jdk-sandbox: jdk/test/com/sun/security/sasl/ntlm/NTLMTest.java@d302ed125dc9 (annotated)

6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	1	/*
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	2	* Copyright (c) 2010, Oracle and/or its affiliates. All rights reserved.
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	4	*
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	7	* published by the Free Software Foundation.
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	8	*
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	9	* This code is distributed in the hope that it will be useful, but WITHOUT
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	10	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	11	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	12	* version 2 for more details (a copy is included in the LICENSE file that
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	13	* accompanied this code).
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	14	*
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	15	* You should have received a copy of the GNU General Public License version
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	16	* 2 along with this work; if not, write to the Free Software Foundation,
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	17	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	18	*
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	19	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	20	* or visit www.oracle.com if you need additional information or have any
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	21	* questions.
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	22	*/
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	23
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	24	/*
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	25	* @test
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	26	* @bug 6911951 7150092
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	27	* @summary NTLM should be a supported Java SASL mechanism
34687 d302ed125dc9 8144995: Move sun.misc.HexDumpEncoder to sun.security.util chegar parents: 30820 diff changeset	28	* @modules java.base/sun.security.util
30820 0d4717a011d3 8081347: Add @modules to jdk_core tests mchung parents: 25396 diff changeset	29	* java.security.sasl
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	30	*/
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	31	import java.io.IOException;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	32	import javax.security.sasl.*;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	33	import javax.security.auth.callback.*;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	34	import java.util.*;
34687 d302ed125dc9 8144995: Move sun.misc.HexDumpEncoder to sun.security.util chegar parents: 30820 diff changeset	35	import sun.security.util.HexDumpEncoder;
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	36
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	37	public class NTLMTest {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	38
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	39	private static final String MECH = "NTLM";
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	40	private static final String REALM = "REALM";
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	41	private static final String PROTOCOL = "jmx";
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	42	private static final byte[] EMPTY = new byte[0];
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	43
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	44	private static final String USER1 = "dummy";
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	45	private static final char[] PASS1 = "bogus".toCharArray();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	46	private static final String USER2 = "foo";
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	47	private static final char[] PASS2 = "bar".toCharArray();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	48
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	49	private static final Map<String,char[]> maps =
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	50	new HashMap<String,char[]>();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	51	static {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	52	maps.put(USER1, PASS1);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	53	maps.put(USER2, PASS2);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	54	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	55
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	56	static char[] getPass(String d, String u) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	57	if (!d.equals(REALM)) return null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	58	return maps.get(u);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	59	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	60
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	61	public static void main(String[] args) throws Exception {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	62
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	63	checkAuthOnly();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	64	checkClientNameOverride();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	65	checkClientDomainOverride();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	66	checkVersions();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	67	checkClientHostname();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	68	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	69
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	70	static void checkVersions() throws Exception {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	71	// Server accepts all version
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	72	checkVersion(null, null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	73	checkVersion("LM/NTLM", null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	74	checkVersion("LM", null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	75	checkVersion("NTLM", null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	76	checkVersion("NTLM2", null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	77	checkVersion("LMv2/NTLMv2", null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	78	checkVersion("LMv2", null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	79	checkVersion("NTLMv2", null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	80
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	81	// Client's default version is LMv2
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	82	checkVersion(null, "LMv2");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	83
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	84	// Also works if they specified identical versions
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	85	checkVersion("LM/NTLM", "LM");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	86	checkVersion("LM", "LM");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	87	checkVersion("NTLM", "LM");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	88	checkVersion("NTLM2", "NTLM2");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	89	checkVersion("LMv2/NTLMv2", "LMv2");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	90	checkVersion("LMv2", "LMv2");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	91	checkVersion("NTLMv2", "LMv2");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	92
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	93	// But should not work if different
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	94	try {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	95	checkVersion("LM/NTLM", "LMv2");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	96	throw new Exception("Should not succeed");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	97	} catch (SaslException se) {
6678 fd8832656675 6982971: TEST failure: com/sun/security/sasl/ntlm/NTLMTest.java weijun parents: 6517 diff changeset	98	// OK
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	99	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	100	try {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	101	checkVersion("LMv2/NTLMv2", "LM");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	102	throw new Exception("Should not succeed");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	103	} catch (SaslException se) {
6678 fd8832656675 6982971: TEST failure: com/sun/security/sasl/ntlm/NTLMTest.java weijun parents: 6517 diff changeset	104	// OK
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	105	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	106
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	107	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	108
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	109	/**
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	110	* A test on version matching
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	111	* @param vc ntlm version specified for client
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	112	* @param vs ntlm version specified for server
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	113	* @throws Exception
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	114	*/
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	115	private static void checkVersion(String vc, String vs) throws Exception {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	116	Map<String,Object> pc = new HashMap<>();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	117	pc.put("com.sun.security.sasl.ntlm.version", vc);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	118	Map<String,Object> ps = new HashMap<>();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	119	ps.put("com.sun.security.sasl.ntlm.version", vs);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	120	SaslClient clnt = Sasl.createSaslClient(
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	121	new String[]{MECH}, USER1, PROTOCOL, REALM, pc,
