0f6c52abb1
Reviewed-by: mullan
98 lines
3.0 KiB
Bash
98 lines
3.0 KiB
Bash
#
|
|
# Copyright (c) 2014, Oracle and/or its affiliates. All rights reserved.
|
|
# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
|
|
#
|
|
# This code is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU General Public License version 2 only, as
|
|
# published by the Free Software Foundation.
|
|
#
|
|
# This code is distributed in the hope that it will be useful, but WITHOUT
|
|
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
|
# FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
|
|
# version 2 for more details (a copy is included in the LICENSE file that
|
|
# accompanied this code).
|
|
#
|
|
# You should have received a copy of the GNU General Public License version
|
|
# 2 along with this work; if not, write to the Free Software Foundation,
|
|
# Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
#
|
|
# Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
|
|
# or visit www.oracle.com if you need additional information or have any
|
|
# questions.
|
|
#
|
|
|
|
# @test
|
|
# @bug 8023197
|
|
# @summary Pre-configured command line options for keytool and jarsigner
|
|
#
|
|
|
|
if [ "${TESTJAVA}" = "" ] ; then
|
|
JAVAC_CMD=`which javac`
|
|
TESTJAVA=`dirname $JAVAC_CMD`/..
|
|
fi
|
|
|
|
KS=ks
|
|
KEYTOOL="$TESTJAVA/bin/keytool ${TESTTOOLVMOPTS}"
|
|
|
|
rm $KS 2> /dev/null
|
|
|
|
PASS=changeit
|
|
export PASS
|
|
|
|
cat <<EOF > kt.conf
|
|
# A Pre-configured options file
|
|
keytool.all = -storepass:env PASS -keypass:env PASS -keystore \${user.dir}/$KS -debug
|
|
keytool.genkey = -keyalg ec -ext bc
|
|
keytool.delete = -keystore nothing
|
|
EOF
|
|
|
|
# kt.conf is read
|
|
$KEYTOOL -conf kt.conf -genkeypair -dname CN=A -alias a || exit 1
|
|
$KEYTOOL -conf kt.conf -list -alias a -v > a_certinfo || exit 2
|
|
grep "Signature algorithm name" a_certinfo | grep ECDSA || exit 3
|
|
grep "BasicConstraints" a_certinfo || exit 4
|
|
|
|
# kt.conf is read, and dup multi-valued options processed as expected
|
|
$KEYTOOL -conf kt.conf -genkeypair -dname CN=B -alias b -ext ku=ds \
|
|
|| exit 11
|
|
$KEYTOOL -conf kt.conf -list -alias b -v > b_certinfo || exit 12
|
|
grep "BasicConstraints" b_certinfo || exit 14
|
|
grep "DigitalSignature" b_certinfo || exit 15
|
|
|
|
# Single-valued option in command section override all
|
|
$KEYTOOL -conf kt.conf -delete -alias a && exit 16
|
|
|
|
# Single-valued option on command line overrides again
|
|
$KEYTOOL -conf kt.conf -delete -alias b -keystore $KS || exit 17
|
|
|
|
# Error cases
|
|
|
|
# File does not exist
|
|
$KEYTOOL -conf no-such-file -help -list && exit 31
|
|
|
|
# Cannot have both standard name (-genkeypair) and legacy name (-genkey)
|
|
cat <<EOF > bad.conf
|
|
keytool.all = -storepass:env PASS -keypass:env PASS -keystore ks
|
|
keytool.genkeypair = -keyalg rsa
|
|
keytool.genkey = -keyalg ec
|
|
EOF
|
|
|
|
$KEYTOOL -conf bad.conf -genkeypair -alias me -dname "cn=me" && exit 32
|
|
|
|
# Unknown options are rejected by tool
|
|
cat <<EOF > bad.conf
|
|
keytool.all=-unknown
|
|
EOF
|
|
|
|
$KEYTOOL -conf bad.conf -help -list && exit 33
|
|
|
|
# System property must be present
|
|
cat <<EOF > bad.conf
|
|
keytool.all = -keystore \${no.such.prop}
|
|
EOF
|
|
|
|
$KEYTOOL -conf bad.conf -help -list && exit 34
|
|
|
|
echo Done
|
|
exit 0
|