armybox 0.3.0

A memory-safe #[no_std] BusyBox/Toybox clone in Rust - 299 Unix utilities in ~500KB
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164

//! shred - overwrite a file to hide its contents
//!
//! GNU coreutils compatible implementation.

use crate::io;
use crate::sys;
use crate::applets::{get_arg, has_opt};

/// shred - overwrite a file to hide its contents
///
/// # Synopsis
/// ```text
/// shred [-u] file...
/// ```
///
/// # Description
/// Overwrite the specified FILE(s) repeatedly to make it harder to
/// recover the data by even very expensive hardware probing.
///
/// # Options
/// - `-u`: Deallocate and remove file after overwriting
///
/// # Exit Status
/// - 0: Success
/// - >0: An error occurred
pub fn shred(argc: i32, argv: *const *const u8) -> i32 {
    let mut remove = false;
    let mut exit_code = 0;

    for i in 1..argc {
        if let Some(arg) = unsafe { get_arg(argv, i) } {
            if arg.len() > 0 && arg[0] == b'-' {
                if has_opt(arg, b'u') { remove = true; }
            } else {
                // Overwrite with random data
                let fd = io::open(arg, libc::O_WRONLY, 0);
                if fd < 0 {
                    sys::perror(arg);
                    exit_code = 1;
                    continue;
                }

                let mut st: libc::stat = unsafe { core::mem::zeroed() };
                if io::fstat(fd, &mut st) == 0 {
                    let size = st.st_size as usize;
                    let mut buf = [0xFFu8; 4096];
                    let mut written = 0;
                    while written < size {
                        let chunk = core::cmp::min(buf.len(), size - written);
                        io::write_all(fd, &buf[..chunk]);
                        written += chunk;
                    }
                    unsafe { libc::fsync(fd) };

                    // Zero pass
                    unsafe { libc::lseek(fd, 0, libc::SEEK_SET) };
                    buf.fill(0);
                    written = 0;
                    while written < size {
                        let chunk = core::cmp::min(buf.len(), size - written);
                        io::write_all(fd, &buf[..chunk]);
                        written += chunk;
                    }
                }
                io::close(fd);

                if remove {
                    io::unlink(arg);
                }
            }
        }
    }
    exit_code
}

#[cfg(test)]
mod tests {
    extern crate std;
    use std::sync::atomic::{AtomicUsize, Ordering};

    static TEST_COUNTER: AtomicUsize = AtomicUsize::new(0);
    use std::process::Command;
    use std::fs;
    use std::path::PathBuf;

    fn get_armybox_path() -> PathBuf {
        if let Ok(path) = std::env::var("ARMYBOX_PATH") {
            return PathBuf::from(path);
        }
        let manifest_dir = std::env::var("CARGO_MANIFEST_DIR")
            .map(PathBuf::from)
            .unwrap_or_else(|_| std::env::current_dir().unwrap());
        let release = manifest_dir.join("target/release/armybox");
        if release.exists() { return release; }
        manifest_dir.join("target/debug/armybox")
    }

    fn setup() -> PathBuf {
        let counter = TEST_COUNTER.fetch_add(1, Ordering::SeqCst);
        let dir = std::env::temp_dir().join(format!("armybox_shred_test_{}_{}",  std::process::id(), counter));
        let _ = fs::remove_dir_all(&dir);
        fs::create_dir_all(&dir).unwrap();
        dir
    }

    fn cleanup(dir: &std::path::Path) {
        let _ = fs::remove_dir_all(dir);
    }

    #[test]
    fn test_shred_file() {
        let armybox = get_armybox_path();
        if !armybox.exists() { return; }

        let dir = setup();
        let file = dir.join("secret.txt");
        fs::write(&file, "sensitive data").unwrap();

        let output = Command::new(&armybox)
            .args(["shred", file.to_str().unwrap()])
            .output()
            .unwrap();

        assert_eq!(output.status.code(), Some(0));
        assert!(file.exists()); // File still exists, just overwritten
        // Content should be different (zeros or 0xFF pattern)
        let content = fs::read(&file).unwrap();
        assert_ne!(content, b"sensitive data");
        cleanup(&dir);
    }

    #[test]
    fn test_shred_with_remove() {
        let armybox = get_armybox_path();
        if !armybox.exists() { return; }

        let dir = setup();
        let file = dir.join("to_delete.txt");
        fs::write(&file, "delete me").unwrap();
        assert!(file.exists());

        let output = Command::new(&armybox)
            .args(["shred", "-u", file.to_str().unwrap()])
            .output()
            .unwrap();

        assert_eq!(output.status.code(), Some(0));
        assert!(!file.exists()); // File should be removed
        cleanup(&dir);
    }

    #[test]
    fn test_shred_nonexistent() {
        let armybox = get_armybox_path();
        if !armybox.exists() { return; }

        let output = Command::new(&armybox)
            .args(["shred", "/nonexistent/file"])
            .output()
            .unwrap();

        assert_ne!(output.status.code(), Some(0));
    }
}