1/*
2 * Copyright (c) 2014, 2017, Oracle and/or its affiliates. All rights reserved.
3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4 *
5 * This code is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License version 2 only, as
7 * published by the Free Software Foundation.
8 *
9 * This code is distributed in the hope that it will be useful, but WITHOUT
10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
11 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
12 * version 2 for more details (a copy is included in the LICENSE file that
13 * accompanied this code).
14 *
15 * You should have received a copy of the GNU General Public License version
16 * 2 along with this work; if not, write to the Free Software Foundation,
17 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
18 *
19 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
20 * or visit www.oracle.com if you need additional information or have any
21 * questions.
22 */
23
24/*
25 * @test
26 * @bug 6997010 7191662
27 * @summary Consolidate java.security files into one file with modifications
28 * @run main/othervm CheckSecurityProvider
29 */
30
31import java.security.Provider;
32import java.security.Security;
33import java.util.ArrayList;
34import java.util.Iterator;
35import java.util.List;
36import java.util.stream.Collectors;
37import java.util.stream.Stream;
38
39/*
40 * The main benefit of this test is to catch merge errors or other types
41 * of issues where one or more of the security providers are accidentally
42 * removed. With the security manager enabled, this test can also catch
43 * scenarios where the default permission policy needs to be updated.
44 */
45public class CheckSecurityProvider {
46    public static void main(String[] args) throws Exception {
47        ModuleLayer layer = ModuleLayer.boot();
48
49        System.setSecurityManager(new SecurityManager());
50
51        String os = System.getProperty("os.name");
52        /*
53         * This array should be updated whenever new security providers
54         * are added to the the java.security file.
55         * NOTE: it should be in the same order as the java.security file
56         */
57
58        List<String> expected = new ArrayList<>();
59
60        // NOTE: the ordering must match what's defined inside java.security
61        if (os.equals("SunOS")) {
62            layer.findModule("jdk.crypto.ucrypto")
63                .ifPresent(m -> expected.add("com.oracle.security.ucrypto.UcryptoProvider"));
64            layer.findModule("jdk.crypto.cryptoki")
65                .ifPresent(m -> expected.add("sun.security.pkcs11.SunPKCS11"));
66        }
67        expected.add("sun.security.provider.Sun");
68        expected.add("sun.security.rsa.SunRsaSign");
69        layer.findModule("jdk.crypto.ec")
70            .ifPresent(m -> expected.add("sun.security.ec.SunEC"));
71        expected.add("com.sun.net.ssl.internal.ssl.Provider");
72        expected.add("com.sun.crypto.provider.SunJCE");
73        layer.findModule("jdk.security.jgss")
74            .ifPresent(m -> expected.add("sun.security.jgss.SunProvider"));
75        layer.findModule("java.security.sasl")
76            .ifPresent(m -> expected.add("com.sun.security.sasl.Provider"));
77        layer.findModule("java.xml.crypto")
78            .ifPresent(m -> expected.add("org.jcp.xml.dsig.internal.dom.XMLDSigRI"));
79        layer.findModule("java.smartcardio")
80            .ifPresent(m -> expected.add("sun.security.smartcardio.SunPCSC"));
81        layer.findModule("java.naming")
82            .ifPresent(m -> expected.add("sun.security.provider.certpath.ldap.JdkLDAP"));
83        layer.findModule("jdk.security.jgss")
84            .ifPresent(m -> expected.add("com.sun.security.sasl.gsskerb.JdkSASL"));
85        if (os.startsWith("Windows")) {
86            layer.findModule("jdk.crypto.mscapi")
87                .ifPresent(m -> expected.add("sun.security.mscapi.SunMSCAPI"));
88        }
89        if (os.contains("OS X")) {
90            expected.add("apple.security.AppleProvider");
91        }
92        if (!os.equals("SunOS")) {
93            layer.findModule("jdk.crypto.cryptoki")
94                .ifPresent(m -> expected.add("sun.security.pkcs11.SunPKCS11"));
95        }
96
97        List<String> actual = Stream.of(Security.getProviders())
98            .map(p -> p.getClass().getName())
99            .collect(Collectors.toList());
100
101        System.out.println("Expected providers:");
102        expected.stream().forEach(System.out::println);
103        System.out.println("Actual providers:");
104        actual.stream().forEach(System.out::println);
105
106        if (expected.size() != actual.size()) {
107            throw new Exception("Unexpected provider count. "
108                + "Expected: " + expected.size() + ". Actual: " + actual.size());
109        }
110        Iterator<String> iter = expected.iterator();
111        for (String p: actual) {
112            String nextExpected = iter.next();
113            if (!nextExpected.equals(p)) {
114                throw new Exception("Expected " + nextExpected + ", actual " + p);
115            }
116        }
117    }
118}
119