[thirdparty/systemd.git] / src / journal / test-journal-verify.c

/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/

/***
  This file is part of systemd.

  Copyright 2012 Lennart Poettering

  systemd is free software; you can redistribute it and/or modify it
  under the terms of the GNU Lesser General Public License as published by
  the Free Software Foundation; either version 2.1 of the License, or
  (at your option) any later version.

  systemd is distributed in the hope that it will be useful, but
  WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  Lesser General Public License for more details.

  You should have received a copy of the GNU Lesser General Public License
  along with systemd; If not, see <http://www.gnu.org/licenses/>.
***/

#include <stdio.h>
#include <unistd.h>
#include <fcntl.h>

#include "fd-util.h"
#include "journal-file.h"
#include "journal-verify.h"
#include "log.h"
#include "rm-rf.h"
#include "terminal-util.h"
#include "util.h"

#define N_ENTRIES 6000
#define RANDOM_RANGE 77

static void bit_toggle(const char *fn, uint64_t p) {
        uint8_t b;
        ssize_t r;
        int fd;

        fd = open(fn, O_RDWR|O_CLOEXEC);
        assert_se(fd >= 0);

        r = pread(fd, &b, 1, p/8);
        assert_se(r == 1);

        b ^= 1 << (p % 8);

        r = pwrite(fd, &b, 1, p/8);
        assert_se(r == 1);

        safe_close(fd);
}

static int raw_verify(const char *fn, const char *verification_key) {
        JournalFile *f;
        int r;

        r = journal_file_open(fn, O_RDONLY, 0666, true, !!verification_key, NULL, NULL, NULL, &f);
        if (r < 0)
                return r;

        r = journal_file_verify(f, verification_key, NULL, NULL, NULL, false);
        journal_file_close(f);

        return r;
}

int main(int argc, char *argv[]) {
        char t[] = "/tmp/journal-XXXXXX";
        unsigned n;
        JournalFile *f;
        const char *verification_key = argv[1];
        usec_t from = 0, to = 0, total = 0;
        char a[FORMAT_TIMESTAMP_MAX];
        char b[FORMAT_TIMESTAMP_MAX];
        char c[FORMAT_TIMESPAN_MAX];
        struct stat st;
        uint64_t p;

        /* journal_file_open requires a valid machine id */
        if (access("/etc/machine-id", F_OK) != 0)
                return EXIT_TEST_SKIP;

        log_set_max_level(LOG_DEBUG);

        assert_se(mkdtemp(t));
        assert_se(chdir(t) >= 0);

        log_info("Generating...");

        assert_se(journal_file_open("test.journal", O_RDWR|O_CREAT, 0666, true, !!verification_key, NULL, NULL, NULL, &f) == 0);

        for (n = 0; n < N_ENTRIES; n++) {
                struct iovec iovec;
                struct dual_timestamp ts;
                char *test;

                dual_timestamp_get(&ts);

                assert_se(asprintf(&test, "RANDOM=%lu", random() % RANDOM_RANGE));

                iovec.iov_base = (void*) test;
                iovec.iov_len = strlen(test);

                assert_se(journal_file_append_entry(f, &ts, &iovec, 1, NULL, NULL, NULL) == 0);

                free(test);
        }

        journal_file_close(f);

        log_info("Verifying...");

        assert_se(journal_file_open("test.journal", O_RDONLY, 0666, true, !!verification_key, NULL, NULL, NULL, &f) == 0);
        /* journal_file_print_header(f); */
        journal_file_dump(f);

        assert_se(journal_file_verify(f, verification_key, &from, &to, &total, true) >= 0);

        if (verification_key && JOURNAL_HEADER_SEALED(f->header))
                log_info("=> Validated from %s to %s, %s missing",
                         format_timestamp(a, sizeof(a), from),
                         format_timestamp(b, sizeof(b), to),
                         format_timespan(c, sizeof(c), total > to ? total - to : 0, 0));

        journal_file_close(f);

        if (verification_key) {
                log_info("Toggling bits...");

                assert_se(stat("test.journal", &st) >= 0);

                for (p = 38448*8+0; p < ((uint64_t) st.st_size * 8); p ++) {
                        bit_toggle("test.journal", p);

