1 /* 2 * Copyright (c) 2009, Oracle and/or its affiliates. All rights reserved. 3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 4 * 5 * This code is free software; you can redistribute it and/or modify it 6 * under the terms of the GNU General Public License version 2 only, as 7 * published by the Free Software Foundation. 8 * 9 * This code is distributed in the hope that it will be useful, but WITHOUT 10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 11 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 12 * version 2 for more details (a copy is included in the LICENSE file that 13 * accompanied this code). 14 * 15 * You should have received a copy of the GNU General Public License version 16 * 2 along with this work; if not, write to the Free Software Foundation, 17 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 18 * 19 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 20 * or visit www.oracle.com if you need additional information or have any 21 * questions. 22 */ 23 24 /* 25 * @test 26 * @bug 6877357 6885166 27 * @summary IPv6 address does not work 28 */ 29 30 import com.sun.security.auth.module.Krb5LoginModule; 31 import java.io.*; 32 import java.util.HashMap; 33 import java.util.Map; 34 import java.util.regex.Matcher; 35 import java.util.regex.Pattern; 36 import javax.security.auth.Subject; 37 38 public class IPv6 { 39 40 public static void main(String[] args) throws Exception { 41 42 String[][] kdcs = { 43 {"simple.host", null}, // These are legal settings 44 {"simple.host", ""}, 45 {"simple.host", "8080"}, 46 {"0.0.0.1", null}, 47 {"0.0.0.1", ""}, 48 {"0.0.0.1", "8080"}, 49 {"1::1", null}, 50 {"[1::1]", null}, 51 {"[1::1]", ""}, 52 {"[1::1]", "8080"}, 53 {"[1::1", null}, // Two illegal settings 54 {"[1::1]abc", null}, 55 }; 56 // Prepares a krb5.conf with every kind of KDC settings 57 PrintStream out = new PrintStream(new FileOutputStream("ipv6.conf")); 58 out.println("[libdefaults]"); 59 out.println("default_realm = V6"); 60 out.println("kdc_timeout = 1"); 61 out.println("[realms]"); 62 out.println("V6 = {"); 63 for (String[] hp: kdcs) { 64 if (hp[1] != null) out.println(" kdc = "+hp[0]+":"+hp[1]); 65 else out.println(" kdc = " + hp[0]); 66 } 67 out.println("}"); 68 out.close(); 69 70 System.setProperty("sun.security.krb5.debug", "true"); 71 System.setProperty("java.security.krb5.conf", "ipv6.conf"); 72 73 ByteArrayOutputStream bo = new ByteArrayOutputStream(); 74 PrintStream po = new PrintStream(bo); 75 PrintStream oldout = System.out; 76 System.setOut(po); 77 78 try { 79 Subject subject = new Subject(); 80 Krb5LoginModule krb5 = new Krb5LoginModule(); 81 Map<String, String> map = new HashMap<>(); 82 Map<String, Object> shared = new HashMap<>(); 83 84 map.put("debug", "true"); 85 map.put("doNotPrompt", "true"); 86 map.put("useTicketCache", "false"); 87 map.put("useFirstPass", "true"); 88 shared.put("javax.security.auth.login.name", "any"); 89 shared.put("javax.security.auth.login.password", "any".toCharArray()); 90 krb5.initialize(subject, null, shared, map); 91 krb5.login(); 92 } catch (Exception e) { 93 // Ignore 94 } 95 96 po.flush(); 97 98 System.setOut(oldout); 99 BufferedReader br = new BufferedReader(new StringReader( 100 new String(bo.toByteArray()))); 101 int cc = 0; 102 Pattern r = Pattern.compile(".*KrbKdcReq send: kdc=(.*) UDP:(\\d+),.*"); 103 String line; 104 while ((line = br.readLine()) != null) { 105 Matcher m = r.matcher(line.subSequence(0, line.length())); 106 if (m.matches()) { 107 System.out.println("------------------"); 108 System.out.println(line); 109 String h = m.group(1), p = m.group(2); 110 String eh = kdcs[cc][0], ep = kdcs[cc][1]; 111 if (eh.charAt(0) == '[') { 112 eh = eh.substring(1, eh.length()-1); 113 } 114 System.out.println("Expected: " + eh + " : " + ep); 115 System.out.println("Actual: " + h + " : " + p); 116 if (!eh.equals(h) || 117 (ep == null || ep.length() == 0) && !p.equals("88") || 118 (ep != null && ep.length() > 0) && !p.equals(ep)) { 119 throw new Exception("Mismatch"); 120 } 121 cc++; 122 } 123 } 124 if (cc != kdcs.length - 2) { // 2 illegal settings at the end 125 throw new Exception("Not traversed"); 126 } 127 } 128 } 129 130