1 /* 2 * Copyright (c) 2013, 2020, Oracle and/or its affiliates. All rights reserved. 3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 4 * 5 * This code is free software; you can redistribute it and/or modify it 6 * under the terms of the GNU General Public License version 2 only, as 7 * published by the Free Software Foundation. 8 * 9 * This code is distributed in the hope that it will be useful, but WITHOUT 10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 11 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 12 * version 2 for more details (a copy is included in the LICENSE file that 13 * accompanied this code). 14 * 15 * You should have received a copy of the GNU General Public License version 16 * 2 along with this work; if not, write to the Free Software Foundation, 17 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 18 * 19 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 20 * or visit www.oracle.com if you need additional information or have any 21 * questions. 22 */ 23 24 import jdk.test.lib.process.OutputAnalyzer; 25 import jdk.test.lib.process.ProcessTools; 26 import jdk.test.lib.Platform; 27 28 import java.io.BufferedWriter; 29 import java.io.IOException; 30 import java.nio.charset.Charset; 31 import java.nio.file.FileSystem; 32 import java.nio.file.FileSystems; 33 import java.nio.file.Files; 34 import java.nio.file.Path; 35 import java.nio.file.attribute.PosixFilePermission; 36 import java.util.ArrayList; 37 import java.util.Arrays; 38 import java.util.Collections; 39 import java.util.HashSet; 40 import java.util.List; 41 import java.util.Set; 42 43 /** 44 * Change file permission for out-of-the-box management an do test used by 45 * PasswordFilePermissionTest and SSLConfigFilePermissionTest tests 46 * 47 * @author Taras Ledkov 48 */ 49 public abstract class AbstractFilePermissionTest { 50 private final String TEST_CLASS_PATH = System.getProperty("test.class.path"); 51 protected final String TEST_CLASSES = System.getProperty("test.classes"); 52 protected final FileSystem FS = FileSystems.getDefault(); 53 private int MAX_GET_FREE_PORT_TRIES = 10; 54 55 protected final Path libDir = FS.getPath(TEST_CLASSES, "lib"); 56 protected final Path mgmt = libDir.resolve("management.properties"); 57 private final String mp = "-Dcom.sun.management.config.file=" + mgmt.toFile().getAbsolutePath(); 58 private final String className = "Dummy"; 59 private int failures = 0; 60 61 protected final Path file2PermissionTest; 62 63 protected AbstractFilePermissionTest(String fileName2PermissionTest) { 64 this.file2PermissionTest = libDir.resolve(fileName2PermissionTest); 65 66 try { 67 MAX_GET_FREE_PORT_TRIES = Integer.parseInt(System.getProperty("test.getfreeport.max.tries", "10")); 68 } catch (NumberFormatException ex) { 69 ex.printStackTrace(); 70 } 71 } 72 73 74 public static void createFile(Path path, String... content) throws IOException { 75 if (Files.exists(path) && Files.isRegularFile(path)) { 76 try { 77 Files.delete(path); 78 } catch (Exception ex) { 79 System.out.println("WARNING: " + path.toFile().getAbsolutePath() + " already exists - unable to remove old copy"); 80 ex.printStackTrace(); 81 } 82 } 83 84 try (BufferedWriter bw = Files.newBufferedWriter(path, Charset.defaultCharset())) { 85 for (String str : content) { 86 bw.write(str, 0, str.length()); 87 bw.newLine(); 88 } 89 } 90 } 91 92 public boolean skipTest() { 93 if ((TEST_CLASSES == null) || ("".equals(TEST_CLASSES))) { 94 System.out.println("Test is designed to be run from jtreg only"); 95 return true; 96 } 97 98 if (!Platform.isLinux() && !Platform.isSolaris()) { 99 System.out.println("Test not designed to run on this operating system, skipping..."); 100 return true; 101 } 102 return false; 103 } 104 105 protected abstract void testSetup() throws IOException; 106 107 public void runTest(String[] args) throws Exception { 108 109 if (skipTest()) { 110 return; 111 } 112 113 Files.deleteIfExists(mgmt); 114 Files.deleteIfExists(file2PermissionTest); 115 libDir.toFile().mkdir(); 116 117 testSetup(); 118 119 try { 120 test1(); 121 test2(); 122 123 if (failures == 0) { 124 System.out.println("All test(s) passed"); 125 } else { 126 throw new Error(String.format("%d test(s) failed", failures)); 127 } 128 } finally { 129 resetPasswordFilePermission(); 130 } 131 } 132 133 /** 134 * Test 1 - SSL config file is secure - VM should start 135 */ 136 private void test1() throws Exception { 137 final Set<PosixFilePermission> perms_0700 = new HashSet<>(); 138 perms_0700.add(PosixFilePermission.OWNER_WRITE); 139 perms_0700.add(PosixFilePermission.OWNER_READ); 140 perms_0700.add(PosixFilePermission.OWNER_EXECUTE); 141 Files.setPosixFilePermissions(file2PermissionTest, perms_0700); 142 143 if (doTest() != 0) { 144 ++failures; 145 } 146 } 147 148 /** 149 * Test 1 - SSL config file is secure - VM should start 150 */ 151 private void test2() throws Exception { 152 final Set<PosixFilePermission> perms = Files.getPosixFilePermissions(file2PermissionTest); 153 perms.add(PosixFilePermission.OTHERS_READ); 154 perms.add(PosixFilePermission.OTHERS_EXECUTE); 155 Files.setPosixFilePermissions(file2PermissionTest, perms); 156 157 if (doTest() == 0) { 158 ++failures; 159 } 160 } 161 162 private int doTest() throws Exception { 163 164 for (int i = 0; i < MAX_GET_FREE_PORT_TRIES; ++i) { 165 final String pp = "-Dcom.sun.management.jmxremote.port=" + jdk.test.lib.Utils.getFreePort(); 166 167 List<String> command = new ArrayList<>(); 168 Collections.addAll(command, jdk.test.lib.Utils.getTestJavaOpts()); 169 command.add(mp); 170 command.add(pp); 171 command.add("-cp"); 172 command.add(TEST_CLASSES); 173 command.add(className); 174 175 176 ProcessBuilder processBuilder = ProcessTools.createJavaProcessBuilder( 177 command.toArray(new String[command.size()])); 178 179 System.out.println("test cmdline: " + Arrays.toString(processBuilder.command().toArray()).replace(",", "")); 180 OutputAnalyzer output = ProcessTools.executeProcess(processBuilder); 181 182 System.out.println("test output:"); 183 System.out.println(output.getOutput()); 184 185 if ((output.getExitValue() == 0) || 186 !output.getOutput().contains("Exception thrown by the agent : " + 187 "java.rmi.server.ExportException: Port already in use")) { 188 return output.getExitValue(); 189 } 190 } 191 192 return -1; 193 } 194 195 private void resetPasswordFilePermission() throws Exception { 196 final Set<PosixFilePermission> perms_0777 = new HashSet<>(); 197 Arrays.asList(PosixFilePermission.values()).stream().forEach(p -> { 198 perms_0777.add(p); 199 }); 200 Files.setPosixFilePermissions(file2PermissionTest, perms_0777); 201 } 202 }