4 # Test case QMP's encrypted key management
6 # Copyright (C) 2019 Red Hat, Inc.
8 # This program is free software; you can redistribute it and/or modify
9 # it under the terms of the GNU General Public License as published by
10 # the Free Software Foundation; either version 2 of the License, or
11 # (at your option) any later version.
13 # This program is distributed in the hope that it will be useful,
14 # but WITHOUT ANY WARRANTY; without even the implied warranty of
15 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 # GNU General Public License for more details.
18 # You should have received a copy of the GNU General Public License
19 # along with this program. If not, see <http://www.gnu.org/licenses/>.
27 test_img = os.path.join(iotests.test_dir, 'test.img')
30 def __init__(self, index):
31 self._id = "keysec" + str(index)
32 # you are not supposed to see the password...
33 self._secret = "hunter" + str(index)
41 def to_cmdline_object(self):
42 return [ "secret,id=" + self._id + ",data=" + self._secret]
44 def to_qmp_object(self):
45 return { "qom_type" : "secret", "id": self.id(),
46 "data": self.secret() }
48 ################################################################################
49 class EncryptionSetupTestCase(iotests.QMPTestCase):
54 self.vm = iotests.VM()
57 # create the secrets and load 'em into the VM
58 self.secrets = [ Secret(i) for i in range(0, 6) ]
59 for secret in self.secrets:
60 self.vm.cmd("object-add", **secret.to_qmp_object())
62 if iotests.imgfmt == "qcow2":
64 self.img_opts = [ '-o', "encrypt.format=luks" ]
74 ###########################################################################
75 # create the encrypted block device
76 def createImg(self, file, secret):
80 '--object', *secret.to_cmdline_object(),
82 '-o', self.pfx + 'key-secret=' + secret.id(),
83 '-o', self.pfx + 'iter-time=10',
88 ###########################################################################
89 # open an encrypted block device
90 def openImageQmp(self, id, file, secret, read_only = False):
93 'key-secret' : secret.id()
96 if iotests.imgfmt == "qcow2":
104 self.vm.cmd('blockdev-add', {
105 'driver': iotests.imgfmt,
107 'read-only': read_only,
113 'filename': test_img,
118 # close the encrypted block device
119 def closeImageQmp(self, id):
120 self.vm.cmd('blockdev-del', {'node-name': id})
122 ###########################################################################
123 # add a key to an encrypted block device
124 def addKeyQmp(self, id, new_secret, secret = None,
125 slot = None, force = False):
129 'new-secret' : new_secret.id(),
134 crypt_options['keyslot'] = slot
138 crypt_options['secret'] = secret.id()
140 if iotests.imgfmt == "qcow2":
141 crypt_options['format'] = 'luks'
143 'encrypt': crypt_options
148 'job-id' : 'job_add_key',
150 'driver' : iotests.imgfmt,
158 #TODO: check what jobs return
159 self.vm.cmd('x-blockdev-amend', **args)
160 self.vm.run_job('job_add_key')
162 # erase a key from an encrypted block device
163 def eraseKeyQmp(self, id, old_secret = None, slot = None, force = False):
166 'state' : 'inactive',
170 crypt_options['keyslot'] = slot
171 if old_secret != None:
172 crypt_options['old-secret'] = old_secret.id()
174 if iotests.imgfmt == "qcow2":
175 crypt_options['format'] = 'luks'
177 'encrypt': crypt_options
182 'job-id' : 'job_erase_key',
184 'driver' : iotests.imgfmt,
192 self.vm.cmd('x-blockdev-amend', **args)
193 self.vm.run_job('job_erase_key')
195 ###########################################################################
196 # create image, and change its key
197 def testChangeKey(self):
199 # create the image with secret0 and open it
200 self.createImg(test_img, self.secrets[0]);
201 self.openImageQmp("testdev", test_img, self.secrets[0])
204 self.addKeyQmp("testdev", new_secret = self.secrets[1])
207 self.addKeyQmp("testdev", new_secret = self.secrets[2], slot=5)
209 # erase key from slot 0
210 self.eraseKeyQmp("testdev", old_secret = self.secrets[0])
212 #reopen the image with secret1
213 self.closeImageQmp("testdev")
214 self.openImageQmp("testdev", test_img, self.secrets[1])
216 # close and erase the image for good
217 self.closeImageQmp("testdev")
220 # test that if we erase the old password,
221 # we can still change the encryption keys using 'old-secret'
222 def testOldPassword(self):
224 # create the image with secret0 and open it
225 self.createImg(test_img, self.secrets[0]);
226 self.openImageQmp("testdev", test_img, self.secrets[0])
229 self.addKeyQmp("testdev", new_secret = self.secrets[1])
231 # erase key from slot 0
232 self.eraseKeyQmp("testdev", old_secret = self.secrets[0])
234 # this will fail as the old password is no longer valid
235 self.addKeyQmp("testdev", new_secret = self.secrets[2])
238 self.addKeyQmp("testdev", new_secret = self.secrets[2], secret = self.secrets[1])
240 # close and erase the image for good
241 self.closeImageQmp("testdev")
244 def testUseForceLuke(self):
246 self.createImg(test_img, self.secrets[0]);
247 self.openImageQmp("testdev", test_img, self.secrets[0])
249 # Add bunch of secrets
250 self.addKeyQmp("testdev", new_secret = self.secrets[1], slot=4)
251 self.addKeyQmp("testdev", new_secret = self.secrets[4], slot=2)
253 # overwrite an active secret
254 self.addKeyQmp("testdev", new_secret = self.secrets[5], slot=2)
255 self.addKeyQmp("testdev", new_secret = self.secrets[5], slot=2, force=True)
257 self.addKeyQmp("testdev", new_secret = self.secrets[0])
259 # Now erase all the secrets
260 self.eraseKeyQmp("testdev", old_secret = self.secrets[5])
261 self.eraseKeyQmp("testdev", slot=4)
264 self.eraseKeyQmp("testdev", old_secret = self.secrets[0])
265 self.eraseKeyQmp("testdev", old_secret = self.secrets[0], force=True)
267 self.closeImageQmp("testdev")
271 if __name__ == '__main__':
272 iotests.verify_working_luks()
273 # Encrypted formats support
274 iotests.activate_logging()
275 iotests.main(supported_fmts = ['qcow2', 'luks'])