etc/services - sync with NetBSD-8
[minix.git] / crypto / external / bsd / heimdal / dist / tests / gss / check-basic.in
blobe9a0904b37f32572723b8d85e8623e0a2b88f16c
1 #!/bin/sh
3 # Copyright (c) 2007 Kungliga Tekniska Högskolan
4 # (Royal Institute of Technology, Stockholm, Sweden).
5 # All rights reserved.
7 # Redistribution and use in source and binary forms, with or without
8 # modification, are permitted provided that the following conditions
9 # are met:
11 # 1. Redistributions of source code must retain the above copyright
12 # notice, this list of conditions and the following disclaimer.
14 # 2. Redistributions in binary form must reproduce the above copyright
15 # notice, this list of conditions and the following disclaimer in the
16 # documentation and/or other materials provided with the distribution.
18 # 3. Neither the name of the Institute nor the names of its contributors
19 # may be used to endorse or promote products derived from this software
20 # without specific prior written permission.
22 # THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
23 # ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
24 # IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
25 # ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
26 # FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
27 # DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
28 # OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
29 # HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
30 # LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
31 # OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 # SUCH DAMAGE.
34 # Id
37 srcdir="@srcdir@"
38 objdir="@objdir@"
40 # If there is no useful db support compile in, disable test
41 ../db/have-db || exit 77
43 R=TEST.H5L.SE
45 port=@port@
47 keytabfile=${objdir}/server.keytab
48 keytab="FILE:${keytabfile}"
49 nokeytab="FILE:no-such-keytab"
50 cache="FILE:krb5ccfile"
51 cache2="FILE:krb5ccfile2"
52 nocache="FILE:no-such-cache"
54 kinit="${TESTS_ENVIRONMENT} ../../kuser/kinit -c $cache ${afs_no_afslog}"
55 kdestroy="${TESTS_ENVIRONMENT} ../../kuser/kdestroy -c $cache ${afs_no_unlog}"
56 klist="${TESTS_ENVIRONMENT} ../../kuser/klist -c $cache"
57 kadmin="${TESTS_ENVIRONMENT} ../../kadmin/kadmin -l -r $R"
58 kdc="${TESTS_ENVIRONMENT} ../../kdc/kdc --addresses=localhost -P $port"
60 acquire_cred="${TESTS_ENVIRONMENT} ../../lib/gssapi/test_acquire_cred"
61 test_kcred="${TESTS_ENVIRONMENT} ../../lib/gssapi/test_kcred"
63 KRB5_CONFIG="${objdir}/krb5.conf"
64 export KRB5_CONFIG
66 KRB5_KTNAME="${keytab}"
67 export KRB5_KTNAME
68 KRB5CCNAME="${cache}"
69 export KRB5CCNAME
71 rm -f ${keytabfile}
72 rm -f current-db*
73 rm -f out-*
74 rm -f mkey.file*
76 > messages.log
78 echo Creating database
79 ${kadmin} \
80 init \
81 --realm-max-ticket-life=1day \
82 --realm-max-renewable-life=1month \
83 ${R} || exit 1
85 echo upw > ${objdir}/foopassword
87 ${kadmin} add -p upw --use-defaults user@${R} || exit 1
88 ${kadmin} add -p upw --use-defaults another@${R} || exit 1
89 ${kadmin} add -p p1 --use-defaults host/host.test.h5l.se@${R} || exit 1
90 ${kadmin} ext -k ${keytab} host/host.test.h5l.se@${R} || exit 1
92 echo "Doing database check"
93 ${kadmin} check ${R} || exit 1
95 echo Starting kdc
96 ${kdc} &
97 kdcpid=$!
99 sh ${srcdir}/../kdc/wait-kdc.sh
100 if [ "$?" != 0 ] ; then
101 kill ${kdcpid}
102 exit 1
105 trap "kill ${kdcpid}; echo signal killing kdc; exit 1;" EXIT
107 exitcode=0
109 echo "initial ticket"
110 ${kinit} --password-file=${objdir}/foopassword user@${R} || exitcode=1
112 echo "keytab"
113 ${acquire_cred} \
114 --acquire-type=accept \
115 --acquire-name=host@host.test.h5l.se || exit 1
117 echo "keytab w/o name"
118 ${acquire_cred} \
119 --acquire-type=accept || exit 1
121 echo "keytab w/ wrong name"
122 ${acquire_cred} \
123 --acquire-type=accept \
124 --acquire-name=host@host2.test.h5l.se 2>/dev/null && exit 1
126 echo "init using keytab"
127 ${acquire_cred} \
128 --acquire-type=initiate \
129 --acquire-name=host@host.test.h5l.se > /dev/null || exit 1
131 echo "init using keytab (loop 10)"
132 ${acquire_cred} \
133 --acquire-type=initiate \
134 --loops=10 \
135 --acquire-name=host@host.test.h5l.se > /dev/null || exit 1
137 echo "init using keytab (loop 10, target)"
138 ${acquire_cred} \
139 --acquire-type=initiate \
140 --loops=10 \
141 --target=host@host.test.h5l.se \
142 --acquire-name=host@host.test.h5l.se > /dev/null || exit 1
144 echo "init using keytab (loop 10, kerberos)"
145 ${acquire_cred} \
146 --acquire-type=initiate \
147 --loops=10 \
148 --kerberos \
149 --acquire-name=host@host.test.h5l.se > /dev/null || exit 1
151 echo "init using keytab (loop 10, target, kerberos)"
152 ${acquire_cred} \
153 --acquire-type=initiate \
154 --loops=10 \
155 --kerberos \
156 --target=host@host.test.h5l.se \
157 --acquire-name=host@host.test.h5l.se > /dev/null || exit 1
159 echo "init using existing cc"
160 ${acquire_cred} \
161 --name-type=user-name \
162 --acquire-type=initiate \
163 --acquire-name=user || exit 1
165 KRB5CCNAME=${nocache}
167 echo "fail init using existing cc"
168 ${acquire_cred} \
169 --name-type=user-name \
170 --acquire-type=initiate \
171 --acquire-name=user 2>/dev/null && exit 1
173 echo "use gss_krb5_ccache_name for user"
174 ${acquire_cred} \
175 --name-type=user-name \
176 --ccache=${cache} \
177 --acquire-type=initiate \
178 --acquire-name=user >/dev/null || exit 1
180 KRB5CCNAME=${cache}
181 KRB5_KTNAME=${nokeytab}
183 echo "kcred"
184 ${test_kcred} || exit 1
186 ${kdestroy}
188 KRB5_KTNAME="${keytab}"
190 echo "init using keytab"
191 ${acquire_cred} \
192 --acquire-type=initiate \
193 --acquire-name=host@host.test.h5l.se 2>/dev/null || exit 1
195 echo "init using keytab (ccache)"
196 ${acquire_cred} \
197 --acquire-type=initiate \
198 --ccache=${cache} \
199 --acquire-name=host@host.test.h5l.se 2>/dev/null || exit 1
201 trap "" EXIT
203 echo "killing kdc (${kdcpid})"
204 kill ${kdcpid} 2> /dev/null
206 exit $exitcode