/* * Copyright ( c ) 2010 , 2020 , Oracle and / or its affiliates . All rights reserved . * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER . * * This code is free software ; you can redistribute it and / or modify it * under the terms of the GNU General Public License version 2 only , as * published by the Free Software Foundation . * * This code is distributed in the hope that it will be useful , but WITHOUT * ANY WARRANTY ; without even the implied warranty of MERCHANTABILITY or * FITNESS FOR A PARTICULAR PURPOSE . See the GNU General Public License * version 2 for more details ( a copy is included in the LICENSE file that * accompanied this code ) . * * You should have received a copy of the GNU General Public License version * 2 along with this work ; if not , write to the Free Software Foundation , * Inc . , 51 Franklin St , Fifth Floor , Boston , MA 02110 - 1301 USA . * * Please contact Oracle , 500 Oracle Parkway , Redwood Shores , CA 94065 USA * or visit www . oracle . com if you need additional information or have any * questions . /* * @ test * @ bug 6911951 7150092 * @ library / test / lib * @ summary NTLM should be a supported Java SASL mechanism * @ modules java . base / sun . security . util * java . security . sasl import java.io.IOException;import javax.security.sasl.*;import javax.security.auth.callback.*;import java.util.*;import jdk.test.lib.hexdump.HexPrinter;public class NTLMTest {private static final String MECH = "NTLM" ;private static final String REALM = "REALM" ;private static final String PROTOCOL = "jmx" ;private static final byte [] EMPTY = new byte [0 ];private static final String USER1 = "dummy" ;private static final char [] PASS1 = "bogus" .toCharArray();private static final String USER2 = "foo" ;private static final char [] PASS2 = "bar" .toCharArray();private static final Map<String,char []> maps =new HashMap<String,char []>();static {static char [] getPass(String d, String u) {if (!d.equals(REALM)) return null ;return maps.get(u);public static void main(String[] args) throws Exception {static void checkVersions() throws Exception {// Server accepts all version null , null );"LM/NTLM" , null );"LM" , null );"NTLM" , null );"NTLM2" , null );"LMv2/NTLMv2" , null );"LMv2" , null );"NTLMv2" , null );// Client's default version is LMv2 null , "LMv2" );// Also works if they specified identical versions "LM/NTLM" , "LM" );"LM" , "LM" );"NTLM" , "LM" );"NTLM2" , "NTLM2" );"LMv2/NTLMv2" , "LMv2" );"LMv2" , "LMv2" );"NTLMv2" , "LMv2" );// But should not work if different try {"LM/NTLM" , "LMv2" );throw new Exception("Should not succeed" );catch (SaslException se) {// OK try {"LMv2/NTLMv2" , "LM" );throw new Exception("Should not succeed" );catch (SaslException se) {// OK /** * A test on version matching * @ param vc ntlm version specified for client * @ param vs ntlm version specified for server * @ throws Exception private static void checkVersion(String vc, String vs) throws Exception {new HashMap<>();"com.sun.security.sasl.ntlm.version" , vc);new HashMap<>();"com.sun.security.sasl.ntlm.version" , vs);new String[]{MECH}, USER1, PROTOCOL, REALM, pc,new CallbackHandler() {public void handle(Callback[] callbacks)throws IOException, UnsupportedCallbackException {for (Callback cb: callbacks) {if (cb instanceof PasswordCallback) {new CallbackHandler() {public void handle(Callback[] callbacks)throws IOException, UnsupportedCallbackException {null , name = null ;null ;for (Callback cb: callbacks) {if (cb instanceof NameCallback) {else if (cb instanceof RealmCallback) {else if (cb instanceof PasswordCallback) {if (pcb != null ) {private static void checkClientHostname() throws Exception {new HashMap<>();"com.sun.security.sasl.ntlm.hostname" , "this.is.com" );new String[]{MECH}, USER1, PROTOCOL, REALM, pc,new CallbackHandler() {public void handle(Callback[] callbacks)throws IOException, UnsupportedCallbackException {for (Callback cb: callbacks) {if (cb instanceof PasswordCallback) {null ,new CallbackHandler() {public void handle(Callback[] callbacks)throws IOException, UnsupportedCallbackException {null , name = null ;null ;for (Callback cb: callbacks) {if (cb instanceof NameCallback) {else if (cb instanceof RealmCallback) {else if (cb instanceof PasswordCallback) {if (pcb != null ) {if (!"this.is.com" .equals("com.sun.security.sasl.ntlm.hostname" ))) {throw new Exception("Hostname not trasmitted to server" );/** * Client realm override , but finally overridden by server response private static void checkClientDomainOverride() throws Exception {new String[]{MECH}, USER1, PROTOCOL, "ANOTHERREALM" , null ,new CallbackHandler() {public void handle(Callback[] callbacks)throws IOException, UnsupportedCallbackException {for (Callback cb: callbacks) {if (cb instanceof RealmCallback) {else if (cb instanceof PasswordCallback) {null ,new CallbackHandler() {public void handle(Callback[] callbacks)throws IOException, UnsupportedCallbackException {null , name = null ;null ;for (Callback cb: callbacks) {if (cb instanceof NameCallback) {else if (cb instanceof RealmCallback) {else if (cb instanceof PasswordCallback) {if (pcb != null ) {/** * Client side user name provided in callback . * @ throws Exception private static void checkClientNameOverride() throws Exception {new String[]{MECH}, "someone" , PROTOCOL, REALM, null ,new CallbackHandler() {public void handle(Callback[] callbacks)throws IOException, UnsupportedCallbackException {for (Callback cb: callbacks) {if (cb instanceof NameCallback) {else if (cb instanceof PasswordCallback) {"FAKE" , null ,new CallbackHandler() {public void handle(Callback[] callbacks)throws IOException, UnsupportedCallbackException {null , name = null ;null ;for (Callback cb: callbacks) {if (cb instanceof NameCallback) {else if (cb instanceof RealmCallback) {else if (cb instanceof PasswordCallback) {if (pcb != null ) {private static void checkAuthOnly() throws Exception {new HashMap<>();"auth-conf" );try {new String[]{MECH}, USER2, PROTOCOL, REALM, props, null );throw new Exception("NTLM should not support auth-conf" );catch (SaslException se) {// Normal private static void handshake(SaslClient clnt, SaslServer srv)throws Exception {if (clnt == null ) {throw new IllegalStateException("Unable to find client impl for " + MECH);if (srv == null ) {throw new IllegalStateException("Unable to find server impl for " + MECH);byte [] response = (clnt.hasInitialResponse()"Initial:" );byte [] challenge;while (!clnt.isComplete() || !srv.isComplete()) {null ;if (challenge != null ) {"Challenge:" );if (response != null ) {"Response:" );if (clnt.isComplete() && srv.isComplete()) {"SUCCESS" );if (!srv.getAuthorizationID().equals(USER1)) {throw new Exception("Not correct user" );else {throw new IllegalStateException("FAILURE: mismatched state:" " client complete? " + clnt.isComplete()" server complete? " + srv.isComplete());if (!clnt.getNegotiatedProperty(Sasl.QOP).equals("auth" ) ||"auth" ) ||"com.sun.security.sasl.ntlm.domain" ).equals(REALM)) {throw new Exception("Negotiated property error" );
Messung V0.5 in Prozent C=97 H=81 G=89
¤ Dauer der Verarbeitung: 0.9 Sekunden
(vorverarbeitet am 2026-06-10)
¤ *© Formatika GbR, Deutschland
