]>
git.proxmox.com Git - systemd.git/blob - src/journal/test-journal-verify.c
1 /* SPDX-License-Identifier: LGPL-2.1+ */
3 This file is part of systemd.
5 Copyright 2012 Lennart Poettering
7 systemd is free software; you can redistribute it and/or modify it
8 under the terms of the GNU Lesser General Public License as published by
9 the Free Software Foundation; either version 2.1 of the License, or
10 (at your option) any later version.
12 systemd is distributed in the hope that it will be useful, but
13 WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 Lesser General Public License for more details.
17 You should have received a copy of the GNU Lesser General Public License
18 along with systemd; If not, see <http://www.gnu.org/licenses/>.
26 #include "journal-file.h"
27 #include "journal-verify.h"
30 #include "terminal-util.h"
33 #define N_ENTRIES 6000
34 #define RANDOM_RANGE 77
36 static void bit_toggle(const char *fn
, uint64_t p
) {
41 fd
= open(fn
, O_RDWR
|O_CLOEXEC
);
44 r
= pread(fd
, &b
, 1, p
/8);
49 r
= pwrite(fd
, &b
, 1, p
/8);
55 static int raw_verify(const char *fn
, const char *verification_key
) {
59 r
= journal_file_open(-1, fn
, O_RDONLY
, 0666, true, !!verification_key
, NULL
, NULL
, NULL
, NULL
, &f
);
63 r
= journal_file_verify(f
, verification_key
, NULL
, NULL
, NULL
, false);
64 (void) journal_file_close(f
);
69 int main(int argc
, char *argv
[]) {
70 char t
[] = "/tmp/journal-XXXXXX";
73 const char *verification_key
= argv
[1];
74 usec_t from
= 0, to
= 0, total
= 0;
75 char a
[FORMAT_TIMESTAMP_MAX
];
76 char b
[FORMAT_TIMESTAMP_MAX
];
77 char c
[FORMAT_TIMESPAN_MAX
];
81 /* journal_file_open requires a valid machine id */
82 if (access("/etc/machine-id", F_OK
) != 0)
83 return EXIT_TEST_SKIP
;
85 log_set_max_level(LOG_DEBUG
);
87 assert_se(mkdtemp(t
));
88 assert_se(chdir(t
) >= 0);
90 log_info("Generating...");
92 assert_se(journal_file_open(-1, "test.journal", O_RDWR
|O_CREAT
, 0666, true, !!verification_key
, NULL
, NULL
, NULL
, NULL
, &f
) == 0);
94 for (n
= 0; n
< N_ENTRIES
; n
++) {
96 struct dual_timestamp ts
;
99 dual_timestamp_get(&ts
);
101 assert_se(asprintf(&test
, "RANDOM=%lu", random() % RANDOM_RANGE
));
103 iovec
.iov_base
= (void*) test
;
104 iovec
.iov_len
= strlen(test
);
106 assert_se(journal_file_append_entry(f
, &ts
, &iovec
, 1, NULL
, NULL
, NULL
) == 0);
111 (void) journal_file_close(f
);
113 log_info("Verifying...");
115 assert_se(journal_file_open(-1, "test.journal", O_RDONLY
, 0666, true, !!verification_key
, NULL
, NULL
, NULL
, NULL
, &f
) == 0);
116 /* journal_file_print_header(f); */
117 journal_file_dump(f
);
119 assert_se(journal_file_verify(f
, verification_key
, &from
, &to
, &total
, true) >= 0);
121 if (verification_key
&& JOURNAL_HEADER_SEALED(f
->header
))
122 log_info("=> Validated from %s to %s, %s missing",
123 format_timestamp(a
, sizeof(a
), from
),
124 format_timestamp(b
, sizeof(b
), to
),
125 format_timespan(c
, sizeof(c
), total
> to
? total
- to
: 0, 0));
127 (void) journal_file_close(f
);
129 if (verification_key
) {
130 log_info("Toggling bits...");
132 assert_se(stat("test.journal", &st
) >= 0);
134 for (p
= 38448*8+0; p
< ((uint64_t) st
.st_size
* 8); p
++) {
135 bit_toggle("test.journal", p
);
137 log_info("[ %"PRIu64
"+%"PRIu64
"]", p
/ 8, p
% 8);
139 if (raw_verify("test.journal", verification_key
) >= 0)
140 log_notice(ANSI_HIGHLIGHT_RED
">>>> %"PRIu64
" (bit %"PRIu64
") can be toggled without detection." ANSI_NORMAL
, p
/ 8, p
% 8);
142 bit_toggle("test.journal", p
);
146 log_info("Exiting...");
148 assert_se(rm_rf(t
, REMOVE_ROOT
|REMOVE_PHYSICAL
) >= 0);