--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/test/jdk/tools/jpackage/macosx/SigningPackageTest.java Fri Oct 04 14:56:02 2019 -0400
@@ -0,0 +1,108 @@
+/*
+ * Copyright (c) 2019, Oracle and/or its affiliates. All rights reserved.
+ * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
+ *
+ * This code is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU General Public License version 2 only, as
+ * published by the Free Software Foundation.
+ *
+ * This code is distributed in the hope that it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
+ * version 2 for more details (a copy is included in the LICENSE file that
+ * accompanied this code).
+ *
+ * You should have received a copy of the GNU General Public License version
+ * 2 along with this work; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+ *
+ * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
+ * or visit www.oracle.com if you need additional information or have any
+ * questions.
+ */
+
+import java.nio.file.Path;
+import java.nio.file.Paths;
+import jdk.jpackage.test.*;
+
+/**
+ * Tests generation of dmg and pkg with --mac-sign and related arguments. Test will
+ * generate pkg and verifies its signature. It verifies that dmg is not signed, but app
+ * image inside dmg is signed. This test requires that machine is configured with test
+ * certificate for "Developer ID Installer: jpackage.openjdk.java.net" in jpackagerTest
+ * keychain with always allowed access to this keychain for user which runs test.
+ */
+
+/*
+ * @test
+ * @summary jpackage with --package-type pkg,dmg --mac-sign
+ * @library ../helpers
+ * @library /test/lib
+ * @library base
+ * @build SigningBase
+ * @build SigningCheck
+ * @build jtreg.SkippedException
+ * @build jdk.jpackage.test.*
+ * @modules jdk.jpackage/jdk.jpackage.internal
+ * @requires (os.family == "mac")
+ * @run main/othervm -Xmx512m SigningPackageTest
+ */
+public class SigningPackageTest {
+
+ private static void verifyPKG(JPackageCommand cmd) {
+ Path outputBundle = cmd.outputBundle();
+ SigningBase.verifyPkgutil(outputBundle);
+ SigningBase.verifySpctl(outputBundle, "install");
+ }
+
+ private static void verifyDMG(JPackageCommand cmd) {
+ Path outputBundle = cmd.outputBundle();
+ SigningBase.verifyCodesign(outputBundle, false);
+ }
+
+ private static void verifyAppImageInDMG(JPackageCommand cmd) throws Exception {
+ Path disk = Paths.get("/Volumes", cmd.name());
+ try {
+ new Executor()
+ .setExecutable("/usr/bin/hdiutil")
+ .addArgument("attach").addArgument(cmd.outputBundle())
+ .execute().assertExitCodeIsZero();
+
+ Path appImageInDMG = disk.resolve(cmd.name() + ".app");
+ Path launcherPath = appImageInDMG.resolve(Path.of("Contents", "MacOS", cmd.name()));
+ SigningBase.verifyCodesign(launcherPath, true);
+ SigningBase.verifyCodesign(appImageInDMG, true);
+ SigningBase.verifySpctl(appImageInDMG, "exec");
+ } finally {
+ new Executor()
+ .setExecutable("/usr/bin/hdiutil")
+ .addArgument("detach").addArgument(disk)
+ .execute().assertExitCodeIsZero();
+ }
+ }
+
+ public static void main(String[] args) throws Exception {
+ TKit.run(args, () -> {
+ SigningCheck.checkCertificates();
+
+ new PackageTest()
+ .configureHelloApp()
+ .forTypes(PackageType.MAC)
+ .addInitializer(cmd -> {
+ cmd.addArguments("--mac-sign",
+ "--mac-signing-key-user-name", SigningBase.DEV_NAME,
+ "--mac-signing-keychain", "jpackagerTest.keychain");
+ })
+ .forTypes(PackageType.MAC_PKG)
+ .addBundleVerifier(cmd -> {
+ verifyPKG(cmd);
+ })
+ .forTypes(PackageType.MAC_DMG)
+ .addBundleVerifier(cmd -> {
+ verifyDMG(cmd);
+ verifyAppImageInDMG(cmd);
+ })
+ .run();
+ });
+ }
+}