test/jdk/sun/security/tools/keytool/default_options.sh
author erikj
Tue, 12 Sep 2017 19:03:39 +0200
changeset 47216 71c04702a3d5
parent 40262 jdk/test/sun/security/tools/keytool/default_options.sh@1b3dd37cb96d
permissions -rw-r--r--
8187443: Forest Consolidation: Move files to unified layout Reviewed-by: darcy, ihse

#
# Copyright (c) 2014, Oracle and/or its affiliates. All rights reserved.
# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
#
# This code is free software; you can redistribute it and/or modify it
# under the terms of the GNU General Public License version 2 only, as
# published by the Free Software Foundation.
#
# This code is distributed in the hope that it will be useful, but WITHOUT
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
# FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
# version 2 for more details (a copy is included in the LICENSE file that
# accompanied this code).
#
# You should have received a copy of the GNU General Public License version
# 2 along with this work; if not, write to the Free Software Foundation,
# Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#
# Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
# or visit www.oracle.com if you need additional information or have any
# questions.
#

# @test
# @bug 8023197
# @summary Pre-configured command line options for keytool and jarsigner
#

if [ "${TESTJAVA}" = "" ] ; then
  JAVAC_CMD=`which javac`
  TESTJAVA=`dirname $JAVAC_CMD`/..
fi

TESTTOOLVMOPTS="$TESTTOOLVMOPTS -J-Duser.language=en -J-Duser.country=US"

KS=ks
KEYTOOL="$TESTJAVA/bin/keytool ${TESTTOOLVMOPTS}"

rm $KS 2> /dev/null

PASS=changeit
export PASS

cat <<EOF > kt.conf
# A Pre-configured options file
keytool.all = -storepass:env PASS -keypass:env PASS -keystore \${user.dir}/$KS -debug
keytool.genkey = -keyalg ec -ext bc
keytool.delete = -keystore nothing
EOF

# kt.conf is read
$KEYTOOL -conf kt.conf -genkeypair -dname CN=A -alias a || exit 1
$KEYTOOL -conf kt.conf -list -alias a -v > a_certinfo || exit 2
grep "Signature algorithm name" a_certinfo | grep ECDSA || exit 3
grep "BasicConstraints" a_certinfo || exit 4

# kt.conf is read, and dup multi-valued options processed as expected
$KEYTOOL -conf kt.conf -genkeypair -dname CN=B -alias b -ext ku=ds \
        || exit 11
$KEYTOOL -conf kt.conf -list -alias b -v > b_certinfo || exit 12
grep "BasicConstraints" b_certinfo || exit 14
grep "DigitalSignature" b_certinfo || exit 15

# Single-valued option in command section override all
$KEYTOOL -conf kt.conf -delete -alias a && exit 16

# Single-valued option on command line overrides again
$KEYTOOL -conf kt.conf -delete -alias b -keystore $KS || exit 17

# Error cases

# File does not exist
$KEYTOOL -conf no-such-file -help -list && exit 31

# Cannot have both standard name (-genkeypair) and legacy name (-genkey)
cat <<EOF > bad.conf
keytool.all = -storepass:env PASS -keypass:env PASS -keystore ks
keytool.genkeypair = -keyalg rsa
keytool.genkey = -keyalg ec
EOF

$KEYTOOL -conf bad.conf -genkeypair -alias me -dname "cn=me" && exit 32

# Unknown options are rejected by tool
cat <<EOF > bad.conf
keytool.all=-unknown
EOF

$KEYTOOL -conf bad.conf -help -list && exit 33

# System property must be present
cat <<EOF > bad.conf
keytool.all = -keystore \${no.such.prop}
EOF

$KEYTOOL -conf bad.conf -help -list && exit 34

echo Done
exit 0