mirror of
https://github.com/ultravioletrs/cocos.git
synced 2026-06-23 04:10:25 +00:00
Danko Miladinovic
67f939fc66
* manager, cli and agent vtpm support * rebase and changed atls for vtpm * deleted unused code * changed chekproto.yaml script so it find the manager proto file correctly * fixe manager proto version * fix agent tests * fix server agent test * fix attestation test * fix attestation test gofumpt * created dummy RWC for TPM * fix comment * add default PCR values * rebase main * fix rust ci and missing header * changed embedded attestation to VMPL 2 * fix unused impot * fix pkg test * address attestation type * fix agent attestation test * add prc15 check * fix comments * fix cli tests * add doc * add mock for LeveledQuoteProvider when SEV-SNP device is not found Signed-off-by: Sammy Oina <sammyoina@gmail.com> * fix manager reading attestation policy * refactor PCR value checks and update attestation policy values Signed-off-by: Sammy Oina <sammyoina@gmail.com> * fix tests for sev and grpc --------- Signed-off-by: Sammy Oina <sammyoina@gmail.com> Co-authored-by: Sammy Oina <sammyoina@gmail.com>
219 lines
6.6 KiB
Go
219 lines
6.6 KiB
Go
// Copyright (c) Ultraviolet
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
package grpc
|
|
|
|
import (
|
|
"context"
|
|
"io"
|
|
"testing"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/mock"
|
|
"github.com/ultravioletrs/cocos/agent"
|
|
"github.com/ultravioletrs/cocos/agent/mocks"
|
|
config "github.com/ultravioletrs/cocos/pkg/attestation"
|
|
"github.com/ultravioletrs/cocos/pkg/attestation/quoteprovider"
|
|
"github.com/ultravioletrs/cocos/pkg/attestation/vtpm"
|
|
"google.golang.org/grpc"
|
|
"google.golang.org/grpc/metadata"
|
|
)
|
|
|
|
type MockAgentService_AlgoServer struct {
|
|
grpc.ServerStream
|
|
mock.Mock
|
|
ctx context.Context
|
|
}
|
|
|
|
func (m *MockAgentService_AlgoServer) Context() context.Context {
|
|
return m.ctx
|
|
}
|
|
|
|
func (m *MockAgentService_AlgoServer) Recv() (*agent.AlgoRequest, error) {
|
|
args := m.Called()
|
|
return args.Get(0).(*agent.AlgoRequest), args.Error(1)
|
|
}
|
|
|
|
func (m *MockAgentService_AlgoServer) SendAndClose(resp *agent.AlgoResponse) error {
|
|
args := m.Called(resp)
|
|
return args.Error(0)
|
|
}
|
|
|
|
type MockAgentService_DataServer struct {
|
|
grpc.ServerStream
|
|
mock.Mock
|
|
ctx context.Context
|
|
}
|
|
|
|
func (m *MockAgentService_DataServer) Context() context.Context {
|
|
return m.ctx
|
|
}
|
|
|
|
func (m *MockAgentService_DataServer) Recv() (*agent.DataRequest, error) {
|
|
args := m.Called()
|
|
return args.Get(0).(*agent.DataRequest), args.Error(1)
|
|
}
|
|
|
|
func (m *MockAgentService_DataServer) SendAndClose(resp *agent.DataResponse) error {
|
|
args := m.Called(resp)
|
|
return args.Error(0)
|
|
}
|
|
|
|
type MockAgentService_ResultServer struct {
|
|
grpc.ServerStream
|
|
mock.Mock
|
|
ctx context.Context
|
|
}
|
|
|
|
func (m *MockAgentService_ResultServer) Context() context.Context {
|
|
return m.ctx
|
|
}
|
|
|
|
func (m *MockAgentService_ResultServer) SetHeader(metadata.MD) error {
|
|
return nil
|
|
}
|
|
|
|
func (m *MockAgentService_ResultServer) Send(resp *agent.ResultResponse) error {
|
|
args := m.Called(resp)
|
|
return args.Error(0)
|
|
}
|
|
|
|
type MockAgentService_AttestationServer struct {
|
|
grpc.ServerStream
|
|
mock.Mock
|
|
ctx context.Context
|
|
}
|
|
|
|
func (m *MockAgentService_AttestationServer) Context() context.Context {
|
|
return m.ctx
|
|
}
|
|
|
|
func (m *MockAgentService_AttestationServer) Send(resp *agent.AttestationResponse) error {
|
|
args := m.Called(resp)
|
|
return args.Error(0)
|
|
}
|
|
|
|
func (m *MockAgentService_AttestationServer) SetHeader(metadata.MD) error {
|
|
return nil
|
|
}
|
|
|
|
func TestAlgo(t *testing.T) {
|
|
mockService := new(mocks.Service)
|
|
server := NewServer(mockService)
|
|
|
|
mockStream := &MockAgentService_AlgoServer{ctx: context.Background()}
|
|
mockStream.On("Recv").Return(&agent.AlgoRequest{Algorithm: []byte("algo"), Requirements: []byte("req")}, nil).Once()
|
|
mockStream.On("Recv").Return(&agent.AlgoRequest{}, io.EOF)
|
|
mockStream.On("SendAndClose", &agent.AlgoResponse{}).Return(nil)
|
|
|
|
mockService.On("Algo", context.Background(), agent.Algorithm{Algorithm: []byte("algo"), Requirements: []byte("req")}).Return(nil)