                        log_info("[ %"PRIu64"+%"PRIu64"]", p / 8, p % 8);

                        if (raw_verify("test.journal", verification_key) >= 0)
                                log_notice(ANSI_HIGHLIGHT_RED ">>>> %"PRIu64" (bit %"PRIu64") can be toggled without detection." ANSI_NORMAL, p / 8, p % 8);

                        bit_toggle("test.journal", p);
                }
        }

        log_info("Exiting...");

        assert_se(rm_rf(t, REMOVE_ROOT|REMOVE_PHYSICAL) >= 0);

        return 0;
}
Commit	Line	Data
0284adc6 LP	1	/-- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil --/
	2
	3	/***
	4	This file is part of systemd.
	5
	6	Copyright 2012 Lennart Poettering
	7
	8	systemd is free software; you can redistribute it and/or modify it
	9	under the terms of the GNU Lesser General Public License as published by
	10	the Free Software Foundation; either version 2.1 of the License, or
	11	(at your option) any later version.
	12
	13	systemd is distributed in the hope that it will be useful, but
	14	WITHOUT ANY WARRANTY; without even the implied warranty of
	15	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	16	Lesser General Public License for more details.
	17
	18	You should have received a copy of the GNU Lesser General Public License
	19	along with systemd; If not, see <http://www.gnu.org/licenses/>.
	20	***/
	21
	22	#include <stdio.h>
	23	#include <unistd.h>
	24	#include <fcntl.h>
	25
3ffd4af2	26	#include "fd-util.h"
0284adc6 LP	27	#include "journal-file.h"
0284adc6 LP	28	#include "journal-verify.h"
3ffd4af2 LP	29	#include "log.h"
3ffd4af2 LP	30	#include "rm-rf.h"
288a74cc	31	#include "terminal-util.h"
3ffd4af2	32	#include "util.h"
0284adc6 LP	33
	34	#define N_ENTRIES 6000
	35	#define RANDOM_RANGE 77
	36
b72631e5 LP	37	static void bit_toggle(const char *fn, uint64_t p) {
	38	uint8_t b;
	39	ssize_t r;
	40	int fd;
	41
	42	fd = open(fn, O_RDWR\|O_CLOEXEC);
787784c4	43	assert_se(fd >= 0);
b72631e5 LP	44
b72631e5 LP	45	r = pread(fd, &b, 1, p/8);
787784c4	46	assert_se(r == 1);
b72631e5 LP	47
	48	b ^= 1 << (p % 8);
	49
	50	r = pwrite(fd, &b, 1, p/8);
787784c4	51	assert_se(r == 1);
b72631e5	52
03e334a1	53	safe_close(fd);
b72631e5 LP	54	}
	55
	56	static int raw_verify(const char fn, const char verification_key) {
	57	JournalFile *f;
	58	int r;
	59
feb12d3e	60	r = journal_file_open(fn, O_RDONLY, 0666, true, !!verification_key, NULL, NULL, NULL, &f);
b72631e5 LP	61	if (r < 0)
	62	return r;
	63
	64	r = journal_file_verify(f, verification_key, NULL, NULL, NULL, false);
	65	journal_file_close(f);
	66
	67	return r;
	68	}
	69
0284adc6 LP	70	int main(int argc, char *argv[]) {
	71	char t[] = "/tmp/journal-XXXXXX";
	72	unsigned n;
	73	JournalFile *f;
14d10188	74	const char *verification_key = argv[1];
