enhance test

wangweij · May 20, 2024 · 1263ae1 · 1263ae1
1 parent f6ad0a8
commit 1263ae1
Showing 1 changed file with 45 additions and 6 deletions.
diff --git a/test/jdk/sun/security/krb5/auto/CaseSensitive.java b/test/jdk/sun/security/krb5/auto/CaseSensitive.java
@@ -28,25 +28,46 @@
  * @library /test/lib
  * @compile -XDignore.symbol.file CaseSensitive.java
  * @run main jdk.test.lib.FileInstaller TestHosts TestHosts
+ * @run main/othervm -Djdk.net.hosts.file=TestHosts CaseSensitive no
  * @run main/othervm -Djdk.net.hosts.file=TestHosts
- *      -Djdk.security.krb5.name.case.sensitive=true CaseSensitive
+ *      -Djdk.security.krb5.name.case.sensitive=true CaseSensitive yes
  */
 
 import jdk.test.lib.Asserts;
+import org.ietf.jgss.GSSException;
 import sun.security.jgss.GSSUtil;
 
 public class CaseSensitive {
 
     public static void main(String[] args) throws Exception {
+        switch (args[0]) {
+            case "yes" -> testSensitive();
+            case "no" -> testInsensitive();
+        }
+    }
 
+    static void testSensitive() throws Exception {
         var kdc = new OneKDC(null).writeJAASConf();
-        kdc.addPrincipal("HELLO", "different".toCharArray());
         kdc.addPrincipal("hello", "password".toCharArray());
         kdc.writeKtab(OneKDC.KTAB);
 
-        Context c, s;
-        c = Context.fromJAAS("client");
-        s = Context.fromJAAS("com.sun.security.jgss.krb5.accept");
+        Context c = Context.fromJAAS("client");
+        Context s = Context.fromJAAS("com.sun.security.jgss.krb5.accept");
+
+        // There is only "hello". Cannot talk to "HELLO"
+        c.startAsClient("HELLO", GSSUtil.GSS_KRB5_MECH_OID);
+        s.startAsServer(GSSUtil.GSS_KRB5_MECH_OID);
+        try {
+            Context.handshake(c, s);
+            throw new RuntimeException("Should not succeed");
+        } catch(GSSException ge) {
+            System.out.println(ge.getMessage());
+            System.out.println("No HELLO in db. Expected");
+        }
+
+        // Add "HELLO". Can talk to "HELLO" now.
+        kdc.addPrincipal("HELLO", "different".toCharArray());
+        kdc.writeKtab(OneKDC.KTAB);
 
         c.startAsClient("HELLO", GSSUtil.GSS_KRB5_MECH_OID);
         s.startAsServer(GSSUtil.GSS_KRB5_MECH_OID);
@@ -57,13 +78,31 @@ public static void main(String[] args) throws Exception {
         Asserts.assertTrue(s.x().getTargName().toString().startsWith("HELLO"),
                 s.x().getTargName().toString());
 
+        // Can also talk to "hello", which has a different password.
         c.startAsClient("hello", GSSUtil.GSS_KRB5_MECH_OID);
         s.startAsServer(GSSUtil.GSS_KRB5_MECH_OID);
         Context.handshake(c, s);
-        // Name could be partial without realm, so only compare the beginning
         Asserts.assertTrue(c.x().getTargName().toString().startsWith("hello"),
                 c.x().getTargName().toString());
         Asserts.assertTrue(s.x().getTargName().toString().startsWith("hello"),
                 s.x().getTargName().toString());
     }
+
+    static void testInsensitive() throws Exception {
+        var kdc = new OneKDC(null).writeJAASConf();
+        kdc.addPrincipal("hello", "password".toCharArray());
+        kdc.writeKtab(OneKDC.KTAB);
+
+        Context c = Context.fromJAAS("client");
+        Context s = Context.fromJAAS("com.sun.security.jgss.krb5.accept");
+
+        // There is only "hello" but we can talk to "HELLO".
+        c.startAsClient("HELLO", GSSUtil.GSS_KRB5_MECH_OID);
+        s.startAsServer(GSSUtil.GSS_KRB5_MECH_OID);
+        Context.handshake(c, s);
+        Asserts.assertTrue(c.x().getTargName().toString().startsWith("HELLO"),
+                c.x().getTargName().toString());
+        Asserts.assertTrue(s.x().getTargName().toString().startsWith("HELLO"),
+                s.x().getTargName().toString());
+    }
 }