cachepc-qemu

Fork of AMDESE/qemu with changes for cachepc side-channel attack
git clone https://git.sinitax.com/sinitax/cachepc-qemu
Log | Files | Refs | Submodules | LICENSE | sfeed.txt

263 (2615B)

      1#!/usr/bin/env bash
      2# group: rw quick
      3#
      4# Test encrypted write that crosses cluster boundary of two unallocated clusters
      5# Based on 188
      6#
      7# Copyright (C) 2019 Red Hat, Inc.
      8#
      9# This program is free software; you can redistribute it and/or modify
     10# it under the terms of the GNU General Public License as published by
     11# the Free Software Foundation; either version 2 of the License, or
     12# (at your option) any later version.
     13#
     14# This program is distributed in the hope that it will be useful,
     15# but WITHOUT ANY WARRANTY; without even the implied warranty of
     16# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
     17# GNU General Public License for more details.
     18#
     19# You should have received a copy of the GNU General Public License
     20# along with this program.  If not, see <http://www.gnu.org/licenses/>.
     21#
     22
     23# creator
     24owner=mlevitsk@redhat.com
     25
     26seq=`basename $0`
     27echo "QA output created by $seq"
     28
     29status=1	# failure is the default!
     30
     31_cleanup()
     32{
     33	_cleanup_test_img
     34}
     35trap "_cleanup; exit \$status" 0 1 2 3 15
     36
     37# get standard environment, filters and checks
     38. ./common.rc
     39. ./common.filter
     40
     41_supported_fmt qcow2
     42_supported_proto generic
     43_supported_os Linux
     44_require_working_luks
     45
     46
     47size=1M
     48
     49SECRET="secret,id=sec0,data=astrochicken"
     50QEMU_IO_OPTIONS=$QEMU_IO_OPTIONS_NO_FMT
     51
     52
     53_run_test()
     54{
     55	echo "== reading the whole image =="
     56	$QEMU_IO --object $SECRET -c "read -P 0 0 $size" --image-opts "$1" | _filter_qemu_io | _filter_testdir
     57
     58	echo
     59	echo "== write two 512 byte sectors on a cluster boundary =="
     60	$QEMU_IO --object $SECRET -c "write -P 0xAA 0xFE00 0x400" --image-opts "$1" | _filter_qemu_io | _filter_testdir
     61
     62	echo
     63	echo "== verify that the rest of the image is not changed =="
     64	$QEMU_IO --object $SECRET -c "read -P 0x00 0x00000 0xFE00" --image-opts "$1" | _filter_qemu_io | _filter_testdir
     65	$QEMU_IO --object $SECRET -c "read -P 0xAA 0x0FE00 0x400" --image-opts "$1" | _filter_qemu_io | _filter_testdir
     66	$QEMU_IO --object $SECRET -c "read -P 0x00 0x10200 0xEFE00" --image-opts "$1" | _filter_qemu_io | _filter_testdir
     67
     68}
     69
     70
     71echo
     72echo "testing LUKS qcow2 encryption"
     73echo
     74
     75_make_test_img --object $SECRET -o "encrypt.format=luks,encrypt.key-secret=sec0,encrypt.iter-time=10,cluster_size=64K" $size
     76_run_test "driver=$IMGFMT,encrypt.key-secret=sec0,file.filename=$TEST_IMG"
     77_cleanup_test_img
     78
     79echo
     80echo "testing legacy AES qcow2 encryption"
     81echo
     82
     83
     84_make_test_img --object $SECRET -o "encrypt.format=aes,encrypt.key-secret=sec0,cluster_size=64K" $size
     85_run_test "driver=$IMGFMT,encrypt.key-secret=sec0,file.filename=$TEST_IMG"
     86_cleanup_test_img
     87
     88
     89
     90# success, all done
     91echo "*** done"
     92rm -f $seq.full
     93status=0