b72631e5	75	usec_t from = 0, to = 0, total = 0;
6c7be122 LP	76	char a[FORMAT_TIMESTAMP_MAX];
	77	char b[FORMAT_TIMESTAMP_MAX];
	78	char c[FORMAT_TIMESPAN_MAX];
b72631e5 LP	79	struct stat st;
b72631e5 LP	80	uint64_t p;
0284adc6	81
143bfdaf HHPF	82	/* journal_file_open requires a valid machine id */
	83	if (access("/etc/machine-id", F_OK) != 0)
	84	return EXIT_TEST_SKIP;
	85
0284adc6 LP	86	log_set_max_level(LOG_DEBUG);
	87
	88	assert_se(mkdtemp(t));
	89	assert_se(chdir(t) >= 0);
	90
	91	log_info("Generating...");
	92
14d10188	93	assert_se(journal_file_open("test.journal", O_RDWR\|O_CREAT, 0666, true, !!verification_key, NULL, NULL, NULL, &f) == 0);
0284adc6 LP	94
	95	for (n = 0; n < N_ENTRIES; n++) {
	96	struct iovec iovec;
	97	struct dual_timestamp ts;
	98	char *test;
	99
	100	dual_timestamp_get(&ts);
	101
	102	assert_se(asprintf(&test, "RANDOM=%lu", random() % RANDOM_RANGE));
	103
	104	iovec.iov_base = (void*) test;
	105	iovec.iov_len = strlen(test);
	106
	107	assert_se(journal_file_append_entry(f, &ts, &iovec, 1, NULL, NULL, NULL) == 0);
	108
	109	free(test);
	110	}
	111
	112	journal_file_close(f);
	113
	114	log_info("Verifying...");
	115
feb12d3e	116	assert_se(journal_file_open("test.journal", O_RDONLY, 0666, true, !!verification_key, NULL, NULL, NULL, &f) == 0);
f7fab8a5 LP	117	/* journal_file_print_header(f); */
f7fab8a5 LP	118	journal_file_dump(f);
3223f44f	119
b72631e5	120	assert_se(journal_file_verify(f, verification_key, &from, &to, &total, true) >= 0);
6c7be122	121
ece174c5	122	if (verification_key && JOURNAL_HEADER_SEALED(f->header))
b72631e5 LP	123	log_info("=> Validated from %s to %s, %s missing",
	124	format_timestamp(a, sizeof(a), from),
	125	format_timestamp(b, sizeof(b), to),
2fa4092c	126	format_timespan(c, sizeof(c), total > to ? total - to : 0, 0));
feb12d3e	127
0284adc6 LP	128	journal_file_close(f);
0284adc6 LP	129
f7fab8a5 LP	130	if (verification_key) {
f7fab8a5 LP	131	log_info("Toggling bits...");
b72631e5	132
f7fab8a5	133	assert_se(stat("test.journal", &st) >= 0);
b72631e5	134
f7fab8a5 LP	135	for (p = 384488+0; p < ((uint64_t) st.st_size 8); p ++) {
f7fab8a5 LP	136	bit_toggle("test.journal", p);
b72631e5	137
507f22bd	138	log_info("[ %"PRIu64"+%"PRIu64"]", p / 8, p % 8);
b72631e5	139
f7fab8a5	140	if (raw_verify("test.journal", verification_key) >= 0)
1fc464f6	141	log_notice(ANSI_HIGHLIGHT_RED ">>>> %"PRIu64" (bit %"PRIu64") can be toggled without detection." ANSI_NORMAL, p / 8, p % 8);
b72631e5	142
f7fab8a5 LP	143	bit_toggle("test.journal", p);
f7fab8a5 LP	144	}
b72631e5 LP	145	}
b72631e5 LP	146
0284adc6 LP	147	log_info("Exiting...");
0284adc6 LP	148
c6878637	149	assert_se(rm_rf(t, REMOVE_ROOT\|REMOVE_PHYSICAL) >= 0);
0284adc6 LP	150
	151	return 0;
	152	}