|
|
|
|
err := server.Algo(mockStream)
|
|
assert.NoError(t, err)
|
|
|
|
mockStream.AssertExpectations(t)
|
|
mockService.AssertExpectations(t)
|
|
}
|
|
|
|
func TestData(t *testing.T) {
|
|
mockService := new(mocks.Service)
|
|
server := NewServer(mockService)
|
|
|
|
mockStream := &MockAgentService_DataServer{ctx: context.Background()}
|
|
mockStream.On("Recv").Return(&agent.DataRequest{Dataset: []byte("data"), Filename: "test.txt"}, nil).Once()
|
|
mockStream.On("Recv").Return(&agent.DataRequest{}, io.EOF)
|
|
mockStream.On("SendAndClose", &agent.DataResponse{}).Return(nil)
|
|
|
|
mockService.On("Data", context.Background(), agent.Dataset{Dataset: []byte("data"), Filename: "test.txt"}).Return(nil)
|
|
|
|
err := server.Data(mockStream)
|
|
assert.NoError(t, err)
|
|
|
|
mockStream.AssertExpectations(t)
|
|
mockService.AssertExpectations(t)
|
|
}
|
|
|
|
func TestResult(t *testing.T) {
|
|
mockService := new(mocks.Service)
|
|
server := NewServer(mockService)
|
|
|
|
mockStream := &MockAgentService_ResultServer{ctx: context.Background()}
|
|
mockService.On("Result", mock.Anything).Return([]byte("result data"), nil)
|
|
mockStream.On("Send", mock.AnythingOfType("*agent.ResultResponse")).Return(nil)
|
|
|
|
err := server.Result(&agent.ResultRequest{}, mockStream)
|
|
assert.NoError(t, err)
|
|
|
|
mockStream.AssertExpectations(t)
|
|
mockService.AssertExpectations(t)
|
|
}
|
|
|
|
func TestAttestation(t *testing.T) {
|
|
mockService := new(mocks.Service)
|
|
server := NewServer(mockService)
|
|
|
|
mockStream := &MockAgentService_AttestationServer{ctx: context.Background()}
|
|
mockStream.On("Send", mock.AnythingOfType("*agent.AttestationResponse")).Return(nil)
|
|
|
|
reportData := [quoteprovider.Nonce]byte{}
|
|
vtpmNonce := [vtpm.Nonce]byte{}
|
|
attestationType := config.SNP
|
|
mockService.On("Attestation", mock.Anything, reportData, vtpmNonce, attestationType).Return([]byte("attestation data"), nil)
|
|
|
|
err := server.Attestation(&agent.AttestationRequest{TeeNonce: reportData[:]}, mockStream)
|
|
assert.NoError(t, err)
|
|
|
|
mockService.AssertExpectations(t)
|
|
}
|
|
|
|
func TestDecodeAlgoRequest(t *testing.T) {
|
|
req := &agent.AlgoRequest{Algorithm: []byte("algo"), Requirements: []byte("req")}
|
|
decoded, err := decodeAlgoRequest(context.Background(), req)
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, algoReq{Algorithm: []byte("algo"), Requirements: []byte("req")}, decoded)
|
|
}
|
|
|
|
func TestEncodeAlgoResponse(t *testing.T) {
|
|
encoded, err := encodeAlgoResponse(context.Background(), algoRes{})
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, &agent.AlgoResponse{}, encoded)
|
|
}
|
|
|
|
func TestDecodeDataRequest(t *testing.T) {
|
|
req := &agent.DataRequest{Dataset: []byte("data"), Filename: "test.txt"}
|
|
decoded, err := decodeDataRequest(context.Background(), req)
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, dataReq{Dataset: []byte("data"), Filename: "test.txt"}, decoded)
|
|
}
|
|
|
|
func TestEncodeDataResponse(t *testing.T) {
|
|
encoded, err := encodeDataResponse(context.Background(), dataRes{})
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, &agent.DataResponse{}, encoded)
|
|
}
|
|
|
|
func TestDecodeResultRequest(t *testing.T) {
|
|
decoded, err := decodeResultRequest(context.Background(), &agent.ResultRequest{})
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, resultReq{}, decoded)
|
|
}
|
|
|
|
func TestEncodeResultResponse(t *testing.T) {
|
|
encoded, err := encodeResultResponse(context.Background(), resultRes{File: []byte("result")})
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, &agent.ResultResponse{File: []byte("result")}, encoded)
|
|
}
|
|
|
|
func TestDecodeAttestationRequest(t *testing.T) {
|
|
nonce := [quoteprovider.Nonce]byte{}
|
|
req := &agent.AttestationRequest{TeeNonce: nonce[:]}
|
|
decoded, err := decodeAttestationRequest(context.Background(), req)
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, attestationReq{TeeNonce: nonce}, decoded)
|
|
}
|
|
|
|
func TestEncodeAttestationResponse(t *testing.T) {
|
|
encoded, err := encodeAttestationResponse(context.Background(), attestationRes{File: []byte("attestation")})
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, &agent.AttestationResponse{File: []byte("attestation")}, encoded)
|
|
}
|