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	122	new CallbackHandler() {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	123	public void handle(Callback[] callbacks)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	124	throws IOException, UnsupportedCallbackException {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	125	for (Callback cb: callbacks) {
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	126	if (cb instanceof PasswordCallback) {
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	127	((PasswordCallback)cb).setPassword(PASS1);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	128	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	129	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	130	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	131	});
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	132
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	133	SaslServer srv = Sasl.createSaslServer(MECH, PROTOCOL, REALM, ps,
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	134	new CallbackHandler() {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	135	public void handle(Callback[] callbacks)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	136	throws IOException, UnsupportedCallbackException {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	137	String domain = null, name = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	138	PasswordCallback pcb = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	139	for (Callback cb: callbacks) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	140	if (cb instanceof NameCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	141	name = ((NameCallback)cb).getDefaultName();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	142	} else if (cb instanceof RealmCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	143	domain = ((RealmCallback)cb).getDefaultText();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	144	} else if (cb instanceof PasswordCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	145	pcb = (PasswordCallback)cb;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	146	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	147	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	148	if (pcb != null) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	149	pcb.setPassword(getPass(domain, name));
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	150	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	151	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	152	});
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	153
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	154	handshake(clnt, srv);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	155	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	156
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	157	private static void checkClientHostname() throws Exception {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	158	Map<String,Object> pc = new HashMap<>();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	159	pc.put("com.sun.security.sasl.ntlm.hostname", "this.is.com");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	160	SaslClient clnt = Sasl.createSaslClient(
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	161	new String[]{MECH}, USER1, PROTOCOL, REALM, pc,
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	162	new CallbackHandler() {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	163	public void handle(Callback[] callbacks)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	164	throws IOException, UnsupportedCallbackException {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	165	for (Callback cb: callbacks) {
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	166	if (cb instanceof PasswordCallback) {
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	167	((PasswordCallback)cb).setPassword(PASS1);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	168	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	169	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	170	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	171	});
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	172
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	173	SaslServer srv = Sasl.createSaslServer(MECH, PROTOCOL, REALM, null,
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	174	new CallbackHandler() {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	175	public void handle(Callback[] callbacks)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	176	throws IOException, UnsupportedCallbackException {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	177	String domain = null, name = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	178	PasswordCallback pcb = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	179	for (Callback cb: callbacks) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	180	if (cb instanceof NameCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	181	name = ((NameCallback)cb).getDefaultName();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	182	} else if (cb instanceof RealmCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	183	domain = ((RealmCallback)cb).getDefaultText();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	184	} else if (cb instanceof PasswordCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	185	pcb = (PasswordCallback)cb;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	186	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	187	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	188	if (pcb != null) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	189	pcb.setPassword(getPass(domain, name));
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	190	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	191	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	192	});
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	193
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	194	handshake(clnt, srv);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	195	if (!"this.is.com".equals(
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	196	srv.getNegotiatedProperty("com.sun.security.sasl.ntlm.hostname"))) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	197	throw new Exception("Hostname not trasmitted to server");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	198	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	199	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	200
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	201	/**
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	202	* Client realm override, but finally overridden by server response
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	203	*/
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	204	private static void checkClientDomainOverride() throws Exception {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	205	SaslClient clnt = Sasl.createSaslClient(
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	206	new String[]{MECH}, USER1, PROTOCOL, "ANOTHERREALM", null,
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	207	new CallbackHandler() {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	208	public void handle(Callback[] callbacks)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	209	throws IOException, UnsupportedCallbackException {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	210	for (Callback cb: callbacks) {
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	211	if (cb instanceof RealmCallback) {
5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	212	((RealmCallback)cb).setText(REALM);
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	213	} else if (cb instanceof PasswordCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	214	((PasswordCallback)cb).setPassword(PASS1);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	215	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	216	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	217	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	218	});
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	219
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	220	SaslServer srv = Sasl.createSaslServer(MECH, PROTOCOL, REALM, null,
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	221	new CallbackHandler() {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	222	public void handle(Callback[] callbacks)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	223	throws IOException, UnsupportedCallbackException {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	224	String domain = null, name = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	225	PasswordCallback pcb = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	226	for (Callback cb: callbacks) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	227	if (cb instanceof NameCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	228	name = ((NameCallback)cb).getDefaultName();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	229	} else if (cb instanceof RealmCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	230	domain = ((RealmCallback)cb).getDefaultText();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	231	} else if (cb instanceof PasswordCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	232	pcb = (PasswordCallback)cb;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	233	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	234	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	235	if (pcb != null) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	236	pcb.setPassword(getPass(domain, name));
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	237	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	238	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	239	});
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	240
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	241	handshake(clnt, srv);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	242	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	243
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	244	/**
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	245	* Client side user name provided in callback.
