Changeset View
Changeset View
Standalone View
Standalone View
head/tests/sys/geom/class/eli/setkey_test.sh
#!/bin/sh | #!/bin/sh | ||||
# $FreeBSD$ | # $FreeBSD$ | ||||
. $(dirname $0)/conf.sh | . $(dirname $0)/conf.sh | ||||
base=`basename $0` | base=`basename $0` | ||||
sectors=100 | sectors=100 | ||||
rnd=`mktemp $base.XXXXXX` || exit 1 | rnd=`mktemp $base.XXXXXX` || exit 1 | ||||
keyfile1=`mktemp $base.XXXXXX` || exit 1 | keyfile1=`mktemp $base.XXXXXX` || exit 1 | ||||
keyfile2=`mktemp $base.XXXXXX` || exit 1 | keyfile2=`mktemp $base.XXXXXX` || exit 1 | ||||
keyfile3=`mktemp $base.XXXXXX` || exit 1 | keyfile3=`mktemp $base.XXXXXX` || exit 1 | ||||
keyfile4=`mktemp $base.XXXXXX` || exit 1 | keyfile4=`mktemp $base.XXXXXX` || exit 1 | ||||
keyfile5=`mktemp $base.XXXXXX` || exit 1 | keyfile5=`mktemp $base.XXXXXX` || exit 1 | ||||
mdconfig -a -t malloc -s `expr $sectors + 1` -u $no || exit 1 | md=$(attach_md -t malloc -s `expr $sectors + 1`) | ||||
echo "1..16" | echo "1..16" | ||||
dd if=/dev/random of=${rnd} bs=512 count=${sectors} >/dev/null 2>&1 | dd if=/dev/random of=${rnd} bs=512 count=${sectors} >/dev/null 2>&1 | ||||
hash1=`dd if=${rnd} bs=512 count=${sectors} 2>/dev/null | md5` | hash1=`dd if=${rnd} bs=512 count=${sectors} 2>/dev/null | md5` | ||||
dd if=/dev/random of=${keyfile1} bs=512 count=16 >/dev/null 2>&1 | dd if=/dev/random of=${keyfile1} bs=512 count=16 >/dev/null 2>&1 | ||||
dd if=/dev/random of=${keyfile2} bs=512 count=16 >/dev/null 2>&1 | dd if=/dev/random of=${keyfile2} bs=512 count=16 >/dev/null 2>&1 | ||||
dd if=/dev/random of=${keyfile3} bs=512 count=16 >/dev/null 2>&1 | dd if=/dev/random of=${keyfile3} bs=512 count=16 >/dev/null 2>&1 | ||||
dd if=/dev/random of=${keyfile4} bs=512 count=16 >/dev/null 2>&1 | dd if=/dev/random of=${keyfile4} bs=512 count=16 >/dev/null 2>&1 | ||||
dd if=/dev/random of=${keyfile5} bs=512 count=16 >/dev/null 2>&1 | dd if=/dev/random of=${keyfile5} bs=512 count=16 >/dev/null 2>&1 | ||||
geli init -B none -P -K $keyfile1 md${no} | geli init -B none -P -K $keyfile1 ${md} | ||||
geli attach -p -k $keyfile1 md${no} | geli attach -p -k $keyfile1 ${md} | ||||
dd if=${rnd} of=/dev/md${no}.eli bs=512 count=${sectors} 2>/dev/null | dd if=${rnd} of=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | ||||
rm -f $rnd | rm -f $rnd | ||||
hash2=`dd if=/dev/md${no}.eli bs=512 count=${sectors} 2>/dev/null | md5` | hash2=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5` | ||||
# Change current key (0) for attached provider. | # Change current key (0) for attached provider. | ||||
geli setkey -P -K $keyfile2 md${no} | geli setkey -P -K $keyfile2 ${md} | ||||
if [ $? -eq 0 ]; then | if [ $? -eq 0 ]; then | ||||
echo "ok 1" | echo "ok 1" | ||||
else | else | ||||
echo "not ok 1" | echo "not ok 1" | ||||
fi | fi | ||||
geli detach md${no} | geli detach ${md} | ||||
# We cannot use keyfile1 anymore. | # We cannot use keyfile1 anymore. | ||||
geli attach -p -k $keyfile1 md${no} 2>/dev/null | geli attach -p -k $keyfile1 ${md} 2>/dev/null | ||||
if [ $? -ne 0 ]; then | if [ $? -ne 0 ]; then | ||||
echo "ok 2" | echo "ok 2" | ||||
else | else | ||||
echo "not ok 2" | echo "not ok 2" | ||||
fi | fi | ||||
# Attach with new key. | # Attach with new key. | ||||
geli attach -p -k $keyfile2 md${no} | geli attach -p -k $keyfile2 ${md} | ||||
if [ $? -eq 0 ]; then | if [ $? -eq 0 ]; then | ||||
echo "ok 3" | echo "ok 3" | ||||
else | else | ||||
echo "not ok 3" | echo "not ok 3" | ||||
fi | fi | ||||
hash3=`dd if=/dev/md${no}.eli bs=512 count=${sectors} 2>/dev/null | md5` | hash3=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5` | ||||
