1 /*
2 * Copyright (c) 2009, Oracle and/or its affiliates. All rights reserved.
3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4 *
5 * This code is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License version 2 only, as
7 * published by the Free Software Foundation.
8 *
9 * This code is distributed in the hope that it will be useful, but WITHOUT
10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
11 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
12 * version 2 for more details (a copy is included in the LICENSE file that
13 * accompanied this code).
14 *
15 * You should have received a copy of the GNU General Public License version
16 * 2 along with this work; if not, write to the Free Software Foundation,
17 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
18 *
19 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
20 * or visit www.oracle.com if you need additional information or have any
21 * questions.
22 */
23
24 /*
25 * @test
26 * @bug 6877357 6885166
27 * @summary IPv6 address does not work
28 */
29
30 import com.sun.security.auth.module.Krb5LoginModule;
31 import java.io.*;
32 import java.util.HashMap;
33 import java.util.Map;
34 import java.util.regex.Matcher;
35 import java.util.regex.Pattern;
36 import javax.security.auth.Subject;
37
38 public class IPv6 {
39
40 public static void main(String[] args) throws Exception {
41
42 String[][] kdcs = {
43 {"simple.host", null}, // These are legal settings
44 {"simple.host", ""},
45 {"simple.host", "8080"},
46 {"0.0.0.1", null},
47 {"0.0.0.1", ""},
48 {"0.0.0.1", "8080"},
49 {"1::1", null},
50 {"[1::1]", null},
51 {"[1::1]", ""},
52 {"[1::1]", "8080"},
53 {"[1::1", null}, // Two illegal settings
54 {"[1::1]abc", null},
55 };
56 // Prepares a krb5.conf with every kind of KDC settings
57 PrintStream out = new PrintStream(new FileOutputStream("ipv6.conf"));
58 out.println("[libdefaults]");
59 out.println("default_realm = V6");
60 out.println("kdc_timeout = 1");
61 out.println("[realms]");
62 out.println("V6 = {");
63 for (String[] hp: kdcs) {
64 if (hp[1] != null) out.println(" kdc = "+hp[0]+":"+hp[1]);
65 else out.println(" kdc = " + hp[0]);
66 }
67 out.println("}");
68 out.close();
69
70 System.setProperty("sun.security.krb5.debug", "true");
71 System.setProperty("java.security.krb5.conf", "ipv6.conf");
72
73 ByteArrayOutputStream bo = new ByteArrayOutputStream();
74 PrintStream po = new PrintStream(bo);
75 PrintStream oldout = System.out;
76 System.setOut(po);
77
78 try {
79 Subject subject = new Subject();
80 Krb5LoginModule krb5 = new Krb5LoginModule();
81 Map<String, String> map = new HashMap<>();
82 Map<String, Object> shared = new HashMap<>();
83
84 map.put("debug", "true");
85 map.put("doNotPrompt", "true");
86 map.put("useTicketCache", "false");
87 map.put("useFirstPass", "true");
88 shared.put("javax.security.auth.login.name", "any");
89 shared.put("javax.security.auth.login.password", "any".toCharArray());
90 krb5.initialize(subject, null, shared, map);
91 krb5.login();
92 } catch (Exception e) {
93 // Ignore
94 }
95
96 po.flush();
97
98 System.setOut(oldout);
99 BufferedReader br = new BufferedReader(new StringReader(
100 new String(bo.toByteArray())));
101 int cc = 0;
102 Pattern r = Pattern.compile(".*KrbKdcReq send: kdc=(.*) UDP:(\\d+),.*");
103 String line;
104 while ((line = br.readLine()) != null) {
105 Matcher m = r.matcher(line.subSequence(0, line.length()));
106 if (m.matches()) {
107 System.out.println("------------------");
108 System.out.println(line);
109 String h = m.group(1), p = m.group(2);
110 String eh = kdcs[cc][0], ep = kdcs[cc][1];
111 if (eh.charAt(0) == '[') {
112 eh = eh.substring(1, eh.length()-1);
113 }
114 System.out.println("Expected: " + eh + " : " + ep);
115 System.out.println("Actual: " + h + " : " + p);
116 if (!eh.equals(h) ||
117 (ep == null || ep.length() == 0) && !p.equals("88") ||
118 (ep != null && ep.length() > 0) && !p.equals(ep)) {
119 throw new Exception("Mismatch");
120 }
121 cc++;
122 }
123 }
124 if (cc != kdcs.length - 2) { // 2 illegal settings at the end
125 throw new Exception("Not traversed");
126 }
127 }
128 }
129
130