2023-01-31 06:12:19 -05:00
/ *
Copyright ( c ) Edgeless Systems GmbH
SPDX - License - Identifier : AGPL - 3.0 - only
* /
package cmd
import (
"bytes"
"context"
"errors"
"io"
"net/http"
"strings"
"testing"
"github.com/edgelesssys/constellation/v2/internal/attestation/measurements"
"github.com/edgelesssys/constellation/v2/internal/cloud/cloudprovider"
"github.com/edgelesssys/constellation/v2/internal/config"
"github.com/edgelesssys/constellation/v2/internal/constants"
"github.com/edgelesssys/constellation/v2/internal/file"
"github.com/edgelesssys/constellation/v2/internal/logger"
"github.com/edgelesssys/constellation/v2/internal/versionsapi"
"github.com/spf13/afero"
"github.com/stretchr/testify/assert"
"github.com/stretchr/testify/require"
"golang.org/x/mod/semver"
)
// TestBuildString checks that the resulting user output is as expected. Slow part is the Sscanf in parseCanonicalSemver().
func TestBuildString ( t * testing . T ) {
testCases := map [ string ] struct {
upgrade versionUpgrade
expected string
wantError bool
} {
"update everything" : {
upgrade : versionUpgrade {
newServices : "v2.5.0" ,
newImages : map [ string ] measurements . M {
"v2.5.0" : measurements . DefaultsFor ( cloudprovider . QEMU ) ,
} ,
newKubernetes : [ ] string { "v1.24.12" , "v1.25.6" } ,
currentServices : "v2.4.0" ,
currentImage : "v2.4.0" ,
currentKubernetes : "v1.24.5" ,
} ,
expected : "The following updates are available with this CLI:\n Kubernetes: v1.24.5 --> v1.24.12 v1.25.6\n Images:\n v2.4.0 --> v2.5.0\n Includes these measurements:\n 4:\n expected: \"1234123412341234123412341234123412341234123412341234123412341234\"\n warnOnly: false\n 8:\n expected: \"0000000000000000000000000000000000000000000000000000000000000000\"\n warnOnly: false\n 9:\n expected: \"1234123412341234123412341234123412341234123412341234123412341234\"\n warnOnly: false\n 11:\n expected: \"0000000000000000000000000000000000000000000000000000000000000000\"\n warnOnly: false\n 12:\n expected: \"1234123412341234123412341234123412341234123412341234123412341234\"\n warnOnly: false\n 13:\n expected: \"0000000000000000000000000000000000000000000000000000000000000000\"\n warnOnly: false\n 15:\n expected: \"0000000000000000000000000000000000000000000000000000000000000000\"\n warnOnly: false\n \n Services: v2.4.0 --> v2.5.0\n" ,
} ,
"no upgrades" : {
upgrade : versionUpgrade {
newServices : "" ,
newImages : map [ string ] measurements . M { } ,
newKubernetes : [ ] string { } ,
currentServices : "v2.5.0" ,
currentImage : "v2.5.0" ,
currentKubernetes : "v1.25.6" ,
} ,
expected : "No upgrades available with this CLI.\nNewer versions may be available at: https://github.com/edgelesssys/constellation/releases\n" ,
} ,
"no upgrades #2" : {
upgrade : versionUpgrade { } ,
expected : "No upgrades available with this CLI.\nNewer versions may be available at: https://github.com/edgelesssys/constellation/releases\n" ,
} ,
}
for name , tc := range testCases {
t . Run ( name , func ( t * testing . T ) {
assert := assert . New ( t )
result , err := tc . upgrade . buildString ( )
if tc . wantError {
assert . Error ( err )
return
}
assert . NoError ( err )
assert . Equal ( tc . expected , result )
} )
}
}
func TestGetCurrentImageVersion ( t * testing . T ) {
testCases := map [ string ] struct {
stubUpgradeChecker stubUpgradeChecker
wantErr bool
} {
"valid version" : {
stubUpgradeChecker : stubUpgradeChecker {
image : "v1.0.0" ,
} ,
} ,
"invalid version" : {
stubUpgradeChecker : stubUpgradeChecker {
image : "invalid" ,
} ,
