/* * Copyright (c) 2011, 2021, Oracle and/or its affiliates. All rights reserved. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * * This code is free software; you can redistribute it and/or modify it * under the terms of the GNU General Public License version 2 only, as * published by the Free Software Foundation. Oracle designates this * particular file as subject to the "Classpath" exception as provided * by Oracle in the LICENSE file that accompanied this code. * * This code is distributed in the hope that it will be useful, but WITHOUT * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License * version 2 for more details (a copy is included in the LICENSE file that * accompanied this code). * * You should have received a copy of the GNU General Public License version * 2 along with this work; if not, write to the Free Software Foundation, * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. * * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA * or visit www.oracle.com if you need additional information or have any * questions. */ package sun.security.krb5; import java.io.IOException; import java.util.Hashtable; import java.util.Iterator; import java.util.List; import java.util.Vector; public class SCDynamicStoreConfig { private static native void installNotificationCallback(); /** * Returns the dynamic store setting for kerberos in a string array. * (realm kdc* null) null (mapping-domain mapping-realm)* */ private static native List getKerberosConfig(); private static boolean DEBUG = sun.security.krb5.internal.Krb5.DEBUG; static { boolean isMac = java.security.AccessController.doPrivileged( new java.security.PrivilegedAction() { public Boolean run() { String osname = System.getProperty("os.name"); if (osname.contains("OS X")) { System.loadLibrary("osxkrb5"); return true; } return false; } }); if (isMac) installNotificationCallback(); } /** * Calls down to JNI to get the raw Kerberos Config and maps the object * graph to the one that Kerberos Config in Java expects * * @return * @throws IOException */ public static Hashtable getConfig() throws IOException { List list = getKerberosConfig(); if (list == null) { throw new IOException( "Could not load configuration from SCDynamicStore"); } if (DEBUG) System.out.println("Raw map from JNI: " + list); Hashtable v = new Hashtable<>(); Hashtable realms = new Hashtable<>(); Iterator iterator = list.iterator(); String defaultRealm = null; while (true) { String nextRealm = iterator.next(); if (nextRealm == null) { break; } if (defaultRealm == null) { defaultRealm = nextRealm; Hashtable dr = new Hashtable<>(); dr.put("default_realm", v1(defaultRealm)); v.put("libdefaults", dr); } Vector kdcs = new Vector<>(); while (true) { String nextKdc = iterator.next(); if (nextKdc == null) { break; } kdcs.add(nextKdc); } if (!kdcs.isEmpty()) { Hashtable ri = new Hashtable<>(); ri.put("kdc", kdcs); realms.put(nextRealm, ri); } } if (!realms.isEmpty()) { v.put("realms", realms); } Hashtable mapping = new Hashtable<>(); while (true) { if (!iterator.hasNext()) { break; } mapping.put(iterator.next(), v1(iterator.next())); } if (!mapping.isEmpty()) { v.put("domain_realm", mapping); } return v; } // Make a single value Vector. Config's stanzaTable always // use Vector as end values. private static Vector v1(String s) { Vector out = new Vector<>(); out.add(s); return out; } }