tests: add tests for dm-verity support in mount

author Vojtěch Eichler <vojta.eich@gmail.com>

Fri, 27 Aug 2021 08:48:27 +0000 (10:48 +0200)

committer Karel Zak <kzak@redhat.com>

Tue, 31 Aug 2021 09:24:59 +0000 (11:24 +0200)
author Vojtěch Eichler <vojta.eich@gmail.com>
Fri, 27 Aug 2021 08:48:27 +0000 (10:48 +0200)
committer Karel Zak <kzak@redhat.com>
Tue, 31 Aug 2021 09:24:59 +0000 (11:24 +0200)
diff --git a/tests/expected/mount/dm-verity b/tests/expected/mount/dm-verity

new file mode 100644 (file)

index 0000000..3582111
--- /dev/null
+++ b/tests/expected/mount/dm-verity
@@ -0,0 +1 @@
+Success
diff --git a/tests/ts/mount/dm-verity b/tests/ts/mount/dm-verity

new file mode 100755 (executable)

index 0000000..6f41965
--- /dev/null
+++ b/tests/ts/mount/dm-verity
@@ -0,0 +1,64 @@
+#!/bin/bash
+
+#
+# Copyright (C) 2021 Vojtech Eichler <veichler@redhat.com>
+#
+# This file is part of util-linux.
+#
+# This file is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This file is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+TS_TOPDIR="${0%/*}/../.."
+TS_DESC="dm-verity support"
+
+. $TS_TOPDIR/functions.sh
+ts_init "$*"
+
+VERITY_OUTPUT="$TS_OUTPUT.log"
+HASH_DEVICE="$TS_OUTDIR/dm-verity.hash"
+SQUASHFS="$TS_OUTDIR/dm-verity.img"
+VERITY_DEVICE="test_dm_verity"
+VERITY_DEVICE_ABS="/dev/mapper/$VERITY_DEVICE"
+ROOT_HASH_FILE="$TS_OUTDIR/root_hash_file.hash"
+
+ts_check_test_command "$TS_CMD_MOUNT"
+ts_check_test_command "$TS_CMD_UMOUNT"
+
+ts_skip_nonroot
+ts_check_prog "mksquashfs"
+ts_check_prog "veritysetup"
+
+# Make a squashfs out of /etc and prepare verity device out of it
+mksquashfs $TS_SELF $SQUASHFS &>/dev/null || ts_skip "error: mksquashfs on $TS_SELF"
+veritysetup format $SQUASHFS $HASH_DEVICE > $VERITY_OUTPUT || ts_skip "cannot format $SQUASHFS"
+
+# Extract root hash out of veritysetup output
+HASH=$(cat $VERITY_OUTPUT |  awk '/Root hash:/ { print $3 }')  || ts_die "error: extract hash"
+echo $HASH > $ROOT_HASH_FILE
+# Activate verity data device
+veritysetup create $VERITY_DEVICE $SQUASHFS $HASH_DEVICE $HASH  || ts_skip "cannot activate verity device"
+[ -d "$TS_MOUNTPOINT" ] || mkdir -p $TS_MOUNTPOINT
+
+# Variant A - using verity.roothash
+$TS_CMD_MOUNT -o verity.hashdevice=$HASH_DEVICE,verity.roothash=$HASH,verity.hashoffset=0 $VERITY_DEVICE_ABS\
+    $TS_MOUNTPOINT || ts_die "error: mount"
+$TS_CMD_UMOUNT -l $TS_MOUNTPOINT || ts_die "error: umount"
+
+# Variant B - using verity.roothashfile
+$TS_CMD_MOUNT -o verity.hashdevice=$HASH_DEVICE,verity.roothashfile=$ROOT_HASH_FILE $VERITY_DEVICE_ABS\
+    $TS_MOUNTPOINT || ts_die "error: mount"
+$TS_CMD_UMOUNT -l $TS_MOUNTPOINT || ts_die "error: umount"
+
+
+# Cleanup
+dmsetup remove -f $VERITY_DEVICE
+
+ts_log "Success"
+ts_finalize
author	Vojtěch Eichler <vojta.eich@gmail.com>
	Fri, 27 Aug 2021 08:48:27 +0000 (10:48 +0200)
committer	Karel Zak <kzak@redhat.com>
	Tue, 31 Aug 2021 09:24:59 +0000 (11:24 +0200)
tests/expected/mount/dm-verity	[new file with mode: 0644]	patch \| blob
tests/ts/mount/dm-verity	[new file with mode: 0755]	patch \| blob