From b879cbad882ee35129e4b1826fdc8154346dc948 Mon Sep 17 00:00:00 2001 From: igerasim Date: Thu, 31 May 2018 12:25:23 -0700 Subject: [PATCH] 8189760: sun/security/ssl/CertPathRestrictions/TLSRestrictions.java failed with unexpected Exception intermittently Summary: Adds synchronization to make sure the server exception is available Reviewed-by: xuelei --- .../ssl/CertPathRestrictions/JSSEServer.java | 47 ++++---- .../CertPathRestrictions/TLSRestrictions.java | 105 +++++++++--------- 2 files changed, 73 insertions(+), 79 deletions(-) diff --git a/test/sun/security/ssl/CertPathRestrictions/JSSEServer.java b/test/sun/security/ssl/CertPathRestrictions/JSSEServer.java index afcae83b2..1915aa2f6 100644 --- a/test/sun/security/ssl/CertPathRestrictions/JSSEServer.java +++ b/test/sun/security/ssl/CertPathRestrictions/JSSEServer.java @@ -1,5 +1,5 @@ /* - * Copyright (c) 2017, Oracle and/or its affiliates. All rights reserved. + * Copyright (c) 2017, 2018, Oracle and/or its affiliates. All rights reserved. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * * This code is free software; you can redistribute it and/or modify it @@ -36,8 +36,6 @@ public class JSSEServer { private SSLServerSocket server = null; - private Exception exception = null; - public JSSEServer(SSLContext context, boolean needClientAuth) throws Exception { SSLServerSocketFactory serverFactory = context.getServerSocketFactory(); @@ -47,35 +45,28 @@ public class JSSEServer { System.out.println("Server: port=" + getPort()); } - public void start() { - new Thread(new Runnable() { + public Exception start() { + System.out.println("Server: started"); + Exception exception = null; + try (SSLSocket socket = (SSLSocket) server.accept()) { + System.out.println("Server: accepted connection"); + socket.setSoTimeout(TLSRestrictions.TIMEOUT); + InputStream sslIS = socket.getInputStream(); + OutputStream sslOS = socket.getOutputStream(); + sslIS.read(); + sslOS.write('S'); + sslOS.flush(); + System.out.println("Server: finished"); + } catch (Exception e) { + exception = e; + e.printStackTrace(System.out); + System.out.println("Server: failed"); + } - @Override - public void run() { - try { - System.out.println("Server: started"); - try (SSLSocket socket = (SSLSocket) server.accept()) { - socket.setSoTimeout(TLSRestrictions.TIMEOUT); - InputStream sslIS = socket.getInputStream(); - OutputStream sslOS = socket.getOutputStream(); - sslIS.read(); - sslOS.write('S'); - sslOS.flush(); - System.out.println("Server: finished"); - } - } catch (Exception e) { - e.printStackTrace(System.out); - exception = e; - } - } - }).start(); + return exception; } public int getPort() { return server.getLocalPort(); } - - public Exception getException() { - return exception; - } } diff --git a/test/sun/security/ssl/CertPathRestrictions/TLSRestrictions.java b/test/sun/security/ssl/CertPathRestrictions/TLSRestrictions.java index 55d9b451f..db365bdf5 100644 --- a/test/sun/security/ssl/CertPathRestrictions/TLSRestrictions.java +++ b/test/sun/security/ssl/CertPathRestrictions/TLSRestrictions.java @@ -1,5 +1,5 @@ /* - * Copyright (c) 2017, Oracle and/or its affiliates. All rights reserved. + * Copyright (c) 2017, 2018, Oracle and/or its affiliates. All rights reserved. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * * This code is free software; you can redistribute it and/or modify it @@ -36,6 +36,10 @@ import java.security.cert.Certificate; import java.security.cert.CertificateFactory; import java.security.spec.PKCS8EncodedKeySpec; import java.util.Base64; +import java.util.concurrent.ExecutorService; +import java.util.concurrent.Executors; +import java.util.concurrent.Future; +import java.util.concurrent.TimeUnit; import java.util.stream.Collectors; import javax.net.ssl.KeyManagerFactory; @@ -210,58 +214,58 @@ public class TLSRestrictions { needClientAuth, pass); setConstraint("Server", serverConstraint); - JSSEServer server = new JSSEServer( - createSSLContext(trustNames, certNames), - needClientAuth); - int port = server.getPort(); - server.start(); - - // Run client on another JVM so that its properties cannot be in conflict - // with server's. - OutputAnalyzer outputAnalyzer = ProcessTools.executeTestJvm( - "-Dcert.dir=" + CERT_DIR, - "-Djava.security.debug=certpath", - "-classpath", - TEST_CLASSES, - "JSSEClient", - port + "", - trustNameStr, - certNameStr, - clientConstraint); - int exitValue = outputAnalyzer.getExitValue(); - String clientOut = outputAnalyzer.getOutput(); - - Exception serverException = server.getException(); - if (serverException != null) { - System.out.println("Server: failed"); - } - - System.out.println("---------- Client output start ----------"); - System.out.println(clientOut); - System.out.println("---------- Client output end ----------"); - - if (serverException instanceof SocketTimeoutException - || clientOut.contains("SocketTimeoutException")) { - System.out.println("The communication gets timeout and skips the test."); - return; - } - - if (pass) { - if (serverException != null || exitValue != 0) { - throw new RuntimeException( - "Unexpected failure. Operation was blocked."); - } - } else { - if (serverException == null && exitValue == 0) { - throw new RuntimeException( - "Unexpected pass. Operation was allowed."); + ExecutorService executor = Executors.newFixedThreadPool(1); + try { + JSSEServer server = new JSSEServer( + createSSLContext(trustNames, certNames), + needClientAuth); + int port = server.getPort(); + Future serverFuture = executor.submit(() -> server.start()); + + // Run client on another JVM so that its properties cannot be in conflict + // with server's. + OutputAnalyzer outputAnalyzer = ProcessTools.executeTestJvm( + "-Dcert.dir=" + CERT_DIR, + "-Djava.security.debug=certpath", + "-classpath", + TEST_CLASSES, + "JSSEClient", + port + "", + trustNameStr, + certNameStr, + clientConstraint); + int clientExitValue = outputAnalyzer.getExitValue(); + String clientOut = outputAnalyzer.getOutput(); + System.out.println("---------- Client output start ----------"); + System.out.println(clientOut); + System.out.println("---------- Client output end ----------"); + + Exception serverException = serverFuture.get(TIMEOUT, TimeUnit.MILLISECONDS); + if (serverException instanceof SocketTimeoutException + || clientOut.contains("SocketTimeoutException")) { + System.out.println("The communication gets timeout and skips the test."); + return; } - // The test may encounter non-SSL issues, like network problem. - if (!(serverException instanceof SSLHandshakeException - || clientOut.contains("SSLHandshakeException"))) { - throw new RuntimeException("Failure with unexpected exception."); + if (pass) { + if (serverException != null || clientExitValue != 0) { + throw new RuntimeException( + "Unexpected failure. Operation was blocked."); + } + } else { + if (serverException == null && clientExitValue == 0) { + throw new RuntimeException( + "Unexpected pass. Operation was allowed."); + } + + // The test may encounter non-SSL issues, like network problem. + if (!(serverException instanceof SSLHandshakeException + || clientOut.contains("SSLHandshakeException"))) { + throw new RuntimeException("Failure with unexpected exception."); + } } + } finally { + executor.shutdown(); } } @@ -513,7 +517,6 @@ public class TLSRestrictions { true); break; } - System.out.println("Case passed"); System.out.println("========================================"); } -- GitLab