tests/gss/check-basic.in

178825Sdfr#!/bin/sh
178825Sdfr#
178825Sdfr# Copyright (c) 2007 Kungliga Tekniska H�gskolan
178825Sdfr# (Royal Institute of Technology, Stockholm, Sweden).
178825Sdfr# All rights reserved.
178825Sdfr#
178825Sdfr# Redistribution and use in source and binary forms, with or without
178825Sdfr# modification, are permitted provided that the following conditions
178825Sdfr# are met:
178825Sdfr#
178825Sdfr# 1. Redistributions of source code must retain the above copyright
178825Sdfr#    notice, this list of conditions and the following disclaimer.
178825Sdfr#
178825Sdfr# 2. Redistributions in binary form must reproduce the above copyright
178825Sdfr#    notice, this list of conditions and the following disclaimer in the
178825Sdfr#    documentation and/or other materials provided with the distribution.
178825Sdfr#
178825Sdfr# 3. Neither the name of the Institute nor the names of its contributors
178825Sdfr#    may be used to endorse or promote products derived from this software
178825Sdfr#    without specific prior written permission.
178825Sdfr#
178825Sdfr# THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
178825Sdfr# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
178825Sdfr# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
178825Sdfr# ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
178825Sdfr# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
178825Sdfr# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
178825Sdfr# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
178825Sdfr# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
178825Sdfr# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
178825Sdfr# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
178825Sdfr# SUCH DAMAGE.
178825Sdfr#
178825Sdfr# $Id$
178825Sdfr#
178825Sdfr
178825Sdfrsrcdir="@srcdir@"
178825Sdfrobjdir="@objdir@"
178825Sdfr
178825Sdfr# If there is no useful db support compile in, disable test
178825Sdfr../db/have-db || exit 77
178825Sdfr
178825SdfrR=TEST.H5L.SE
178825Sdfr
178825Sdfrport=@port@
178825Sdfr
178825Sdfrkeytabfile=${objdir}/server.keytab
178825Sdfrkeytab="FILE:${keytabfile}"
178825Sdfrnokeytab="FILE:no-such-keytab"
178825Sdfrcache="FILE:krb5ccfile"
178825Sdfrnocache="FILE:no-such-cache"
178825Sdfr
178825Sdfrkinit="${TESTS_ENVIRONMENT} ../../kuser/kinit -c $cache --no-afslog"
178825Sdfrkadmin="${TESTS_ENVIRONMENT} ../../kadmin/kadmin -l -r $R"
178825Sdfrkdc="${TESTS_ENVIRONMENT} ../../kdc/kdc --addresses=localhost -P $port"
178825Sdfr
178825Sdfracquire_cred="${TESTS_ENVIRONMENT} ../../lib/gssapi/test_acquire_cred"
178825Sdfrtest_kcred="${TESTS_ENVIRONMENT} ../../lib/gssapi/test_kcred"
178825Sdfr
178825SdfrKRB5_CONFIG="${objdir}/krb5.conf"
178825Sdfrexport KRB5_CONFIG
178825Sdfr
178825SdfrKRB5_KTNAME="${keytab}"
178825Sdfrexport KRB5_KTNAME
178825SdfrKRB5CCNAME="${cache}"
178825Sdfrexport KRB5CCNAME
178825Sdfr
178825Sdfrrm -f ${keytabfile}
178825Sdfrrm -f current-db*
178825Sdfrrm -f out-*
178825Sdfrrm -f mkey.file*
178825Sdfr
178825Sdfr> messages.log
178825Sdfr
178825Sdfrecho Creating database
178825Sdfr${kadmin} \
178825Sdfr    init \
178825Sdfr    --realm-max-ticket-life=1day \
178825Sdfr    --realm-max-renewable-life=1month \
178825Sdfr    ${R} || exit 1
178825Sdfr
178825Sdfrecho upw > ${objdir}/foopassword
178825Sdfr
178825Sdfr${kadmin} add -p upw --use-defaults user@${R} || exit 1
178825Sdfr${kadmin} add -p upw --use-defaults another@${R} || exit 1
178825Sdfr${kadmin} add -p p1 --use-defaults host/host.test.h5l.se@${R} || exit 1
178825Sdfr${kadmin} ext -k ${keytab} host/host.test.h5l.se@${R} || exit 1
178825Sdfr
178825Sdfrecho "Doing database check"
178825Sdfr${kadmin} check ${R} || exit 1
178825Sdfr
178825Sdfrecho Starting kdc
178825Sdfr${kdc} &
178825Sdfrkdcpid=$!
178825Sdfr
178825Sdfrsh ${srcdir}/../kdc/wait-kdc.sh
178825Sdfrif [ "$?" != 0 ] ; then
178825Sdfr    kill ${kdcpid}
178825Sdfr    exit 1
178825Sdfrfi
178825Sdfr
178825Sdfrtrap "kill ${kdcpid}; echo signal killing kdc; exit 1;" EXIT
178825Sdfr
178825Sdfrexitcode=0
178825Sdfr
178825Sdfrecho "initial ticket"
178825Sdfr${kinit} --password-file=${objdir}/foopassword user@${R} || exitcode=1
178825Sdfr
178825Sdfrecho "keytab"
178825Sdfr${acquire_cred} \
178825Sdfr    --acquire-type=accept \
178825Sdfr    --acquire-name=host@host.test.h5l.se || exit 1
178825Sdfrecho "keytab w/o name"
178825Sdfr${acquire_cred} \
178825Sdfr    --acquire-type=accept || exit 1
178825Sdfrecho "keytab w/ wrong name"
178825Sdfr${acquire_cred} \
178825Sdfr    --acquire-type=accept \
178825Sdfr    --acquire-name=host@host2.test.h5l.se 2>/dev/null && exit 1
178825Sdfrecho "init using keytab"
178825Sdfr${acquire_cred} \
178825Sdfr    --acquire-type=initiate \
178825Sdfr    --acquire-name=host@host.test.h5l.se || exit 1
178825Sdfrecho "init using existing cc"
178825Sdfr${acquire_cred} \
178825Sdfr    --name-type=user-name \
178825Sdfr    --acquire-type=initiate \
178825Sdfr    --acquire-name=user || exit 1
178825Sdfr
178825SdfrKRB5CCNAME=${nocache}
178825Sdfr
178825Sdfrecho "fail init using existing cc"
178825Sdfr${acquire_cred} \
178825Sdfr    --name-type=user-name \
178825Sdfr    --acquire-type=initiate \
178825Sdfr    --acquire-name=user 2>/dev/null && exit 1
178825Sdfr
178825Sdfrecho "use gss_krb5_ccache_name"
178825Sdfr${acquire_cred} \
178825Sdfr    --name-type=user-name \
178825Sdfr    --ccache=${cache} \
178825Sdfr    --acquire-type=initiate \
178825Sdfr    --acquire-name=user >/dev/null || exit 1
178825Sdfr
178825SdfrKRB5CCNAME=${cache}
178825SdfrKRB5_KTNAME=${nokeytab}
178825Sdfr
178825Sdfrecho "kcred"
178825Sdfr${test_kcred} || exit 1
178825Sdfr
178825Sdfrtrap "" EXIT
178825Sdfr
178825Sdfrecho "killing kdc (${kdcpid})"
178825Sdfrkill ${kdcpid} 2> /dev/null
178825Sdfr
178825Sdfrexit $exitcode