wantErr : true ,
} ,
"GetCurrentImage error" : {
stubUpgradeChecker : stubUpgradeChecker {
err : errors . New ( "error" ) ,
} ,
wantErr : true ,
} ,
}
for name , tc := range testCases {
t . Run ( name , func ( t * testing . T ) {
assert := assert . New ( t )
version , err := getCurrentImageVersion ( context . Background ( ) , tc . stubUpgradeChecker )
if tc . wantErr {
assert . Error ( err )
return
}
assert . NoError ( err )
assert . True ( semver . IsValid ( version ) )
} )
}
}
func TestGetCompatibleImageMeasurements ( t * testing . T ) {
assert := assert . New ( t )
csp := cloudprovider . Azure
zero := versionsapi . Version {
Ref : "-" ,
Stream : "stable" ,
Version : "v0.0.0" ,
Kind : versionsapi . VersionKindImage ,
}
one := versionsapi . Version {
Ref : "-" ,
Stream : "stable" ,
Version : "v1.0.0" ,
Kind : versionsapi . VersionKindImage ,
}
images := [ ] versionsapi . Version { zero , one }
client := newTestClient ( func ( req * http . Request ) * http . Response {
if strings . HasSuffix ( req . URL . String ( ) , "v0.0.0/azure/measurements.json" ) {
return & http . Response {
StatusCode : http . StatusOK ,
Body : io . NopCloser ( strings . NewReader ( ` { "csp":"azure","image":"v0.0.0","measurements": { "0": { "expected":"0000000000000000000000000000000000000000000000000000000000000000","warnOnly":false}}} ` ) ) ,
Header : make ( http . Header ) ,
}
}
if strings . HasSuffix ( req . URL . String ( ) , "v0.0.0/azure/measurements.json.sig" ) {
return & http . Response {
StatusCode : http . StatusOK ,
Body : io . NopCloser ( strings . NewReader ( "MEQCIGRR7RaSMs892Ta06/Tz7LqPUxI05X4wQcP+nFFmZtmaAiBNl9X8mUKmUBfxg13LQBfmmpw6JwYQor5hOwM3NFVPAg==" ) ) ,
Header : make ( http . Header ) ,
}
}
if strings . HasSuffix ( req . URL . String ( ) , "v1.0.0/azure/measurements.json" ) {
return & http . Response {
StatusCode : http . StatusOK ,
Body : io . NopCloser ( strings . NewReader ( ` { "csp":"azure","image":"v1.0.0","measurements": { "0": { "expected":"0000000000000000000000000000000000000000000000000000000000000000","warnOnly":false}}} ` ) ) ,
Header : make ( http . Header ) ,
}
}
if strings . HasSuffix ( req . URL . String ( ) , "v1.0.0/azure/measurements.json.sig" ) {
return & http . Response {
StatusCode : http . StatusOK ,
Body : io . NopCloser ( strings . NewReader ( "MEQCIFh8CVELp/Da2U2Jt404OXsUeDfqtrf3pqGRuvxnxhI8AiBTHF9tHEPwFedYG3Jgn2ELOxss+Ybc6135vEtClBrbpg==" ) ) ,
Header : make ( http . Header ) ,
}
}
return & http . Response {
StatusCode : http . StatusNotFound ,
Body : io . NopCloser ( strings . NewReader ( "Not found." ) ) ,
Header : make ( http . Header ) ,
}
} )
pubK := [ ] byte ( "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEu78QgxOOcao6U91CSzEXxrKhvFTt\nJHNy+eX6EMePtDm8CnDF9HSwnTlD0itGJ/XHPQA5YX10fJAqI1y+ehlFMw==\n-----END PUBLIC KEY-----" )
upgrades , err := getCompatibleImageMeasurements ( context . Background ( ) , & bytes . Buffer { } , client , singleUUIDVerifier ( ) , pubK , csp , images , logger . NewTest ( t ) )
assert . NoError ( err )
for _ , measurement := range upgrades {
assert . NotEmpty ( measurement )
}
}
func TestUpgradeCheck ( t * testing . T ) {
v2_3 := versionsapi . Version {
Ref : "-" ,
Stream : "stable" ,
Version : "v2.3.0" ,
Kind : versionsapi . VersionKindImage ,
}
v2_5 := versionsapi . Version {
Ref : "-" ,
Stream : "stable" ,
Version : "v2.5.0" ,
Kind : versionsapi . VersionKindImage ,
}
testCases := map [ string ] struct {
collector stubVersionCollector
flags upgradeCheckFlags
csp cloudprovider . Provider
