File: check_pollen

package info (click to toggle)
pollinate 4.33-3
  • links: PTS, VCS
  • area: main
  • in suites: bullseye
  • size: 368 kB
  • sloc: sh: 325; makefile: 7
file content (54 lines) | stat: -rw-r--r-- 2,276 bytes parent folder | download | duplicates (4) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
 
#!/bin/sh
#
# check_pollen - verify the pollen server on localhost is operating correctly
#
#  Copyright (C) 2013 Dustin Kirkland <dustin.kirkland@gmail.com>
#
#  This program is free software: you can redistribute it and/or modify
#  it under the terms of the GNU Affero General Public License as published by
#  the Free Software Foundation, version 3 of the License.
#
#  This program is distributed in the hope that it will be useful,
#  but WITHOUT ANY WARRANTY; without even the implied warranty of
#  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#  GNU Affero General Public License for more details.
#
#  You should have received a copy of the GNU Affero General Public License
#  along with this program.  If not, see <http://www.gnu.org/licenses/>.


TMPDIR=$(mktemp -d -t "pollen.XXXXXXXXXXXX")
trap "rm -rf ${TMPDIR} 2>/dev/null || true" EXIT HUP INT QUIT TERM

md5sum1=$(grep pollen /var/log/syslog /var/log/pollen/pollen.log 2>/dev/null || true | md5sum)
pollinate -t -i -s localhost -b -d - >"$TMPDIR/out" 2>"$TMPDIR/err" && RC=0 || RC=$?
md5sum2=$(grep pollen /var/log/syslog /var/log/pollen/pollen.log 2>/dev/null || true | md5sum)
bytes=$(wc -c "$TMPDIR/out" | awk '{print $1}')
bpb=$(ent -t "$TMPDIR/out" | tail -n1 | awk -F, '{print $3}' | awk -F. '{print $1}')
mean=$(ent -t "$TMPDIR/out" | tail -n1 | awk -F, '{print $5}' | awk -F. '{print $1}')

if [ "$RC" != "0" ]; then
	echo "CRITICAL - pollen server did not properly respond to the test request [$RC]"
	cat "$TMPDIR/err" 1>&2
	exit 2
fi
if [ "$md5sum1" = "$md5sum2" ]; then
	echo "CRITICAL - pollen server did not properly log the test request [$RC]"
	grep pollen /var/log/syslog /var/log/pollen/pollen.log 2>/dev/null || true
	exit 2
fi
if [ -z "$bytes" ] || [ "$bytes" -lt 64 ]; then
	echo "WARNING - pollen server did not respond with at least 64 bytes [$bytes]"
	exit 1
fi
if [ -z "$bpb" ] || [ "$bpb" -lt 5 ]; then
	echo "WARNING - pollen server did not respond with sufficient entropy bits per byte [$bpb]"
	exit 1
fi
if [ -z "$mean" ] || [ "$mean" -lt 95 ] || [ "$mean" -gt 160 ]; then
	echo "WARNING - pollen server responded with poor entropy (bad arithmetic mean [$mean])"
	exit 1
fi

echo "OK - pollen server is online and responded correctly to the test request"
exit 0