qemu/tests/qemu-iotests/294

#!/usr/bin/env bash
# group: rw quick
#
# Copyright (C) 2019 Red Hat, Inc.
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
#

# creator
owner=mlevitsk@redhat.com

seq=`basename $0`
echo "QA output created by $seq"

status=1	# failure is the default!

_cleanup()
{
	_cleanup_test_img
}
trap "_cleanup; exit \$status" 0 1 2 3 15

# get standard environment, filters and checks
. ./common.rc
. ./common.filter

_supported_fmt luks
_supported_proto file fuse #TODO

QEMU_IO_OPTIONS=$QEMU_IO_OPTIONS_NO_FMT

# you are supposed to see the password as *******, see :-)
S0="--object secret,id=sec0,data=hunter0"
S1="--object secret,id=sec1,data=hunter1"
SECRETS="$S0 $S1"


IMGS0="--image-opts driver=$IMGFMT,file.filename=$TEST_IMG,key-secret=sec0"
IMGS1="--image-opts driver=$IMGFMT,file.filename=$TEST_IMG,key-secret=sec1"

echo "== creating a test image =="
_make_test_img $S0 -o "key-secret=sec0,iter-time=10" 32M

echo
echo "== test that key 0 opens the image =="
$QEMU_IO $S0 -c "read 0 4096" $IMGS0 | _filter_qemu_io | _filter_testdir

echo
echo "== adding a password to slot 1 =="
$QEMU_IMG amend $SECRETS $IMGS0 -o state=active,new-secret=sec1,keyslot=1,iter-time=10

echo
echo "== 'backup' the image header =="
dd if=$TEST_IMG_FILE of=${TEST_IMG_FILE}.bk bs=4K skip=0 count=1

echo
echo "== erase slot 0 =="
$QEMU_IMG amend $SECRETS $IMGS1 -o state=inactive,keyslot=0 | _filter_img_create

echo
echo "== test that key 0 doesn't open the image =="
$QEMU_IO $S0 -c "read 0 4096" $IMGS0 | _filter_qemu_io | _filter_testdir

echo
echo "== 'restore' the image header =="
dd if=${TEST_IMG_FILE}.bk of=${TEST_IMG_FILE} bs=4K skip=0 count=1 conv=notrunc

echo
echo "== test that key 0 still doesn't open the image (key material is erased) =="
$QEMU_IO $SECRETS -c "read 0 4096" $IMGS0 | _filter_qemu_io | _filter_testdir

echo
echo "== test that key 1 still works =="
$QEMU_IO $SECRETS -c "read 0 4096" $IMGS1 | _filter_qemu_io | _filter_testdir

echo "*** done"
rm -f $seq.full
status=0


exit 0
iotests/294: add shebang line Signed-off-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com> Reviewed-by: Eric Blake <eblake@redhat.com> Message-Id: <20210116134424.82867-6-vsementsov@virtuozzo.com> Signed-off-by: Eric Blake <eblake@redhat.com> 2021-01-16 16:44:18 +03:00			`#!/usr/bin/env bash`
iotests: define group in each iotest We are going to drop group file. Define group in tests as a preparatory step. The patch is generated by cd tests/qemu-iotests grep '^[0-9]\{3\} ' group \| while read line; do file=$(awk '{print $1}' <<< "$line"); groups=$(sed -e 's/^... //' <<< "$line"); awk "NR==2{print \"# group: $groups\"}1" $file > tmp; cat tmp > $file; done Signed-off-by: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com> Reviewed-by: Eric Blake <eblake@redhat.com> Message-Id: <20210116134424.82867-7-vsementsov@virtuozzo.com> Signed-off-by: Eric Blake <eblake@redhat.com> 2021-01-16 16:44:19 +03:00			`# group: rw quick`
iotests: qemu-img tests for luks key management This commit adds two tests, which test the new amend interface of both luks raw images and qcow2 luks encrypted images. Signed-off-by: Maxim Levitsky <mlevitsk@redhat.com> Reviewed-by: Daniel P. Berrangé <berrange@redhat.com> [mreitz: Let 293 verify that LUKS works; drop $(seq) usage from 293; drop 293 and 294 from the auto group] Signed-off-by: Max Reitz <mreitz@redhat.com> Message-Id: <20200625125548.870061-16-mreitz@redhat.com> 2020-06-25 14:55:44 +02:00			`#`
			`# Copyright (C) 2019 Red Hat, Inc.`
			`#`
			`# This program is free software; you can redistribute it and/or modify`
			`# it under the terms of the GNU General Public License as published by`
			`# the Free Software Foundation; either version 2 of the License, or`
			`# (at your option) any later version.`
			`#`
			`# This program is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`#`