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	246	* @throws Exception
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	247	*/
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	248	private static void checkClientNameOverride() throws Exception {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	249	SaslClient clnt = Sasl.createSaslClient(
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	250	new String[]{MECH}, "someone", PROTOCOL, REALM, null,
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	251	new CallbackHandler() {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	252	public void handle(Callback[] callbacks)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	253	throws IOException, UnsupportedCallbackException {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	254	for (Callback cb: callbacks) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	255	if (cb instanceof NameCallback) {
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	256	NameCallback ncb = (NameCallback) cb;
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	257	ncb.setName(USER1);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	258	} else if (cb instanceof PasswordCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	259	((PasswordCallback)cb).setPassword(PASS1);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	260	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	261	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	262	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	263	});
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	264
25396 5e73c95f95db 7150092: NTLM authentication fail if user specified a different realm weijun parents: 6678 diff changeset	265	SaslServer srv = Sasl.createSaslServer(MECH, PROTOCOL, "FAKE", null,
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	266	new CallbackHandler() {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	267	public void handle(Callback[] callbacks)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	268	throws IOException, UnsupportedCallbackException {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	269	String domain = null, name = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	270	PasswordCallback pcb = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	271	for (Callback cb: callbacks) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	272	if (cb instanceof NameCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	273	name = ((NameCallback)cb).getDefaultName();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	274	} else if (cb instanceof RealmCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	275	domain = ((RealmCallback)cb).getDefaultText();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	276	} else if (cb instanceof PasswordCallback) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	277	pcb = (PasswordCallback)cb;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	278	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	279	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	280	if (pcb != null) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	281	pcb.setPassword(getPass(domain, name));
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	282	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	283	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	284	});
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	285
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	286	handshake(clnt, srv);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	287	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	288
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	289	private static void checkAuthOnly() throws Exception {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	290	Map<String,Object> props = new HashMap<>();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	291	props.put(Sasl.QOP, "auth-conf");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	292	try {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	293	Sasl.createSaslClient(
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	294	new String[]{MECH}, USER2, PROTOCOL, REALM, props, null);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	295	throw new Exception("NTLM should not support auth-conf");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	296	} catch (SaslException se) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	297	// Normal
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	298	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	299	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	300
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	301	private static void handshake(SaslClient clnt, SaslServer srv)
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	302	throws Exception {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	303	if (clnt == null) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	304	throw new IllegalStateException(
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	305	"Unable to find client impl for " + MECH);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	306	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	307	if (srv == null) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	308	throw new IllegalStateException(
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	309	"Unable to find server impl for " + MECH);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	310	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	311
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	312	byte[] response = (clnt.hasInitialResponse()
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	313	? clnt.evaluateChallenge(EMPTY) : EMPTY);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	314	System.out.println("Initial:");
34687 d302ed125dc9 8144995: Move sun.misc.HexDumpEncoder to sun.security.util chegar parents: 30820 diff changeset	315	new HexDumpEncoder().encodeBuffer(response, System.out);
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	316	byte[] challenge;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	317
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	318	while (!clnt.isComplete() \|\| !srv.isComplete()) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	319	challenge = srv.evaluateResponse(response);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	320	response = null;
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	321	if (challenge != null) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	322	System.out.println("Challenge:");
34687 d302ed125dc9 8144995: Move sun.misc.HexDumpEncoder to sun.security.util chegar parents: 30820 diff changeset	323	new HexDumpEncoder().encodeBuffer(challenge, System.out);
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	324	response = clnt.evaluateChallenge(challenge);
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	325	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	326	if (response != null) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	327	System.out.println("Response:");
34687 d302ed125dc9 8144995: Move sun.misc.HexDumpEncoder to sun.security.util chegar parents: 30820 diff changeset	328	new HexDumpEncoder().encodeBuffer(response, System.out);
6517 151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	329	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	330	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	331
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	332	if (clnt.isComplete() && srv.isComplete()) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	333	System.out.println("SUCCESS");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	334	if (!srv.getAuthorizationID().equals(USER1)) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	335	throw new Exception("Not correct user");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	336	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	337	} else {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	338	throw new IllegalStateException(
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	339	"FAILURE: mismatched state:"
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	340	+ " client complete? " + clnt.isComplete()
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	341	+ " server complete? " + srv.isComplete());
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	342	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	343
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	344	if (!clnt.getNegotiatedProperty(Sasl.QOP).equals("auth") \|\|
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	345	!srv.getNegotiatedProperty(Sasl.QOP).equals("auth") \|\|
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	346	!clnt.getNegotiatedProperty(
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	347	"com.sun.security.sasl.ntlm.domain").equals(REALM)) {
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	348	throw new Exception("Negotiated property error");
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	349	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	350	clnt.dispose();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	351	srv.dispose();
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	352	}
151856936fd8 6911951: NTLM should be a supported Java SASL mechanism weijun parents: diff changeset	353	}

author	chegar
	Mon, 14 Dec 2015 19:24:33 +0000
changeset 34687	d302ed125dc9
parent 30820	0d4717a011d3
permissions	-rw-r--r--