summaryrefslogtreecommitdiffstats
path: root/test/TEST-24-CRYPTSETUP (follow)
Commit message (Collapse)AuthorAgeFilesLines
* test: fix TEST-24-CRYPTSETUP on SUSEFranck Bui2024-07-021-1/+1
| | | | /etc/systemd/journald.conf.d drop-in dir already exists on SUSE.
* test: Use virtio-scsi for keydev driveDaan De Meyer2024-05-291-1/+2
| | | | | Otherwise qemu defaults to ide for which the module isn't always available (e.g. it's missing in the debian linux cloud images).
* test: Run tests that don't need a vm in systemd-nspawnDaan De Meyer2024-05-291-0/+1
| | | | | If we're not running the test as root, stick to using a virtual machine, as mkosi can't do rootless nspawn yet.
* test: Enable TEST-24-CRYPTSETUP for mkosiDaan De Meyer2024-05-163-1/+27
| | | | | | | | Encrypted /var is skipped because meson's limitations make per test images not really feasible and we can't encrypt /var by default because it slows down the image build too much. Co-authored-by: Richard Maw <richard.maw@codethink.co.uk>
* TEST-24-CRYPTSETUP: Store tokens in /usrDaan De Meyer2024-05-161-3/+3
| | | | We want to be able to boot with empty /var.
* test: Disable tests via 'enabled' fieldDaan De Meyer2024-05-141-0/+8
| | | | | This allows doing other stuff with the test without actually defining the test, such as generating a service unit automatically.
* test: forward journal to console in TEST-24-CRYPTSETUPFrantisek Sumsal2024-04-091-0/+3
| | | | | | If we fail to mount the encrypted /var during boot we're left with nothing to debug, so let's do the same thing we do for TEST-08-INITRD and forward journal to the console.
* cryptenroll: allow to use a public key on a tokenVladimir Stoiakin2024-02-021-0/+4
| | | | | | This patch allows systemd-cryptenroll to enroll directly with a public key if a certificate is missing on a token. Fixes: #30675
* test: use a dropin for the journald snippetFrantisek Sumsal2024-01-311-3/+4
| | | | | The original way of appending to /etc/systemd/journald.conf doesn't work anymore, since we no longer ship the default configs in /etc/.
* TEST-24-CRYPTSETUP: depend on OpenSSL for testing PKCS#11 tokensVladimir Stoiakin2024-01-061-0/+4
|
* TEST-24-CRYPTSETUP: add test for PKCS#11 tokensVladimir Stoiakin2023-12-202-1/+124
| | | | Introduces new dependencies on SoftHSM, OpenSC and GnuTLS for the test.
* test: create ESP and xbootldr partitionsYu Watanabe2023-12-131-3/+3
|
* test: make sure we unmount /var late during shutdownFrantisek Sumsal2023-06-051-1/+7
| | | | To avoid the "mountpoint is busy" error.
* test: use check_result_common()Frantisek Sumsal2023-06-051-9/+4
| | | | | | The TEST-24 has been silently timing out for quite a while in the C8S job, as the check_result_qemu() override lacked some error checks, whoopsie.
* test: clean up the test cleanup a bitFrantisek Sumsal2023-06-051-2/+3
|
* test: make the data partition larger for the cryptsetup testFrantisek Sumsal2023-06-051-0/+1
| | | | | As we use it for /var and with the default 100 MiB there's not enough space for the journal.
* test: drop whitespace after shell redirection operatorsZbigniew Jędrzejewski-Szmek2023-02-061-1/+1
| | | | | | | | | | (The one case that is left unchanged is '< <(subcommand)'.) This way, the style with no gap was already dominant. This way, the reader immediately knows that ' < ' is a comparison operator and ' << ' is a shift. In a few cases, replace custom EOF replacement by just EOF. There is no point in using someting like "_EOL" unless "EOF" appears in the text.
* test: store the key on a separate deviceFrantisek Sumsal2022-05-261-5/+9
|
* test: generate a custom initrd for TEST-24 if $INITRD is unsetFrantisek Sumsal2022-05-261-0/+24
| | | | Co-Authored-By: Yu Watanabe <watanabe.yu+github@gmail.com>
* test: cover initrd->sysroot transition in TEST-24Frantisek Sumsal2022-05-251-33/+30
| | | | | | | | | | | This should cover cases regarding devices with `OPTIONS+="db_persist"` during initrd->sysroot transition. See: * https://github.com/systemd/systemd/issues/23429 * https://github.com/systemd/systemd/pull/23218 * https://github.com/systemd/systemd/pull/23489 * https://bugzilla.redhat.com/show_bug.cgi?id=2087225
* test: collect the coverage _before_ unmounting the rootfsFrantisek Sumsal2021-10-211-1/+1
| | | | d'oh!
* test: collect coverage in a couple more codepathsFrantisek Sumsal2021-10-201-0/+1
| | | | | | | Otherwise we'd miss coverage from TEST-{02,24,61}, since they don't go through the "standard" `check_result_common` hook. Follow-up to 7bf20e48bd7d641a39a14a7feb749b7e8b0fc0f6.
* tests: add spdx headers to scripts and MakefilesZbigniew Jędrzejewski-Szmek2021-10-181-0/+1
|
* test: "detect" the test number automagicallyFrantisek Sumsal2021-04-261-1/+1
| | | | | | Specifying the test number manually is tedious and prone to errors (as recently proven). Since we have all the necessary data to work out the test number, let's do it automagically.
* test: move the logic to support /skipped into shared logicZbigniew Jędrzejewski-Szmek2021-04-231-1/+1
| | | | | | The logic to query test state was rather complex. I don't quite grok the point of ret=$((ret+1))… But afaics, the precise result was always ignored by the caller anyway.
* test: make the test entrypoint scripts shellcheck-compliantFrantisek Sumsal2021-04-201-26/+35
|
* tests: build the image once and then copy/extend itLuca Boccassi2021-01-241-0/+1
| | | | | | Building custom images for each test takes a lot of time. Build the default one, and if the test needs incompatible changes just copy it and extend it instead.
* test: switch TEST-02-CRYPTSETUP and TEST-24-UNITTESTSZbigniew Jędrzejewski-Szmek2020-09-242-0/+80
When tests are executed serially (the default), it seems better to launch the fairly generic test that runs the unittests early in the sequence. Right now the tests are ordered based on when they were written, but this doesn't make much sense.