5975 diff changeset	82	ktab.addEntry(service, "pass3".toCharArray(), 3, true);
4534 791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	83	ktab.save();
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	84
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	85	// and use the middle one as the real key
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	86	kdc.addPrincipal("host/" + server, "pass2".toCharArray());
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	87
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	88	// JAAS config entry name ssl
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	89	System.setProperty("java.security.auth.login.config", OneKDC.JAAS_CONF);
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	90	File f = new File(OneKDC.JAAS_CONF);
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	91	FileOutputStream fos = new FileOutputStream(f);
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	92	fos.write((
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	93	"ssl {\n" +
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	94	" com.sun.security.auth.module.Krb5LoginModule required\n" +
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	95	" principal=\"host/" + server + "\"\n" +
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	96	" useKeyTab=true\n" +
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	97	" keyTab=" + OneKDC.KTAB + "\n" +
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	98	" isInitiator=false\n" +
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	99	" storeKey=true;\n};\n"
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	100	).getBytes());
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	101	fos.close();
791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	102
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	103	Context c;
4534 791203c47f4e 6913636: kvno check in JSSE weijun parents: 4346 diff changeset	104	final Context s = Context.fromJAAS("ssl");
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	105
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	106	// There's no keytab file when server starts.
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	107	s.startAsServer(GSSUtil.GSS_KRB5_MECH_OID);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	108
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	109	Thread server = new Thread(new Runnable() {
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	110	public void run() {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	111	try {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	112	s.doAs(new JsseServerAction(), null);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	113	} catch (Exception e) {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	114	e.printStackTrace();
12701 c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	115	serverState = 2;
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	116	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	117	}
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	118	});
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	119	server.setDaemon(true);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	120	server.start();
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	121
12701 c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	122	while (serverState == 0) {
c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	123	Thread.sleep(50);
c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	124	}
c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	125
c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	126	if (serverState == 2) {
c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	127	throw new Exception("Server already failed");
c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	128	}
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	129
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	130	// Now create the keytab
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	131
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	132	/*
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	133	// Add 3 versions of keys into keytab
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	134	KeyTab ktab = KeyTab.create(OneKDC.KTAB);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	135	PrincipalName service = new PrincipalName(
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	136	"host/" + server, PrincipalName.KRB_NT_SRV_HST);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	137	ktab.addEntry(service, "pass1".toCharArray(), 1);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	138	ktab.addEntry(service, "pass2".toCharArray(), 2);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	139	ktab.addEntry(service, "pass3".toCharArray(), 3);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	140	ktab.save();
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	141
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	142	// and use the middle one as the real key
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	143	kdc.addPrincipal("host/" + server, "pass2".toCharArray());
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	144	*/
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	145	c = Context.fromUserPass(OneKDC.USER, OneKDC.PASS, false);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	146	c.startAsClient("host/" + server, GSSUtil.GSS_KRB5_MECH_OID);
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	147	c.doAs(new JsseClientAction(), null);
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	148
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	149	// Add another version of key, make sure it can be loaded
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	150	Thread.sleep(2000);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	151	ktab = KeyTab.getInstance(OneKDC.KTAB);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	152	ktab.addEntry(service, "pass4".toCharArray(), 4, true);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	153	ktab.save();
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	154	kdc.addPrincipal("host/" + server, "pass4".toCharArray());
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	155
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	156	c = Context.fromUserPass(OneKDC.USER, OneKDC.PASS, false);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	157	c.startAsClient("host/" + server, GSSUtil.GSS_KRB5_MECH_OID);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	158	c.doAs(new JsseClientAction(), null);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	159
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	160	// Revoke the old key
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	161	/*Thread.sleep(2000);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	162	ktab = KeyTab.create(OneKDC.KTAB);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	163	ktab.addEntry(service, "pass5".toCharArray(), 5, false);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	164	ktab.save();
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	165
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	166	c = Context.fromUserPass(OneKDC.USER, OneKDC.PASS, false);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	167	c.startAsClient("host/" + server, GSSUtil.GSS_KRB5_MECH_OID);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	168	try {
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	169	c.doAs(new JsseClientAction(), null);
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	170	throw new Exception("Should fail this time.");
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	171	} catch (SSLException e) {
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	172	// Correct behavior.
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	173	}*/
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	174	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	175
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	176	// Following codes copied from
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	177	// http://java.sun.com/javase/6/docs/technotes/guides/security/jgss/lab/part2.html#JSSE
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	178	private static class JsseClientAction implements Action {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	179	public byte[] run(Context s, byte[] input) throws Exception {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	180	SSLSocketFactory sslsf =
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	181	(SSLSocketFactory) SSLSocketFactory.getDefault();
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	182	System.out.println("Connecting " + server + ":" + port);
4346 aee26e5a53b0 6906854: SSL/Krb5 testcase should not use a fixed port number vinnie parents: 4344 diff changeset	183	SSLSocket sslSocket = (SSLSocket) sslsf.createSocket(server, port);
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	184
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	185	// Enable only a KRB5 cipher suite.
