upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-04-29 18:32:49 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/tests/sys/geom/class/eli/setkey_test.sh
Alan Somers cf551b8a98 Unbreak geli/gmirror testcases if their geom classes cannot be loaded 
The problem with the logic prior to this commit was twofold:

1. The wrong set of idioms (TAP-compatible) were being applied to the ATF
   testcases when run, resulting in confusing ATF failure results on setup.
2. The cleanup subroutines were broken when the geom classes could not be
   loaded as they exited with 0 unexpectedly.

This commit changes the test code to source the class-specific configuration
(conf.sh) once globally, instead of sourcing it per testcase and per cleanup
subroutine, and to call the ATF-specific setup subroutine(s) inline in
the testcases.

The refactoring done is effectively a no-op for the TAP testcases, modulo
any refactoring done to create common code between the ATF and TAP
testcases.

This unbreaks the geli testcases converted to ATF in r327662 and r327683,
and the gmirror testcases added in r327780, respectively, when the geom
class could not be loaded.

tests/sys/geom/class/mirror/...
    While here, ignore errors when turning debug failpoint sysctl off, which
    could occur if the gmirror class was not loaded.

Submitted by:	ngie
MFC after:	2 weeks
Pull Request:	https://github.com/freebsd/freebsd/pull/241
2018-12-02 05:06:37 +00:00

163 lines
4.6 KiB
Bash
Raw Blame History

#!/bin/sh
# $FreeBSD$
. $(atf_get_srcdir)/conf.sh
atf_test_case setkey cleanup
setkey_head()
{
atf_set "descr" "geli setkey can change the key for an existing provider"
atf_set "require.user" "root"
}
setkey_body()
{
geli_test_setup
sectors=100
md=$(attach_md -t malloc -s `expr $sectors + 1`)
atf_check dd if=/dev/random of=rnd bs=512 count=${sectors} status=none
hash1=`dd if=rnd bs=512 count=${sectors} status=none | md5`
atf_check_equal 0 $?
atf_check dd if=/dev/random of=keyfile1 bs=512 count=16 status=none
atf_check dd if=/dev/random of=keyfile2 bs=512 count=16 status=none
atf_check dd if=/dev/random of=keyfile3 bs=512 count=16 status=none
atf_check dd if=/dev/random of=keyfile4 bs=512 count=16 status=none
atf_check dd if=/dev/random of=keyfile5 bs=512 count=16 status=none
atf_check geli init -B none -P -K keyfile1 ${md}
atf_check geli attach -p -k keyfile1 ${md}
atf_check \
dd if=rnd of=/dev/${md}.eli bs=512 count=${sectors} status=none
hash2=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5`
atf_check_equal 0 $?
# Change current key (0) for attached provider.
atf_check -s exit:0 -o ignore geli setkey -P -K keyfile2 ${md}
atf_check geli detach ${md}
# We cannot use keyfile1 anymore.
atf_check -s not-exit:0 -e match:"Wrong key" \
geli attach -p -k keyfile1 ${md}
# Attach with new key.
atf_check geli attach -p -k keyfile2 ${md}
hash3=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5`
atf_check_equal 0 $?
# Change key 1 for attached provider.
atf_check -s exit:0 -o ignore geli setkey -n 1 -P -K keyfile3 ${md}
atf_check geli detach ${md}
# Attach with key 1.
atf_check geli attach -p -k keyfile3 ${md}
hash4=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5`
atf_check_equal 0 $?
atf_check geli detach ${md}
# Change current (1) key for detached provider.
atf_check -s exit:0 -o ignore geli setkey -p -k keyfile3 -P -K keyfile4 ${md}
# We cannot use keyfile3 anymore.
atf_check -s not-exit:0 -e match:"Wrong key" \
geli attach -p -k keyfile3 ${md}
# Attach with key 1.
atf_check geli attach -p -k keyfile4 ${md}
hash5=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5`
atf_check_equal 0 $?
atf_check geli detach ${md}
# Change key 0 for detached provider.
atf_check -s exit:0 -o ignore geli setkey -n 0 -p -k keyfile4 -P -K keyfile5 ${md}
# We cannot use keyfile2 anymore.
atf_check -s not-exit:0 -e match:"Wrong key" \
geli attach -p -k keyfile2 ${md} 2>/dev/null
# Attach with key 0.
atf_check geli attach -p -k keyfile5 ${md}
hash6=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5`
atf_check_equal 0 $?
atf_check geli detach ${md}
atf_check_equal ${hash1} ${hash2}
atf_check_equal ${hash1} ${hash3}
atf_check_equal ${hash1} ${hash4}
atf_check_equal ${hash1} ${hash5}
atf_check_equal ${hash1} ${hash6}
}
setkey_cleanup()
{
geli_test_cleanup
}
atf_test_case setkey_readonly cleanup
setkey_readonly_head()
{
atf_set "descr" "geli setkey cannot change the keys of a readonly provider"
atf_set "require.user" "root"
}
setkey_readonly_body()
{
geli_test_setup
sectors=100
md=$(attach_md -t malloc -s `expr $sectors + 1`)
atf_check dd if=/dev/random of=keyfile bs=512 count=16 status=none
atf_check geli init -B none -P -K keyfile ${md}
atf_check geli attach -r -p -k keyfile ${md}
atf_check -s not-exit:0 -e match:"read-only" \
geli setkey -n 1 -P -K /dev/null ${md}
}
setkey_readonly_cleanup()
{
geli_test_cleanup
}
atf_test_case nokey cleanup
nokey_head()
{
atf_set "descr" "geli setkey can change the key for an existing provider"
atf_set "require.user" "root"
}
nokey_body()
{
geli_test_setup
sectors=100
md=$(attach_md -t malloc -s `expr $sectors + 1`)
atf_check dd if=/dev/random of=keyfile1 bs=512 count=16 status=none
atf_check dd if=/dev/random of=keyfile2 bs=512 count=16 status=none
atf_check geli init -B none -P -K keyfile1 ${md}
# Try to set the key for a detached device without providing any
# components for the old key.
atf_check -s not-exit:0 -e match:"No key components given" \
geli setkey -n 0 -p -P -K keyfile2 ${md}
# Try to set the key for a detached device without providing any
# components for the new key
atf_check -s not-exit:0 -e match:"No key components given" \
geli setkey -n 0 -p -k keyfile1 -P ${md}
# Try to set a new key for an attached device with no components
atf_check geli attach -p -k keyfile1 ${md}
atf_check -s not-exit:0 -e match:"No key components given" \
geli setkey -n 0 -P ${md}
}
nokey_cleanup()
{
geli_test_cleanup
}
atf_init_test_cases()
{
atf_add_test_case setkey
atf_add_test_case setkey_readonly
atf_add_test_case nokey
}
Reference in a new issue View git blame Copy permalink