1 /*
   2  * Copyright (c) 2013, Oracle and/or its affiliates. All rights reserved.
   3  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
   4  *
   5  * This code is free software; you can redistribute it and/or modify it
   6  * under the terms of the GNU General Public License version 2 only, as
   7  * published by the Free Software Foundation.
   8  *
   9  * This code is distributed in the hope that it will be useful, but WITHOUT
  10  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
  11  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
  12  * version 2 for more details (a copy is included in the LICENSE file that
  13  * accompanied this code).
  14  *
  15  * You should have received a copy of the GNU General Public License version
  16  * 2 along with this work; if not, write to the Free Software Foundation,
  17  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
  18  *
  19  * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
  20  * or visit www.oracle.com if you need additional information or have any
  21  * questions.
  22 */
  23 
  24 /*
  25  * @test
  26  * @bug 8001326
  27  * @run main/othervm ReplayCacheExpunge 16
  28  * @run main/othervm/fail ReplayCacheExpunge 15
  29  * @summary when number of expired entries minus number of good entries
  30  * is more than 30, expunge occurs, and expired entries are forgotten.
  31 */
  32 
  33 import java.util.Random;
  34 import sun.security.krb5.internal.KerberosTime;
  35 import sun.security.krb5.internal.ReplayCache;
  36 import sun.security.krb5.internal.rcache.AuthTimeWithHash;
  37 
  38 public class ReplayCacheExpunge {
  39     static final String client = "dummy@REALM";
  40     static final String server = "server/localhost@REALM";
  41     static final Random rand = new Random();
  42 
  43     public static void main(String[] args) throws Exception {
  44         // Make sure clockskew is default value
  45         System.setProperty("java.security.krb5.conf", "nothing");
  46 
  47         int count = Integer.parseInt(args[0]);
  48         ReplayCache cache = ReplayCache.getInstance("dfl:./");
  49         AuthTimeWithHash a1 =
  50                 new AuthTimeWithHash(client, server, time(-400), 0, hash("1"));
  51         AuthTimeWithHash a2 =
  52                 new AuthTimeWithHash(client, server, time(0), 0, hash("4"));
  53         KerberosTime now = new KerberosTime(time(0)*1000L);
  54         KerberosTime then = new KerberosTime(time(-300)*1000L);
  55 
  56         // Once upon a time, we added a lot of events
  57         for (int i=0; i<count; i++) {
  58             a1 = new AuthTimeWithHash(client, server, time(-400), 0, hash(""));
  59             cache.checkAndStore(then, a1);
  60         }
  61 
  62         // Now, we add a new one. If some conditions hold, the old ones
  63         // will be expunged.
  64         cache.checkAndStore(now, a2);
  65 
  66         // and adding an old one will not trigger any error
  67         cache.checkAndStore(now, a1);
  68     }
  69 
  70     private static String hash(String s) {
  71         char[] data = new char[16];
  72         for (int i=0; i<16; i++) {
  73             if (i < s.length()) data[i] = s.charAt(i);
  74             else data[i] = (char)('0' + rand.nextInt(10));
  75         }
  76         return new String(data);
  77     }
  78 
  79     private static int time(int x) {
  80         return (int)(System.currentTimeMillis()/1000) + x;
  81     }
  82 }