1 /*

     2  * Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.

     3  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.

     4  *

     5  * This code is free software; you can redistribute it and/or modify it

     6  * under the terms of the GNU General Public License version 2 only, as

     7  * published by the Free Software Foundation.

     8  *

     9  * This code is distributed in the hope that it will be useful, but WITHOUT

    10  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or

    11  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License

    12  * version 2 for more details (a copy is included in the LICENSE file that

    13  * accompanied this code).

    14  *

    15  * You should have received a copy of the GNU General Public License version

    16  * 2 along with this work; if not, write to the Free Software Foundation,

    17  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

    18  *

    19  * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA

    20  * or visit www.oracle.com if you need additional information or have any

    21  * questions.

    22  */

    23 

    24 /*

    25  * @test

    26  * @bug 7142172

    27  * @summary Custom TrustManagers that return null for getAcceptedIssuers

    28  *          will NPE.

    29  *     SunJSSE does not support dynamic system properties, no way to

    30  *     re-use system properties in samevm/agentvm mode.

    31  * @run main/othervm NullGetAcceptedIssuers

    32  */

    33 

    34 import javax.net.ssl.*;

    35 

    36 public class NullGetAcceptedIssuers {

    37 

    38     public static void main(String[] args) throws Exception {

    39         SSLContext sslContext;

    40 

    41         // Create a trust manager that does not validate certificate chains

    42         TrustManager[] trustAllCerts =

    43             new TrustManager[] {new X509TrustManager() {

    44 

    45                 public void checkClientTrusted(

    46                         java.security.cert.X509Certificate[] certs,

    47                         String authType) {

    48                 }

    49 

    50                 public void checkServerTrusted(

    51                         java.security.cert.X509Certificate[] certs,

    52                         String authType) {

    53                 }

    54 

    55                 // API says empty array, but some custom TMs are

    56                 // returning null.

    57                 public java.security.cert.X509Certificate[]

    58                         getAcceptedIssuers() {

    59                     return null;

    60                 }

    61             }};

    62 

    63         sslContext = javax.net.ssl.SSLContext.getInstance("SSL");

    64         sslContext.init(null, trustAllCerts, null);

    65     }

    66 }