1 /*
2  * Copyright (c) 2012, 2018, Oracle and/or its affiliates. All rights reserved.
3  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4  *
5  * This code is free software; you can redistribute it and/or modify it
6  * under the terms of the GNU General Public License version 2 only, as
7  * published by the Free Software Foundation.
8  *
9  * This code is distributed in the hope that it will be useful, but WITHOUT
10  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
11  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
12  * version 2 for more details (a copy is included in the LICENSE file that
13  * accompanied this code).
14  *
15  * You should have received a copy of the GNU General Public License version
16  * 2 along with this work; if not, write to the Free Software Foundation,
17  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
18  *
19  * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
20  * or visit www.oracle.com if you need additional information or have any
21  * questions.
22  */
23 
24 /*
25  * @test
26  * @bug 8004488 8194486
27  * @summary wrong permissions checked in krb5
28  * @library /test/lib
29  * @compile -XDignore.symbol.file KeyPermissions.java
30  * @run main jdk.test.lib.FileInstaller TestHosts TestHosts
31  * @run main/othervm -Djdk.net.hosts.file=TestHosts KeyPermissions
32  */
33 
34 import java.security.AccessControlException;
35 import java.security.Permission;
36 import javax.security.auth.PrivateCredentialPermission;
37 import sun.security.jgss.GSSUtil;
38 
39 public class KeyPermissions extends SecurityManager {
40 
41     @Override
checkPermission(Permission perm)42     public void checkPermission(Permission perm) {
43         if (perm instanceof PrivateCredentialPermission) {
44             if (!perm.getName().startsWith("javax.security.auth.kerberos.")) {
45                 throw new AccessControlException(
46                         "I don't like this", perm);
47             }
48         }
49     }
50 
main(String[] args)51     public static void main(String[] args) throws Exception {
52         System.setSecurityManager(new KeyPermissions());
53         new OneKDC(null).writeJAASConf();
54         Context s = Context.fromJAAS("server");
55         s.startAsServer(GSSUtil.GSS_KRB5_MECH_OID);
56     }
57 }
58 
59