mirror of
https://github.com/ultravioletrs/cocos.git
synced 2026-06-22 20:00:18 +00:00
Sammy Kerata Oina
4e8057f481
CI / ci (push) Has been cancelled
* Implement IMAMeasurements method in agentSDK and add corresponding unit tests Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add unit tests for NewIMAMeasurements command in CLI Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add error assertion for command execution in NewIMAMeasurements test Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Fix nil pointer dereference in Close method and update NewCreateVMCmd logic for manager client initialization Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Refactor file permission settings to use octal notation and improve cleanup handling in NewCreateVMCmd test Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add comprehensive unit tests for state machine functionality Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add mock implementation for Algorithm interface and corresponding test cases Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Refactor file permission settings to use octal notation in TestStopComputationIntegration Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Remove redundant reset test cases from TestStateMachine_Reset Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Fix race condition in action call verification in TestStateMachine_HandleEvent Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Enhance state machine with reset functionality and improve thread safety in event handling Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Improve error handling in state machine start function during tests Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Remove concurrent reset and send event test from state machine tests Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Remove error logging for Start function in transition tests Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add mock implementations for AgentService_IMAMeasurementsClient and Service Shutdown method; enhance progress tests for IMA measurements handling Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add comprehensive tests for FileStorage functionality including loading, saving, and concurrent access Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Enhance tests by adding dataset and algorithm hashes in handleRunReqChunks; improve error handling in TestFileStorage_ErrorHandling cleanup Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Enhance TestManagerClient_Process by adding new test cases for Agent state and Disconnect requests; update setupMocks to include grpcClient Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Fix graceful shutdown in gRPC server by adding nil checks for health and server instances Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Enhance TestAttestation by adding mock expectations for VTpmAttestation and Attestation methods; update service call to include platform parameter Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Enhance gRPC Server by adding synchronization for start/stop methods; prevent multiple starts and ensure graceful shutdown Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add unit tests for gRPC server methods including VM creation, removal, and info retrieval Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add tests for SEVSNP and TDX host capabilities; remove unused vsock code Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add a newline for better readability in vm_test.go Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add integration tests for gRPC client in cvm_test.go Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Remove unused vsock dependencies and add comprehensive unit tests for GCP attestation functions Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Skip GCP tests if credentials are not set Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add tests for error handling in attestation configuration and GCP commands Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Improve error handling in Azure VM test response writing Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Skip tests in GCP functions if credentials are not set Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add comprehensive unit tests for Azure attestation provider and verifier Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add unit tests for TPM functionality and improve error handling Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add comprehensive tests for attestation functionality and improve error handling Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add validation for teeNonce in TeeAttestation and implement comprehensive tests for provider methods Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Refactor error messages in TDX attestation tests for clarity Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Fix error message in TeeAttestation test for valid nonce case Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add MeasurementProvider mock and update mockery configuration Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Add logging for product in parseUints and rename test functions for clarity Signed-off-by: Sammy Oina <sammyoina@gmail.com> * Refactor TestSevsnpverify to reset configuration and improve error logging Signed-off-by: Sammy Oina <sammyoina@gmail.com> --------- Signed-off-by: Sammy Oina <sammyoina@gmail.com>
170 lines
5.8 KiB
Go
170 lines
5.8 KiB
Go
// Copyright (c) Ultraviolet