cliVersion string
wantError bool
} {
"upgrades gcp" : {
collector : stubVersionCollector {
supportedServicesVersions : "v2.5.0" ,
supportedImages : [ ] versionsapi . Version { v2_3 } ,
supportedImageVersions : map [ string ] measurements . M {
"v2.3.0" : measurements . DefaultsFor ( cloudprovider . QEMU ) ,
} ,
supportedK8sVersions : [ ] string { "v1.24.5" , "v1.24.12" , "v1.25.6" } ,
currentServicesVersions : "v2.4.0" ,
currentImageVersion : "v2.4.0" ,
currentK8sVersion : "v1.24.5" ,
images : [ ] versionsapi . Version { v2_5 } ,
newCLIVersions : [ ] string { "v2.5.0" , "v2.6.0" } ,
} ,
flags : upgradeCheckFlags {
configPath : constants . ConfigFilename ,
} ,
csp : cloudprovider . GCP ,
cliVersion : "v1.0.0" ,
} ,
}
for name , tc := range testCases {
t . Run ( name , func ( t * testing . T ) {
assert := assert . New ( t )
require := require . New ( t )
fileHandler := file . NewHandler ( afero . NewMemMapFs ( ) )
cfg := defaultConfigWithExpectedMeasurements ( t , config . Default ( ) , tc . csp )
require . NoError ( fileHandler . WriteYAML ( tc . flags . configPath , cfg ) )
checkCmd := upgradeCheckCmd {
collect : & tc . collector ,
log : logger . NewTest ( t ) ,
}
cmd := newUpgradeCheckCmd ( )
err := checkCmd . upgradeCheck ( cmd , fileHandler , tc . flags )
if tc . wantError {
assert . Error ( err )
return
}
assert . NoError ( err )
} )
}
}
type stubVersionCollector struct {
supportedServicesVersions string
supportedImages [ ] versionsapi . Version
supportedImageVersions map [ string ] measurements . M
supportedK8sVersions [ ] string
currentServicesVersions string
currentImageVersion string
currentK8sVersion string
images [ ] versionsapi . Version
newCLIVersions [ ] string
someErr error
}
2023-03-20 06:03:36 -04:00
func ( s * stubVersionCollector ) newMeasurementes ( _ context . Context , _ cloudprovider . Provider , _ [ ] versionsapi . Version ) ( map [ string ] measurements . M , error ) {
2023-01-31 06:12:19 -05:00
return s . supportedImageVersions , nil
}
2023-03-20 06:03:36 -04:00
func ( s * stubVersionCollector ) currentVersions ( _ context . Context ) ( serviceVersions string , imageVersion string , k8sVersion string , err error ) {
2023-01-31 06:12:19 -05:00
return s . currentServicesVersions , s . currentImageVersion , s . currentK8sVersion , s . someErr
}
2023-03-20 06:03:36 -04:00
func ( s * stubVersionCollector ) supportedVersions ( _ context . Context , _ string ) ( serviceVersions string , imageVersions [ ] versionsapi . Version , k8sVersions [ ] string , err error ) {
2023-01-31 06:12:19 -05:00
return s . supportedServicesVersions , s . supportedImages , s . supportedK8sVersions , s . someErr
}
2023-03-20 06:03:36 -04:00
func ( s * stubVersionCollector ) newImages ( _ context . Context , _ string ) ( [ ] versionsapi . Version , error ) {
2023-01-31 06:12:19 -05:00
return s . images , nil
}
2023-03-20 06:03:36 -04:00
func ( s * stubVersionCollector ) newerVersions ( _ context . Context , _ [ ] string ) ( [ ] versionsapi . Version , error ) {
2023-01-31 06:12:19 -05:00
return s . images , nil
}
type stubUpgradeChecker struct {
image string
k8sVersion string
err error
}
2023-02-09 09:54:12 -05:00
func ( u stubUpgradeChecker ) CurrentImage ( context . Context ) ( string , error ) {
return u . image , u . err
2023-01-31 06:12:19 -05:00
}
2023-03-20 06:03:36 -04:00
func ( u stubUpgradeChecker ) CurrentKubernetesVersion ( _ context . Context ) ( string , error ) {
2023-02-09 09:54:12 -05:00
return u . k8sVersion , u . err
2023-01-31 06:12:19 -05:00
}
