list-recursive-luks1 2.3 KB

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485
  1. #!/bin/bash -ex
  2. # vim: set tabstop=8 shiftwidth=4 softtabstop=4 expandtab smarttab colorcolumn=80:
  3. #
  4. # Copyright (c) 2019 Red Hat, Inc.
  5. # Author: Sergio Correia <scorreia@redhat.com>
  6. #
  7. # This program is free software: you can redistribute it and/or modify
  8. # it under the terms of the GNU General Public License as published by
  9. # the Free Software Foundation, either version 3 of the License, or
  10. # (at your option) any later version.
  11. #
  12. # This program is distributed in the hope that it will be useful,
  13. # but WITHOUT ANY WARRANTY; without even the implied warranty of
  14. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  15. # GNU General Public License for more details.
  16. #
  17. # You should have received a copy of the GNU General Public License
  18. # along with this program. If not, see <http://www.gnu.org/licenses/>.
  19. #
  20. TEST=$(basename "${0}")
  21. . tests-common-functions
  22. on_exit() {
  23. [ -d "${TMP}" ] && rm -rf "${TMP}"
  24. }
  25. trap 'on_exit' EXIT
  26. trap 'exit' ERR
  27. TMP="$(mktemp -d)"
  28. ADV="${TMP}/adv.jws"
  29. create_tang_adv "${ADV}"
  30. PIN="sss"
  31. CFG=$(printf '
  32. {
  33. "t": 1,
  34. "pins": {
  35. "sss": {
  36. "t": 1,
  37. "pins": {
  38. "sss": {
  39. "t": 1,
  40. "pins": {
  41. "tang": [
  42. {
  43. "url": "ADDR","adv": "%s"
  44. }
  45. ]
  46. }
  47. }
  48. }
  49. }
  50. }
  51. }
  52. ' "${ADV}")
  53. # LUKS1.
  54. DEV="${TMP}/luks1-device"
  55. UUID="cb6e8904-81ff-40da-a84a-07ab9ab5715e"
  56. new_device "luks1" "${DEV}"
  57. if ! clevis luks bind -f -d "${DEV}" "${PIN}" "${CFG}" <<< "${DEFAULT_PASS}"; then
  58. error "${TEST}: Binding is expected to succeed when given a correct (${DEFAULT_PASS}) password."
  59. fi
  60. SLT=1
  61. if ! read -r slot pin cfg < <(clevis luks list -d "${DEV}" -s "${SLT}"); then
  62. error "${TEST}: clevis luks list is expected to succeed for device(${DEV}) and slot (${SLT})"
  63. fi
  64. if [[ "${slot}" != "${SLT}:" ]]; then
  65. error "${TEST}: slot (${slot}) is expected to be ${SLT}"
  66. fi
  67. if [[ "${pin}" != "${PIN}" ]]; then
  68. error "${TEST}: pin (${pin}) is expected to be '${PIN}'"
  69. fi
  70. to_remove_from_cfg=$(printf ',"adv": "%s"' "${ADV}")
  71. cfg_for_cmp=${cfg//"${to_remove_from_cfg}"/}
  72. if ! pin_cfg_equal "${cfg}" "${cfg_for_cmp}"; then
  73. error "${TEST}: config obtained from clevis luks list (${cfg}) is expected to match the one used to bind the test (${cfg_for_cmp})"
  74. fi