jdk-sandbox: jdk/src/share/classes/sun/security/ssl/Krb5Helper.java@c459f79af46b (annotated)

4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	1	/*
7668 d4a77089c587 6962318: Update copyright year ohair parents: 7287 diff changeset	2	* Copyright (c) 2009, 2010, Oracle and/or its affiliates. All rights reserved.
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	4	*
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4236 diff changeset	7	* published by the Free Software Foundation. Oracle designates this
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4236 diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	10	*
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
7287 fe038b724bcb 6903584: Legal notice repair: Three files under jdk/src/share/classes/sun/security/ssl/ xuelei parents: 5506 diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	15	* accompanied this code).
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	16	*
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	20	*
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4236 diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4236 diff changeset	22	* or visit www.oracle.com if you need additional information or have any
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 4236 diff changeset	23	* questions.
4236 02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	24	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	25
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	26	package sun.security.ssl;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	27
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	28	import java.security.AccessControlContext;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	29	import java.security.AccessController;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	30	import java.security.Permission;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	31	import java.security.Principal;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	32	import java.security.PrivilegedAction;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	33	import javax.crypto.SecretKey;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	34	import javax.security.auth.Subject;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	35	import javax.security.auth.login.LoginException;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	36
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	37	/**
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	38	* A helper class for Kerberos APIs.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	39	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	40	public final class Krb5Helper {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	41
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	42	private Krb5Helper() { }
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	43
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	44	// loads Krb5Proxy implementation class if available
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	45	private static final String IMPL_CLASS =
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	46	"sun.security.ssl.krb5.Krb5ProxyImpl";
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	47
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	48	private static final Krb5Proxy proxy =
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	49	AccessController.doPrivileged(new PrivilegedAction<Krb5Proxy>() {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	50	public Krb5Proxy run() {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	51	try {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	52	Class<?> c = Class.forName(IMPL_CLASS, true, null);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	53	return (Krb5Proxy)c.newInstance();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	54	} catch (ClassNotFoundException cnf) {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	55	return null;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	56	} catch (InstantiationException e) {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	57	throw new AssertionError(e);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	58	} catch (IllegalAccessException e) {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	59	throw new AssertionError(e);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	60	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	61	}});
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	62
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	63	/**
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	64	* Returns true if Kerberos is available.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	65	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	66	public static boolean isAvailable() {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	67	return proxy != null;
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	68	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	69
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	70	private static void ensureAvailable() {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	71	if (proxy == null)
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	72	throw new AssertionError("Kerberos should have been available");
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	73	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	74
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	75	/**
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	76	* Returns the Subject associated with client-side of the SSL socket.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	77	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	78	public static Subject getClientSubject(AccessControlContext acc)
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	79	throws LoginException {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	80	ensureAvailable();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	81	return proxy.getClientSubject(acc);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	82	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	83
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	84	/**
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	85	* Returns the Subject associated with server-side of the SSL socket.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	86	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	87	public static Subject getServerSubject(AccessControlContext acc)
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	88	throws LoginException {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	89	ensureAvailable();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	90	return proxy.getServerSubject(acc);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	91	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	92
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	93	/**
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	94	* Returns the KerberosKeys for the default server-side principal.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	95	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	96	public static SecretKey[] getServerKeys(AccessControlContext acc)
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	97	throws LoginException {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	98	ensureAvailable();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	99	return proxy.getServerKeys(acc);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	100	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	101
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	102	/**
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	103	* Returns the server-side principal name associated with the KerberosKey.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	104	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	105	public static String getServerPrincipalName(SecretKey kerberosKey) {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	106	ensureAvailable();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	107	return proxy.getServerPrincipalName(kerberosKey);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	108	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	109
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	110	/**
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	111	* Returns the hostname embedded in the principal name.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	112	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	113	public static String getPrincipalHostName(Principal principal) {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	114	ensureAvailable();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	115	return proxy.getPrincipalHostName(principal);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	116	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	117
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	118	/**
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	119	* Returns a ServicePermission for the principal name and action.
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	120	*/
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	121	public static Permission getServicePermission(String principalName,
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	122	String action) {
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	123	ensureAvailable();
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	124	return proxy.getServicePermission(principalName, action);
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	125	}
02f52c723b79 6894643: Separate out dependency on Kerberos vinnie parents: diff changeset	126	}

author	xuelei
	Fri, 08 Apr 2011 02:00:09 -0700
changeset 9246	c459f79af46b
parent 7668	d4a77089c587
child 14664	e71aa0962e70
permissions	-rw-r--r--