/*
* Copyright (c) 2021, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
* under the terms of the GNU General Public License version 2 only, as
* published by the Free Software Foundation.
*
* This code is distributed in the hope that it will be useful, but WITHOUT
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
* version 2 for more details (a copy is included in the LICENSE file that
* accompanied this code).
*
* You should have received a copy of the GNU General Public License version
* 2 along with this work; if not, write to the Free Software Foundation,
* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
*
* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
* or visit www.oracle.com if you need additional information or have any
* questions.
*/
/*
* @test
* @bug 8257860
* @summary SCDynamicStoreConfig works
* @modules java.security.jgss/sun.security.krb5
* @library /test/lib
* @run main/manual/native TestDynamicStore
* @requires (os.family == "mac")
*/
import jdk.test.lib.Asserts;
import sun.security.krb5.Config;
// =================== Attention ===================
// This test calls a native method implemented in libTestDynamicStore.m
// to modify system-level Kerberos 5 settings stored in the dynamic store.
// It must be launched by a user with enough privilege or with "sudo".
// If launched with sudo, remember to remove the report and working
// directories with sudo as well after executing the test.
public class TestDynamicStore {
native static int actionInternal(char what, char whom);
// what: 'a' for add, 'r' for remove
// whom: 'a' for all, 'r' for realm, 'm' for mapping
static int action(char what, char whom) throws Exception {
int out = actionInternal(what, whom);
System.out.println("Run " + what + whom + " " + out);
Thread.sleep(1000); // wait for callback called
return out;
}
public static void main(String[] args) throws Exception {
System.loadLibrary("TestDynamicStore");
Config cfg = Config.getInstance();
if (cfg.exists("libdefaults") || cfg.exists("realms")) {
System.out.println("Already have krb5 config. Will not touch");
return;
}
try {
System.out.println("Fill in dynamic store");
if (action('a', 'a') == 0) {
throw new Exception("Cannot write native Kerberos settings. " +
"Please make sure the test runs with enough privilege.");
}
Asserts.assertTrue(Config.getInstance().get("libdefaults", "default_realm").equals("A.COM"));
Asserts.assertTrue(Config.getInstance().exists("domain_realm"));
System.out.println("Remove mapping");
action('r', 'm');
Asserts.assertTrue(!Config.getInstance().exists("domain_realm"));
System.out.println("Re-add mapping");
action('a', 'm');
Asserts.assertTrue(Config.getInstance().exists("domain_realm"));
System.out.println("Remove realm info");
action('r', 'r');
// Realm info is not watched, so no change detected
Asserts.assertTrue(Config.getInstance().get("libdefaults", "default_realm").equals("A.COM"));
System.out.println("Remove mapping");
action('r', 'm');
// But mapping is watched, so realm info is not re-read
Asserts.assertTrue(Config.getInstance().get("libdefaults", "default_realm").equals("B.COM"));
} finally {
System.out.println("Remove everything");
action('r', 'a');
Asserts.assertTrue(!Config.getInstance().exists("libdefault"));
}
}
}