integrity-hmac.t revision 296373 
1#!/bin/sh
2# $FreeBSD: releng/10.3/tools/regression/geom_eli/integrity-hmac.t 213168 2010-09-25 10:34:42Z pjd $
3
4base=`basename $0`
5no=45
6sectors=100
7keyfile=`mktemp /tmp/$base.XXXXXX` || exit 1
8sector=`mktemp /tmp/$base.XXXXXX` || exit 1
9
10echo "1..2760"
11
12i=1
13for cipher in aes:0 aes:128 aes:256 \
14    aes-xts:0 aes-xts:128 aes-xts:256 \
15    aes-cbc:0 aes-cbc:128 aes-cbc:192 aes-cbc:256 \
16    3des:0 3des:192 \
17    3des-cbc:0 3des-cbc:192 \
18    blowfish:0 blowfish:128 blowfish:160 blowfish:192 blowfish:224 \
19    blowfish:256 blowfish:288 blowfish:320 blowfish:352 blowfish:384 \
20    blowfish:416 blowfish:448 \
21    blowfish-cbc:0 blowfish-cbc:128 blowfish-cbc:160 blowfish-cbc:192 blowfish-cbc:224 \
22    blowfish-cbc:256 blowfish-cbc:288 blowfish-cbc:320 blowfish-cbc:352 blowfish-cbc:384 \
23    blowfish-cbc:416 blowfish-cbc:448 \
24    camellia:0 camellia:128 camellia:192 camellia:256 \
25    camellia-cbc:0 camellia-cbc:128 camellia-cbc:192 camellia-cbc:256; do
26	ealgo=${cipher%%:*}
27	keylen=${cipher##*:}
28	for aalgo in hmac/md5 hmac/sha1 hmac/ripemd160 hmac/sha256 hmac/sha384 hmac/sha512; do
29		for secsize in 512 1024 2048 4096 8192; do
30			mdconfig -a -t malloc -s `expr $secsize \* 2 + 512`b -u $no || exit 1
31
32			dd if=/dev/random of=${keyfile} bs=512 count=16 >/dev/null 2>&1
33
34			geli init -B none -a $aalgo -e $ealgo -l $keylen -P -K $keyfile -s $secsize md${no} 2>/dev/null
35			geli attach -p -k $keyfile md${no}
36
37			dd if=/dev/random of=/dev/md${no}.eli bs=${secsize} count=1 >/dev/null 2>&1
38
39			dd if=/dev/md${no}.eli bs=${secsize} count=1 >/dev/null 2>&1
40			if [ $? -eq 0 ]; then
41				echo "ok $i - aalgo=${aalgo} ealgo=${ealgo} keylen=${keylen} sec=${secsize}"
42			else
43				echo "not ok $i - aalgo=${aalgo} ealgo=${ealgo} keylen=${keylen} sec=${secsize}"
44			fi
45			i=$((i+1))
46
47			geli detach md${no}
48			# Corrupt 8 bytes of HMAC.
49			dd if=/dev/md${no} of=${sector} bs=512 count=1 >/dev/null 2>&1
50			dd if=/dev/random of=${sector} bs=1 count=16 conv=notrunc >/dev/null 2>&1
51			dd if=${sector} of=/dev/md${no} bs=512 count=1 >/dev/null 2>&1
52			geli attach -p -k $keyfile md${no}
53
54			dd if=/dev/md${no}.eli bs=${secsize} count=1 >/dev/null 2>&1
55			if [ $? -ne 0 ]; then
56				echo "ok $i - aalgo=${aalgo} ealgo=${ealgo} keylen=${keylen} sec=${secsize}"
57			else
58				echo "not ok $i - aalgo=${aalgo} ealgo=${ealgo} keylen=${keylen} sec=${secsize}"
59			fi
60			i=$((i+1))
61
62			geli detach md${no}
63			mdconfig -d -u $no
64		done
65	done
66done
67
68rm -f $keyfile $sector
69