# Change key 1 for attached provider. | # Change key 1 for attached provider. | ||||
geli setkey -n 1 -P -K $keyfile3 md${no} | geli setkey -n 1 -P -K $keyfile3 ${md} | ||||
if [ $? -eq 0 ]; then | if [ $? -eq 0 ]; then | ||||
echo "ok 4" | echo "ok 4" | ||||
else | else | ||||
echo "not ok 4" | echo "not ok 4" | ||||
fi | fi | ||||
geli detach md${no} | geli detach ${md} | ||||
# Attach with key 1. | # Attach with key 1. | ||||
geli attach -p -k $keyfile3 md${no} | geli attach -p -k $keyfile3 ${md} | ||||
if [ $? -eq 0 ]; then | if [ $? -eq 0 ]; then | ||||
echo "ok 5" | echo "ok 5" | ||||
else | else | ||||
echo "not ok 5" | echo "not ok 5" | ||||
fi | fi | ||||
hash4=`dd if=/dev/md${no}.eli bs=512 count=${sectors} 2>/dev/null | md5` | hash4=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5` | ||||
geli detach md${no} | geli detach ${md} | ||||
# Change current (1) key for detached provider. | # Change current (1) key for detached provider. | ||||
geli setkey -p -k $keyfile3 -P -K $keyfile4 md${no} | geli setkey -p -k $keyfile3 -P -K $keyfile4 ${md} | ||||
if [ $? -eq 0 ]; then | if [ $? -eq 0 ]; then | ||||
echo "ok 6" | echo "ok 6" | ||||
else | else | ||||
echo "not ok 6" | echo "not ok 6" | ||||
fi | fi | ||||
# We cannot use keyfile3 anymore. | # We cannot use keyfile3 anymore. | ||||
geli attach -p -k $keyfile3 md${no} 2>/dev/null | geli attach -p -k $keyfile3 ${md} 2>/dev/null | ||||
if [ $? -ne 0 ]; then | if [ $? -ne 0 ]; then | ||||
echo "ok 7" | echo "ok 7" | ||||
else | else | ||||
echo "not ok 7" | echo "not ok 7" | ||||
fi | fi | ||||
# Attach with key 1. | # Attach with key 1. | ||||
geli attach -p -k $keyfile4 md${no} | geli attach -p -k $keyfile4 ${md} | ||||
if [ $? -eq 0 ]; then | if [ $? -eq 0 ]; then | ||||
echo "ok 8" | echo "ok 8" | ||||
else | else | ||||
echo "not ok 8" | echo "not ok 8" | ||||
fi | fi | ||||
hash5=`dd if=/dev/md${no}.eli bs=512 count=${sectors} 2>/dev/null | md5` | hash5=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5` | ||||
geli detach md${no} | geli detach ${md} | ||||
# Change key 0 for detached provider. | # Change key 0 for detached provider. | ||||
geli setkey -n 0 -p -k $keyfile4 -P -K $keyfile5 md${no} | geli setkey -n 0 -p -k $keyfile4 -P -K $keyfile5 ${md} | ||||
if [ $? -eq 0 ]; then | if [ $? -eq 0 ]; then | ||||
echo "ok 9" | echo "ok 9" | ||||
else | else | ||||
echo "not ok 9" | echo "not ok 9" | ||||
fi | fi | ||||
# We cannot use keyfile2 anymore. | # We cannot use keyfile2 anymore. | ||||
geli attach -p -k $keyfile2 md${no} 2>/dev/null | geli attach -p -k $keyfile2 ${md} 2>/dev/null | ||||
if [ $? -ne 0 ]; then | if [ $? -ne 0 ]; then | ||||
echo "ok 10" | echo "ok 10" | ||||
else | else | ||||
echo "not ok 10" | echo "not ok 10" | ||||
fi | fi | ||||
# Attach with key 0. | # Attach with key 0. | ||||
geli attach -p -k $keyfile5 md${no} | geli attach -p -k $keyfile5 ${md} | ||||
if [ $? -eq 0 ]; then | if [ $? -eq 0 ]; then | ||||
echo "ok 11" | echo "ok 11" | ||||
else | else | ||||
echo "not ok 11" | echo "not ok 11" | ||||
fi | fi | ||||
hash6=`dd if=/dev/md${no}.eli bs=512 count=${sectors} 2>/dev/null | md5` | hash6=`dd if=/dev/${md}.eli bs=512 count=${sectors} 2>/dev/null | md5` | ||||
geli detach md${no} | geli detach ${md} | ||||
if [ ${hash1} = ${hash2} ]; then | if [ ${hash1} = ${hash2} ]; then | ||||
echo "ok 12" | echo "ok 12" | ||||
else | else | ||||
echo "not ok 12" | echo "not ok 12" | ||||
fi | fi | ||||
if [ ${hash1} = ${hash3} ]; then | if [ ${hash1} = ${hash3} ]; then | ||||
echo "ok 13" | echo "ok 13" | ||||
Show All 20 Lines |