5975 076cd013e5e4 6946669: SSL/Krb5 should not call EncryptedData.reset(data, false) weijun parents: 5506 diff changeset	186	String enabledSuites[] = {krb5Cipher};
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	187	sslSocket.setEnabledCipherSuites(enabledSuites);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	188	// Should check for exception if enabledSuites is not supported
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	189
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	190	BufferedReader in = new BufferedReader(new InputStreamReader(
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	191	sslSocket.getInputStream()));
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	192	BufferedWriter out = new BufferedWriter(new OutputStreamWriter(
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	193	sslSocket.getOutputStream()));
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	194
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	195	String outStr = "Hello There!\n";
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	196	out.write(outStr);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	197	out.flush();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	198	System.out.print("Sending " + outStr);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	199
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	200	String inStr = in.readLine();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	201	System.out.println("Received " + inStr);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	202
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	203	String cipherSuiteChosen = sslSocket.getSession().getCipherSuite();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	204	System.out.println("Cipher suite in use: " + cipherSuiteChosen);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	205	Principal self = sslSocket.getSession().getLocalPrincipal();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	206	System.out.println("I am: " + self.toString());
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	207	Principal peer = sslSocket.getSession().getPeerPrincipal();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	208	System.out.println("Server is: " + peer.toString());
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	209
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	210	sslSocket.close();
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	211	// This line should not be needed. It's the server's duty to
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	212	// forget the old key
f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	213	//sslSocket.getSession().invalidate();
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	214	return null;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	215	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	216	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	217
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	218	private static class JsseServerAction implements Action {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	219	public byte[] run(Context s, byte[] input) throws Exception {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	220	SSLServerSocketFactory sslssf =
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	221	(SSLServerSocketFactory) SSLServerSocketFactory.getDefault();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	222	SSLServerSocket sslServerSocket =
4346 aee26e5a53b0 6906854: SSL/Krb5 testcase should not use a fixed port number vinnie parents: 4344 diff changeset	223	(SSLServerSocket) sslssf.createServerSocket(0); // any port
aee26e5a53b0 6906854: SSL/Krb5 testcase should not use a fixed port number vinnie parents: 4344 diff changeset	224	port = sslServerSocket.getLocalPort();
9499 f3115698a012 6894072: always refresh keytab weijun parents: 8396 diff changeset	225	System.out.println("Listening on " + port);
12701 c624acdf1852 7170308: timing error in the krb5 test SSL.java weijun parents: 11107 diff changeset	226	serverState = 1;
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	227
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	228	// Enable only a KRB5 cipher suite.
5975 076cd013e5e4 6946669: SSL/Krb5 should not call EncryptedData.reset(data, false) weijun parents: 5506 diff changeset	229	String enabledSuites[] = {krb5Cipher};
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	230	sslServerSocket.setEnabledCipherSuites(enabledSuites);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	231	// Should check for exception if enabledSuites is not supported
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	232
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	233	while (loopCount++ < LOOP_LIMIT) {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	234	System.out.println("Waiting for incoming connection...");
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	235
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	236	SSLSocket sslSocket = (SSLSocket) sslServerSocket.accept();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	237
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	238	System.out.println("Got connection from client "
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	239	+ sslSocket.getInetAddress());
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	240
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	241	BufferedReader in = new BufferedReader(new InputStreamReader(
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	242	sslSocket.getInputStream()));
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	243	BufferedWriter out = new BufferedWriter(new OutputStreamWriter(
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	244	sslSocket.getOutputStream()));
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	245
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	246	String inStr = in.readLine();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	247	System.out.println("Received " + inStr);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	248
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	249	String outStr = inStr + " " + new Date().toString() + "\n";
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	250	out.write(outStr);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	251	System.out.println("Sending " + outStr);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	252	out.flush();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	253
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	254	String cipherSuiteChosen =
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	255	sslSocket.getSession().getCipherSuite();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	256	System.out.println("Cipher suite in use: " + cipherSuiteChosen);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	257	Principal self = sslSocket.getSession().getLocalPrincipal();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	258	System.out.println("I am: " + self.toString());
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	259	Principal peer = sslSocket.getSession().getPeerPrincipal();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	260	System.out.println("Client is: " + peer.toString());
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	261
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	262	sslSocket.close();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	263	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	264	return null;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	265	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	266	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	267	}

author	msheppar
	Thu, 21 Feb 2013 20:01:22 +0000
changeset 16020	b57c48f16179
parent 14342	8435a30053c1
child 17189	9f2ae085280b
permissions	-rw-r--r--