File: fde-setup_test.go

package info (click to toggle)
snapd 2.72-1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 80,412 kB
  • sloc: sh: 16,506; ansic: 16,211; python: 11,213; makefile: 1,919; exp: 190; awk: 58; xml: 22
file content (80 lines) | stat: -rw-r--r-- 2,535 bytes parent folder | download | duplicates (4) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
 
// -*- Mode: Go; indent-tabs-mode: t -*-

/*
 * Copyright (C) 2021 Canonical Ltd
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License version 3 as
 * published by the Free Software Foundation.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 *
 */

package main_test

import (
	"bytes"
	"encoding/base64"
	"fmt"
	"path/filepath"
	"testing"

	. "gopkg.in/check.v1"

	fdeHook "github.com/snapcore/snapd/tests/lib/fde-setup-hook"
	"github.com/snapcore/snapd/testutil"
)

func Test(t *testing.T) { TestingT(t) }

type fdeSetupSuite struct{}

var _ = Suite(&fdeSetupSuite{})

var (
	// there is a static handle used in the test fde-hook
	b64testKeyHandle = base64.StdEncoding.EncodeToString(fdeHook.TestKeyHandle)

	// the test hook uses simple xor13 encryption
	mockKey          = []byte("encrypted-payload")
	b64Key           = base64.StdEncoding.EncodeToString(mockKey)
	mockEncryptedKey = fdeHook.Xor13(mockKey)
	b64EncryptedKey  = base64.StdEncoding.EncodeToString(mockEncryptedKey)
)

func (r *fdeSetupSuite) TestRunFdeSetup(c *C) {
	fdeSetupResultStdin := filepath.Join(c.MkDir(), "stdin")
	mockedSnapctl := testutil.MockCommand(c, "snapctl", fmt.Sprintf(`
if [ "$1" = "fde-setup-request" ]; then
    echo '{"op":"initial-setup","key":"%s","key-name":"key-name"}'
elif [ "$1" = "fde-setup-result" ]; then
    cat - > "%s"
else
    echo "Unexpected argument $1"
    exit 1
fi
`, b64Key, fdeSetupResultStdin))
	defer mockedSnapctl.Restore()
	err := fdeHook.RunFdeSetup()
	c.Assert(err, IsNil)
	c.Check(fdeSetupResultStdin, testutil.FileEquals, fmt.Sprintf(`{"sealed-key":"%s","handle":"%s"}`, b64EncryptedKey, b64testKeyHandle))
}

func (r *fdeSetupSuite) TestRunFdeRevealKey(c *C) {
	// strings are base64 encoded
	mockedStdin := bytes.NewBufferString(fmt.Sprintf(`{"op":"reveal","handle":"%s","sealed-key":"%s"}`, b64testKeyHandle, b64EncryptedKey))
	mockedStdout := bytes.NewBuffer(nil)
	restore := fdeHook.MockStdinStdout(mockedStdin, mockedStdout)
	defer restore()

	err := fdeHook.RunFdeRevealKey()
	c.Assert(err, IsNil)
	c.Check(mockedStdout.String(), Equals, fmt.Sprintf(`{"key":"%s"}`, b64Key)+"\n")
}