/* TestCryptoLevel -- Ensure unlimited crypto policy is in use.

   Copyright (C) 2012 Red Hat, Inc.

This program is free software: you can redistribute it and/or modify

it under the terms of the GNU Affero General Public License as

published by the Free Software Foundation, either version 3 of the

License, or (at your option) any later version.

This program is distributed in the hope that it will be useful,

but WITHOUT ANY WARRANTY; without even the implied warranty of

MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

GNU Affero General Public License for more details.

You should have received a copy of the GNU Affero General Public License

along with this program.  If not, see <http://www.gnu.org/licenses/>.

*/

import java.lang.reflect.Field;

import java.lang.reflect.Method;

import java.lang.reflect.InvocationTargetException;

import java.security.Permission;

import java.security.PermissionCollection;

public class TestCryptoLevel

{

  public static void main(String[] args)

    throws NoSuchFieldException, ClassNotFoundException,

           IllegalAccessException, InvocationTargetException

  {

    Class cls = null;

    Method def = null, exempt = null;

    try

      {

        cls = Class.forName("javax.crypto.JceSecurity");

      }

    catch (ClassNotFoundException ex)

      {

        System.err.println("Running a non-Sun JDK.");

        System.exit(0);

      }

    try

      {

        def = cls.getDeclaredMethod("getDefaultPolicy");

        exempt = cls.getDeclaredMethod("getExemptPolicy");

      }

    catch (NoSuchMethodException ex)

      {

        System.err.println("Running IcedTea with the original crypto patch.");

        System.exit(0);

      }

    def.setAccessible(true);

    exempt.setAccessible(true);

    PermissionCollection defPerms = (PermissionCollection) def.invoke(null);

    PermissionCollection exemptPerms = (PermissionCollection) exempt.invoke(null);

    Class apCls = Class.forName("javax.crypto.CryptoAllPermission");

    Field apField = apCls.getDeclaredField("INSTANCE");

    apField.setAccessible(true);

    Permission allPerms = (Permission) apField.get(null);

    if (defPerms.implies(allPerms) && (exemptPerms == null || exemptPerms.implies(allPerms)))

      {

        System.err.println("Running with the unlimited policy.");

        System.exit(0);

      }

    else

      {

        System.err.println("WARNING: Running with a restricted crypto policy.");

        System.exit(-1);

      }

  }

}