2022-09-05 09:06:08 +02:00
|
|
|
/*
|
|
|
|
Copyright (c) Edgeless Systems GmbH
|
|
|
|
|
|
|
|
SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
*/
|
|
|
|
|
2022-03-22 16:03:15 +01:00
|
|
|
package azure
|
|
|
|
|
|
|
|
import (
|
|
|
|
"testing"
|
|
|
|
|
2022-07-27 22:02:33 +02:00
|
|
|
armcomputev2 "github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/compute/armcompute/v2"
|
2022-03-22 16:03:15 +01:00
|
|
|
"github.com/stretchr/testify/assert"
|
|
|
|
"github.com/stretchr/testify/require"
|
|
|
|
)
|
|
|
|
|
|
|
|
func TestFirewallPermissions(t *testing.T) {
|
|
|
|
assert := assert.New(t)
|
|
|
|
require := require.New(t)
|
|
|
|
scaleSet := ScaleSet{
|
|
|
|
Name: "name",
|
|
|
|
NamePrefix: "constellation-",
|
|
|
|
Location: "UK South",
|
2022-08-31 10:33:33 +02:00
|
|
|
InstanceType: "Standard_DC4as_v5",
|
2022-03-22 16:03:15 +01:00
|
|
|
Count: 3,
|
|
|
|
Username: "constellation",
|
|
|
|
SubnetID: "subnet-id",
|
|
|
|
NetworkSecurityGroup: "network-security-group",
|
|
|
|
Password: "password",
|
|
|
|
Image: "image",
|
|
|
|
UserAssignedIdentity: "user-identity",
|
2022-08-25 15:24:31 +02:00
|
|
|
ConfidentialVM: true,
|
2022-03-22 16:03:15 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
scaleSetAzure := scaleSet.Azure()
|
|
|
|
|
|
|
|
require.NotNil(scaleSetAzure.Name)
|
|
|
|
assert.Equal(scaleSet.Name, *scaleSetAzure.Name)
|
|
|
|
require.NotNil(scaleSetAzure.Location)
|
|
|
|
assert.Equal(scaleSet.Location, *scaleSetAzure.Location)
|
|
|
|
|
|
|
|
require.NotNil(scaleSetAzure.SKU)
|
|
|
|
require.NotNil(scaleSetAzure.SKU.Name)
|
|
|
|
assert.Equal(scaleSet.InstanceType, *scaleSetAzure.SKU.Name)
|
|
|
|
|
|
|
|
require.NotNil(scaleSetAzure.SKU.Capacity)
|
|
|
|
assert.Equal(scaleSet.Count, *scaleSetAzure.SKU.Capacity)
|
|
|
|
|
|
|
|
require.NotNil(scaleSetAzure.Properties)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.OSProfile)
|
|
|
|
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.ComputerNamePrefix)
|
|
|
|
assert.Equal(scaleSet.NamePrefix, *scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.ComputerNamePrefix)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.AdminUsername)
|
|
|
|
assert.Equal(scaleSet.Username, *scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.AdminUsername)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.AdminPassword)
|
|
|
|
assert.Equal(scaleSet.Password, *scaleSetAzure.Properties.VirtualMachineProfile.OSProfile.AdminPassword)
|
|
|
|
|
|
|
|
// Verify image
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.StorageProfile)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.StorageProfile.ImageReference)
|
|
|
|
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.StorageProfile.ImageReference.ID)
|
|
|
|
assert.Equal(scaleSet.Image, *scaleSetAzure.Properties.VirtualMachineProfile.StorageProfile.ImageReference.ID)
|
|
|
|
|
|
|
|
// Verify network
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.NetworkProfile)
|
|
|
|
require.Len(scaleSetAzure.Properties.VirtualMachineProfile.NetworkProfile.NetworkInterfaceConfigurations, 1)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.NetworkProfile.NetworkInterfaceConfigurations[0])
|
|
|
|
|
|
|
|
networkConfig := scaleSetAzure.Properties.VirtualMachineProfile.NetworkProfile.NetworkInterfaceConfigurations[0]
|
|
|
|
|
|
|
|
require.NotNil(networkConfig.Name)
|
|
|
|
assert.Equal(scaleSet.Name, *networkConfig.Name)
|
|
|
|
|
|
|
|
require.NotNil(networkConfig.Properties)
|
|
|
|
require.Len(networkConfig.Properties.IPConfigurations, 1)
|
|
|
|
require.NotNil(networkConfig.Properties.IPConfigurations[0])
|
|
|
|
|
|
|
|
ipConfig := networkConfig.Properties.IPConfigurations[0]
|
|
|
|
|
|
|
|
require.NotNil(ipConfig.Name)
|
|
|
|
assert.Equal(scaleSet.Name, *ipConfig.Name)
|
|
|
|
|
|
|
|
require.NotNil(ipConfig.Properties)
|
|
|
|
require.NotNil(ipConfig.Properties.Subnet)
|
|
|
|
|
|
|
|
require.NotNil(ipConfig.Properties.Subnet.ID)
|
|
|
|
assert.Equal(scaleSet.SubnetID, *ipConfig.Properties.Subnet.ID)
|
|
|
|
|
|
|
|
require.NotNil(networkConfig.Properties.NetworkSecurityGroup)
|
|
|
|
assert.Equal(scaleSet.NetworkSecurityGroup, *networkConfig.Properties.NetworkSecurityGroup.ID)
|
|
|
|
|
|
|
|
// Verify vTPM
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.SecurityType)
|
2022-07-27 09:46:32 +02:00
|
|
|
assert.Equal(armcomputev2.SecurityTypesConfidentialVM, *scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.SecurityType)
|
2022-03-22 16:03:15 +01:00
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.UefiSettings)
|
|
|
|
require.NotNil(scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.UefiSettings.VTpmEnabled)
|
|
|
|
assert.True(*scaleSetAzure.Properties.VirtualMachineProfile.SecurityProfile.UefiSettings.VTpmEnabled)
|
|
|
|
|
|
|
|
// Verify UserAssignedIdentity
|
|
|
|
require.NotNil(scaleSetAzure.Identity)
|
|
|
|
require.NotNil(scaleSetAzure.Identity.Type)
|
2022-07-27 22:02:33 +02:00
|
|
|
assert.Equal(armcomputev2.ResourceIdentityTypeUserAssigned, *scaleSetAzure.Identity.Type)
|
2022-03-22 16:03:15 +01:00
|
|
|
require.Len(scaleSetAzure.Identity.UserAssignedIdentities, 1)
|
|
|
|
assert.Contains(scaleSetAzure.Identity.UserAssignedIdentities, scaleSet.UserAssignedIdentity)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGeneratePassword(t *testing.T) {
|
|
|
|
assert := assert.New(t)
|
|
|
|
require := require.New(t)
|
|
|
|
|
|
|
|
pw, err := GeneratePassword()
|
|
|
|
require.NoError(err)
|
|
|
|
assert.Len(pw, 20)
|
|
|
|
}
|