cachepc-qemu

Fork of AMDESE/qemu with changes for cachepc side-channel attack
git clone https://git.sinitax.com/sinitax/cachepc-qemu
Log | Files | Refs | Submodules | LICENSE | sfeed.txt

078 (2745B)

      1#!/usr/bin/env bash
      2# group: rw quick
      3#
      4# bochs format input validation tests
      5#
      6# Copyright (C) 2013 Red Hat, Inc.
      7#
      8# This program is free software; you can redistribute it and/or modify
      9# it under the terms of the GNU General Public License as published by
     10# the Free Software Foundation; either version 2 of the License, or
     11# (at your option) any later version.
     12#
     13# This program is distributed in the hope that it will be useful,
     14# but WITHOUT ANY WARRANTY; without even the implied warranty of
     15# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
     16# GNU General Public License for more details.
     17#
     18# You should have received a copy of the GNU General Public License
     19# along with this program.  If not, see <http://www.gnu.org/licenses/>.
     20#
     21
     22# creator
     23owner=kwolf@redhat.com
     24
     25seq=`basename $0`
     26echo "QA output created by $seq"
     27
     28status=1	# failure is the default!
     29
     30_cleanup()
     31{
     32	_cleanup_test_img
     33}
     34trap "_cleanup; exit \$status" 0 1 2 3 15
     35
     36# get standard environment, filters and checks
     37. ./common.rc
     38. ./common.filter
     39
     40_supported_fmt bochs
     41_supported_proto file
     42_supported_os Linux
     43
     44catalog_size_offset=$((0x48))
     45extent_size_offset=$((0x50))
     46disk_size_offset=$((0x58))
     47
     48echo
     49echo "== Read from a valid image =="
     50_use_sample_img empty.bochs.bz2
     51{ $QEMU_IO -r -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir
     52
     53echo
     54echo "== Negative catalog size =="
     55_use_sample_img empty.bochs.bz2
     56poke_file "$TEST_IMG" "$catalog_size_offset" "\xff\xff\xff\xff"
     57{ $QEMU_IO -r -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir
     58
     59echo
     60echo "== Overflow for catalog size * sizeof(uint32_t) =="
     61_use_sample_img empty.bochs.bz2
     62poke_file "$TEST_IMG" "$catalog_size_offset" "\x00\x00\x00\x40"
     63{ $QEMU_IO -r -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir
     64
     65echo
     66echo "== Too small catalog bitmap for image size =="
     67_use_sample_img empty.bochs.bz2
     68poke_file "$TEST_IMG" "$disk_size_offset" "\x00\xc0\x0f\x00\x00\x00\x00\x7f"
     69{ $QEMU_IO -r -c "read 2T 4k" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir
     70
     71_use_sample_img empty.bochs.bz2
     72poke_file "$TEST_IMG" "$catalog_size_offset" "\x10\x00\x00\x00"
     73{ $QEMU_IO -r -c "read 0xfbe00 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir
     74
     75echo
     76echo "== Negative extent size =="
     77_use_sample_img empty.bochs.bz2
     78poke_file "$TEST_IMG" "$extent_size_offset" "\x00\x00\x00\x80"
     79{ $QEMU_IO -r -c "read 768k 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir
     80
     81echo
     82echo "== Zero extent size =="
     83_use_sample_img empty.bochs.bz2
     84poke_file "$TEST_IMG" "$extent_size_offset" "\x00\x00\x00\x00"
     85{ $QEMU_IO -r -c "read 0 512" $TEST_IMG; } 2>&1 | _filter_qemu_io | _filter_testdir
     86
     87# success, all done
     88echo "*** done"
     89rm -f $seq.full
     90status=0