			`# creator`
			`owner=mlevitsk@redhat.com`

			seq=`basename $0`
			`echo "QA output created by $seq"`

			`status=1 # failure is the default!`

			`_cleanup()`
			`{`
			`_cleanup_test_img`
			`}`
			`trap "_cleanup; exit \$status" 0 1 2 3 15`

			`# get standard environment, filters and checks`
			`. ./common.rc`
			`. ./common.filter`

			`_supported_fmt luks`
iotests: Enable fuse for many tests Many tests (that do not support generic protocols) can run just fine with FUSE-exported images, so allow them to. Note that this is no attempt at being definitely complete. There are some tests that might be modified to run on FUSE, but this patch still skips them. This patch only tries to pick the rather low-hanging fruits. Note that 221 and 250 only pass when .lseek is correctly implemented, which is only possible with a libfuse that is 3.8 or newer. Signed-off-by: Max Reitz <mreitz@redhat.com> Reviewed-by: Kevin Wolf <kwolf@redhat.com> Message-Id: <20201027190600.192171-20-mreitz@redhat.com> Signed-off-by: Kevin Wolf <kwolf@redhat.com> 2020-10-27 20:05:59 +01:00			`_supported_proto file fuse #TODO`
iotests: qemu-img tests for luks key management This commit adds two tests, which test the new amend interface of both luks raw images and qcow2 luks encrypted images. Signed-off-by: Maxim Levitsky <mlevitsk@redhat.com> Reviewed-by: Daniel P. Berrangé <berrange@redhat.com> [mreitz: Let 293 verify that LUKS works; drop $(seq) usage from 293; drop 293 and 294 from the auto group] Signed-off-by: Max Reitz <mreitz@redhat.com> Message-Id: <20200625125548.870061-16-mreitz@redhat.com> 2020-06-25 14:55:44 +02:00
			`QEMU_IO_OPTIONS=$QEMU_IO_OPTIONS_NO_FMT`

			`# you are supposed to see the password as *******, see :-)`
			`S0="--object secret,id=sec0,data=hunter0"`
			`S1="--object secret,id=sec1,data=hunter1"`
			`SECRETS="$S0 $S1"`


			`IMGS0="--image-opts driver=$IMGFMT,file.filename=$TEST_IMG,key-secret=sec0"`
			`IMGS1="--image-opts driver=$IMGFMT,file.filename=$TEST_IMG,key-secret=sec1"`

			`echo "== creating a test image =="`
			`_make_test_img $S0 -o "key-secret=sec0,iter-time=10" 32M`

			`echo`
			`echo "== test that key 0 opens the image =="`
			`$QEMU_IO $S0 -c "read 0 4096" $IMGS0 \| _filter_qemu_io \| _filter_testdir`

			`echo`
			`echo "== adding a password to slot 1 =="`
			`$QEMU_IMG amend $SECRETS $IMGS0 -o state=active,new-secret=sec1,keyslot=1,iter-time=10`

			`echo`
			`echo "== 'backup' the image header =="`
			`dd if=$TEST_IMG_FILE of=${TEST_IMG_FILE}.bk bs=4K skip=0 count=1`

			`echo`
			`echo "== erase slot 0 =="`
			`$QEMU_IMG amend $SECRETS $IMGS1 -o state=inactive,keyslot=0 \| _filter_img_create`

			`echo`
			`echo "== test that key 0 doesn't open the image =="`
			`$QEMU_IO $S0 -c "read 0 4096" $IMGS0 \| _filter_qemu_io \| _filter_testdir`

			`echo`
			`echo "== 'restore' the image header =="`
			`dd if=${TEST_IMG_FILE}.bk of=${TEST_IMG_FILE} bs=4K skip=0 count=1 conv=notrunc`

			`echo`
			`echo "== test that key 0 still doesn't open the image (key material is erased) =="`
			`$QEMU_IO $SECRETS -c "read 0 4096" $IMGS0 \| _filter_qemu_io \| _filter_testdir`

			`echo`
			`echo "== test that key 1 still works =="`
			`$QEMU_IO $SECRETS -c "read 0 4096" $IMGS1 \| _filter_qemu_io \| _filter_testdir`

			`echo "*** done"`
			`rm -f $seq.full`
			`status=0`


			`exit 0`