2023-06-02 06:10:22 -04:00
|
|
|
/*
|
|
|
|
Copyright (c) Edgeless Systems GmbH
|
|
|
|
SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
*/
|
2024-06-11 08:50:38 -04:00
|
|
|
package client
|
2023-06-02 06:10:22 -04:00
|
|
|
|
|
|
|
import (
|
|
|
|
"testing"
|
|
|
|
|
2024-06-11 08:50:38 -04:00
|
|
|
"github.com/edgelesssys/constellation/v2/internal/api/attestationconfigapi"
|
2023-06-02 06:10:22 -04:00
|
|
|
"github.com/stretchr/testify/assert"
|
|
|
|
)
|
|
|
|
|
2024-06-12 10:30:03 -04:00
|
|
|
func TestIsInputNewerThanOtherSEVSNPVersion(t *testing.T) {
|
2024-06-11 08:50:38 -04:00
|
|
|
newTestCfg := func() attestationconfigapi.SEVSNPVersion {
|
|
|
|
return attestationconfigapi.SEVSNPVersion{
|
2023-08-10 03:45:46 -04:00
|
|
|
Microcode: 93,
|
|
|
|
TEE: 0,
|
|
|
|
SNP: 6,
|
|
|
|
Bootloader: 2,
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-06-02 06:10:22 -04:00
|
|
|
testCases := map[string]struct {
|
2024-06-11 08:50:38 -04:00
|
|
|
latest attestationconfigapi.SEVSNPVersion
|
|
|
|
input attestationconfigapi.SEVSNPVersion
|
2023-06-02 06:10:22 -04:00
|
|
|
expect bool
|
|
|
|
}{
|
|
|
|
"input is older than latest": {
|
2024-06-11 08:50:38 -04:00
|
|
|
input: func(c attestationconfigapi.SEVSNPVersion) attestationconfigapi.SEVSNPVersion {
|
2023-06-02 06:10:22 -04:00
|
|
|
c.Microcode--
|
|
|
|
return c
|
2023-08-10 03:45:46 -04:00
|
|
|
}(newTestCfg()),
|
|
|
|
latest: newTestCfg(),
|
2023-06-02 06:10:22 -04:00
|
|
|
expect: false,
|
|
|
|
},
|
|
|
|
"input has greater and smaller version field than latest": {
|
2024-06-11 08:50:38 -04:00
|
|
|
input: func(c attestationconfigapi.SEVSNPVersion) attestationconfigapi.SEVSNPVersion {
|
2023-06-02 06:10:22 -04:00
|
|
|
c.Microcode++
|
|
|
|
c.Bootloader--
|
|
|
|
return c
|
2023-08-10 03:45:46 -04:00
|
|
|
}(newTestCfg()),
|
|
|
|
latest: newTestCfg(),
|
2023-06-02 06:10:22 -04:00
|
|
|
expect: false,
|
|
|
|
},
|
|
|
|
"input is newer than latest": {
|
2024-06-11 08:50:38 -04:00
|
|
|
input: func(c attestationconfigapi.SEVSNPVersion) attestationconfigapi.SEVSNPVersion {
|
2023-06-02 06:10:22 -04:00
|
|
|
c.TEE++
|
|
|
|
return c
|
2023-08-10 03:45:46 -04:00
|
|
|
}(newTestCfg()),
|
|
|
|
latest: newTestCfg(),
|
2023-06-02 06:10:22 -04:00
|
|
|
expect: true,
|
|
|
|
},
|
|
|
|
"input is equal to latest": {
|
2023-08-10 03:45:46 -04:00
|
|
|
input: newTestCfg(),
|
|
|
|
latest: newTestCfg(),
|
2023-06-02 06:10:22 -04:00
|
|
|
expect: false,
|
|
|
|
},
|
|
|
|
}
|
|
|
|
for name, tc := range testCases {
|
|
|
|
t.Run(name, func(t *testing.T) {
|
2024-06-12 10:30:03 -04:00
|
|
|
isNewer := isInputNewerThanOtherSEVSNPVersion(tc.input, tc.latest)
|
|
|
|
assert.Equal(t, tc.expect, isNewer)
|
|
|
|
})
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestIsInputNewerThanOtherTDXVersion(t *testing.T) {
|
|
|
|
newTestVersion := func() attestationconfigapi.TDXVersion {
|
|
|
|
return attestationconfigapi.TDXVersion{
|
|
|
|
QESVN: 1,
|
|
|
|
PCESVN: 2,
|
|
|
|
TEETCBSVN: [16]byte{2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2},
|
|
|
|
QEVendorID: [16]byte{0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15},
|
|
|
|
XFAM: [8]byte{0, 1, 2, 3, 4, 5, 6, 7},
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
testCases := map[string]struct {
|
|
|
|
latest attestationconfigapi.TDXVersion
|
|
|
|
input attestationconfigapi.TDXVersion
|
|
|
|
expect bool
|
|
|
|
}{
|
|
|
|
"input is older than latest": {
|
|
|
|
input: func(c attestationconfigapi.TDXVersion) attestationconfigapi.TDXVersion {
|
|
|
|
c.QESVN--
|
|
|
|
return c
|
|
|
|
}(newTestVersion()),
|
|
|
|
latest: newTestVersion(),
|
|
|
|
expect: false,
|
|
|
|
},
|
|
|
|
"input has greater and smaller version field than latest": {
|
|
|
|
input: func(c attestationconfigapi.TDXVersion) attestationconfigapi.TDXVersion {
|
|
|
|
c.QESVN++
|
|
|
|
c.PCESVN--
|
|
|
|
return c
|
|
|
|
}(newTestVersion()),
|
|
|
|
latest: newTestVersion(),
|
|
|
|
expect: false,
|
|
|
|
},
|
|
|
|
"input is newer than latest": {
|
|
|
|
input: func(c attestationconfigapi.TDXVersion) attestationconfigapi.TDXVersion {
|
|
|
|
c.QESVN++
|
|
|
|
return c
|
|
|
|
}(newTestVersion()),
|
|
|
|
latest: newTestVersion(),
|
|
|
|
expect: true,
|
|
|
|
},
|
|
|
|
"input is equal to latest": {
|
|
|
|
input: newTestVersion(),
|
|
|
|
latest: newTestVersion(),
|
|
|
|
expect: false,
|
|
|
|
},
|
|
|
|
"tee tcb svn is newer": {
|
|
|
|
input: func(c attestationconfigapi.TDXVersion) attestationconfigapi.TDXVersion {
|
|
|
|
c.TEETCBSVN[4]++
|
|
|
|
return c
|
|
|
|
}(newTestVersion()),
|
|
|
|
latest: newTestVersion(),
|
|
|
|
expect: true,
|
|
|
|
},
|
|
|
|
"xfam is different": {
|
|
|
|
input: func(c attestationconfigapi.TDXVersion) attestationconfigapi.TDXVersion {
|
|
|
|
c.XFAM[3]++
|
|
|
|
return c
|
|
|
|
}(newTestVersion()),
|
|
|
|
latest: newTestVersion(),
|
|
|
|
expect: true,
|
|
|
|
},
|
|
|
|
}
|
|
|
|
|
|
|
|
for name, tc := range testCases {
|
|
|
|
t.Run(name, func(t *testing.T) {
|
|
|
|
isNewer := isInputNewerThanOtherTDXVersion(tc.input, tc.latest)
|
|
|
|
assert.Equal(t, tc.expect, isNewer)
|
2023-06-02 06:10:22 -04:00
|
|
|
})
|
|
|
|
}
|
|
|
|
}
|