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package cli
|
|
|
|
import (
|
|
"bytes"
|
|
"fmt"
|
|
"os"
|
|
"testing"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/mock"
|
|
"github.com/ultravioletrs/cocos/pkg/sdk/mocks"
|
|
)
|
|
|
|
func TestCLI_NewIMAMeasurementsCmd(t *testing.T) {
|
|
testCases := []struct {
|
|
name string
|
|
args []string
|
|
connectErr error
|
|
mockIMAData string
|
|
mockError error
|
|
expectedFilename string
|
|
expectedOutput []string
|
|
expectedError []string
|
|
shouldCreateFile bool
|
|
fileCreationError bool
|
|
invalidDigestData bool
|
|
setupCustomFile func(filename string) error
|
|
}{
|
|
{
|
|
name: "successful_retrieval_default_filename",
|
|
args: []string{},
|
|
connectErr: nil,
|
|
mockIMAData: "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00",
|
|
mockError: nil,
|
|
expectedFilename: imaMeasurementsFilename,
|
|
expectedOutput: []string{"⏳ Retrieving computation Linux IMA measurements file", "Linux IMA measurements file retrieved and saved successfully", "PCR10 = 0000000000000000000000000000000000000000", "Measurements file verified!"},
|
|
shouldCreateFile: true,
|
|
},
|
|
{
|
|
name: "successful_retrieval_custom_filename",
|
|
args: []string{"custom_ima_file.txt"},
|
|
connectErr: nil,
|
|
mockIMAData: "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00",
|
|
mockError: nil,
|
|
expectedFilename: "custom_ima_file.txt",
|
|
expectedOutput: []string{"⏳ Retrieving computation Linux IMA measurements file", "custom_ima_file.txt", "Measurements file verified!"},
|
|
shouldCreateFile: true,
|
|
},
|
|
{
|
|
name: "connection_error",
|
|
args: []string{},
|
|
connectErr: fmt.Errorf("connection failed"),
|
|
expectedError: []string{"Failed to connect to agent: connection failed ❌"},
|
|
},
|
|
{
|
|
name: "file_creation_error",
|
|
args: []string{"/invalid/path/file.txt"},
|
|
connectErr: nil,
|
|
fileCreationError: true,
|
|
expectedError: []string{"Error creating imaMeasurements file:"},
|
|
},
|
|
{
|
|
name: "sdk_error",
|
|
args: []string{},
|
|
connectErr: nil,
|
|
mockError: fmt.Errorf("SDK communication failed"),
|
|
expectedError: []string{"Error retrieving Linux IMA measurements file: SDK communication failed ❌"},
|
|
},
|
|
{
|
|
name: "verification_failure_wrong_pcr",
|
|
args: []string{},
|
|
connectErr: nil,
|
|
mockIMAData: "10 9999999999999999999999999999999999999999 ima-ng sha1:0000000000000000000000000000000000000000 /usr/bin/test",
|
|
mockError: nil,
|
|
expectedOutput: []string{"⏳ Retrieving computation Linux IMA measurements file", "Linux IMA measurements file retrieved and saved successfully"},
|
|
expectedError: []string{"Measurements file not verified ❌"},
|
|
shouldCreateFile: true,
|
|
},
|
|
{
|
|
name: "empty_measurements_file",
|
|
args: []string{},
|
|
connectErr: nil,
|
|
mockIMAData: "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00",
|
|
mockError: nil,
|
|
expectedOutput: []string{"⏳ Retrieving computation Linux IMA measurements file", "Linux IMA measurements file retrieved and saved successfully", "Measurements file verified!"},
|
|
shouldCreateFile: true,
|
|
},
|
|
{
|
|
name: "measurements_with_non_pcr10_entries",
|
|
args: []string{},
|
|
connectErr: nil,
|
|
mockIMAData: "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00",
|
|
mockError: nil,
|
|
expectedOutput: []string{"⏳ Retrieving computation Linux IMA measurements file", "Linux IMA measurements file retrieved and saved successfully", "Measurements file verified!"},
|
|
shouldCreateFile: true,
|
|
},
|
|
{
|
|
name: "measurements_with_zero_digest_replacement",
|
|
args: []string{},
|
|
connectErr: nil,
|
|
mockIMAData: "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00",
|
|
mockError: nil,
|
|
expectedOutput: []string{"⏳ Retrieving computation Linux IMA measurements file", "Linux IMA measurements file retrieved and saved successfully", "Measurements file verified!"},
|
|
shouldCreateFile: true,
|
|
},
|
|
}
|
|
|
|
for _, tc := range testCases {
|
|
t.Run(tc.name, func(t *testing.T) {
|
|
mockSDK := new(mocks.SDK)
|
|
|
|
cli := &CLI{
|
|
agentSDK: mockSDK,
|
|
connectErr: tc.connectErr,
|
|
}
|
|
|
|
if tc.connectErr == nil && !tc.fileCreationError {
|
|
mockSDK.On("IMAMeasurements", mock.Anything, mock.Anything).Return([]byte(tc.mockIMAData), tc.mockError)
|
|
}
|
|
|
|
cmd := cli.NewIMAMeasurementsCmd()
|
|
|
|
var output bytes.Buffer
|
|
cmd.SetOut(&output)
|
|
cmd.SetErr(&output)
|
|
|
|
expectedFilename := tc.expectedFilename
|
|
if expectedFilename == "" {
|
|
if len(tc.args) > 0 {
|
|
expectedFilename = tc.args[0]
|
|
} else {
|
|
expectedFilename = imaMeasurementsFilename
|
|
}
|
|
}
|
|
|
|
if tc.setupCustomFile != nil {
|
|
err := tc.setupCustomFile(expectedFilename)
|
|
assert.NoError(t, err)
|
|
}
|
|
|
|
cmd.SetArgs(tc.args)
|
|
err := cmd.Execute()
|
|
assert.NoError(t, err, "Command execution failed")
|
|
|
|
outputStr := output.String()
|
|
|
|
for _, expectedMsg := range tc.expectedOutput {
|
|
assert.Contains(t, outputStr, expectedMsg, "Expected output message not found")
|
|
}
|
|
|
|
for _, expectedErr := range tc.expectedError {
|
|
assert.Contains(t, outputStr, expectedErr, "Expected error message not found")
|
|
}
|
|
|
|
if tc.shouldCreateFile && tc.connectErr == nil && !tc.fileCreationError && tc.mockError == nil {
|
|
if _, err := os.Stat(expectedFilename); err == nil {
|
|
os.Remove(expectedFilename)
|
|
}
|
|
}
|
|
|
|
if tc.connectErr == nil && !tc.fileCreationError {
|
|
mockSDK.AssertExpectations(t)
|
|
}
|
|
})
|
|
}
|
|
}
|