def test_012_reg_agent_vactivate_put(self):
"""Test registrar's PUT /v2/agents/{UUID}/vactivate Interface"""
global keyblob, aik, ek
self.assertIsNotNone(keyblob, "Required value not set. Previous step may have failed?")
self.assertIsNotNone(aik, "Required value not set. Previous step may have failed?")
self.assertIsNotNone(ek, "Required value not set. Previous step may have failed?")
key = tpm.activate_identity(keyblob)
deepquote = tpm.create_deep_quote(hashlib.sha1(key).hexdigest(),
tenant_templ.agent_uuid + aik + ek)
data = {
'deepquote': deepquote,
}
test_012_reg_agent_vactivate_put = RequestsClient(tenant_templ.registrar_base_url, tls_enabled=False)
response = test_012_reg_agent_vactivate_put.put(
f'/v{self.api_version}/agents/{tenant_templ.agent_uuid}/vactivate',
data=json.dumps(data),
cert="",
verify=False
)
self.assertEqual(response.status_code, 200, "Non-successful Registrar agent vActivate return code!")
json_response = response.json()
# Ensure response is well-formed
self.assertIn("results", json_response, "Malformed response body!")
def test_011_reg_agent_activate_put(self):
"""Test registrar's PUT /agents/{UUID}/activate Interface"""
self.assertIsNotNone(
keyblob, "Required value not set. Previous step may have failed?")
key = tpm_instance.activate_identity(keyblob)
data = {
"auth_tag": crypto.do_hmac(key, tenant_templ.agent_uuid),
}
test_011_reg_agent_activate_put = RequestsClient(
tenant_templ.registrar_base_url, tls_enabled=False)
response = test_011_reg_agent_activate_put.put(
f"/v{self.api_version}/agents/{tenant_templ.agent_uuid}/activate",
data=json.dumps(data),
cert="",
verify=False,
)
self.assertEqual(
response.status_code, 200,
"Non-successful Registrar agent Activate return code!")
json_response = response.json()
# Ensure response is well-formed
self.assertIn("results", json_response, "Malformed response body!")
def do_cvstop(self):
""" Stop declared active agent
"""
params = f'/agents/{self.agent_uuid}/stop'
do_cvstop = RequestsClient(self.verifier_base_url, self.tls_enabled)
response = do_cvstop.put(
params,
cert=self.cert,
data=b'',
verify=False
)
if response.status_code == 503:
logger.error("Cannot connect to Verifier at %s with Port %s. Connection refused.", self.verifier_ip, self.verifier_port)
sys.exit()
elif response.status_code == 504:
logger.error("Verifier at %s with Port %s timed out.", self.verifier_ip, self.verifier_port)
sys.exit()
response_body = response.json()
if response.status_code != 200:
keylime_logging.log_http_response(
logger, logging.ERROR, response_body)
else:
logger.info("Agent %s stopped", self.agent_uuid)
def do_cvreactivate(self):
""" Reactive Agent
"""
do_cvreactivate = RequestsClient(
self.verifier_base_url, self.tls_enabled)
response = do_cvreactivate.put(
(f'/agents/{self.agent_uuid}/reactivate'),
data=b'',
cert=self.cert,
verify=False
)
if response.status_code == 503:
logger.error("Cannot connect to Verifier at %s with Port %s. Connection refused.", self.verifier_ip, self.verifier_port)
sys.exit()
elif response.status_code == 504:
logger.error("Verifier at %s with Port %s timed out.", self.verifier_ip, self.verifier_port)
sys.exit()
response_body = response.json()
if response.status_code != 200:
keylime_logging.log_http_response(
logger, logging.ERROR, response_body)
logger.error("Update command response: %s Unexpected response from Cloud Verifier.", response.status_code)
else:
logger.info("Agent %s re-activated", self.agent_uuid)
def test_031_cv_agent_put(self):
"""Test CV's PUT /agents/{UUID} Interface"""
# TODO: this should actually test PUT functionality (e.g., make agent fail and then PUT back up)
test_031_cv_agent_put = RequestsClient(tenant_templ.verifier_base_url, tls_enabled)
response = test_031_cv_agent_put.put(
f"/v{self.api_version}/agents/{tenant_templ.agent_uuid}", data=b"", cert=tenant_templ.cert, verify=False
)
self.assertEqual(response.status_code, 200, "Non-successful CV agent Post return code!")
json_response = response.json()
# Ensure response is well-formed
self.assertIn("results", json_response, "Malformed response body!")
def doActivateVirtualAgent(registrar_ip, registrar_port, agent_id, deepquote):
data = {'deepquote': deepquote}
client = RequestsClient(f'{registrar_ip}:{registrar_port}', tls_enabled)
response = client.put(f'/agents/{agent_id}/vactivate', cert=tls_cert_info, data=json.dumps(data), verify=False)
response_body = response.json()
if response.status_code == 200:
logger.info("Registration activated for agent %s." % agent_id)
return True
logger.error(
"Error: unexpected http response code from Registrar Server: " + str(response.status_code))
keylime_logging.log_http_response(logger, logging.ERROR, response_body)
return False
def doActivateAgent(registrar_ip, registrar_port, agent_id, key):
data = {
'auth_tag': crypto.do_hmac(key, agent_id),
}
client = RequestsClient(f'{registrar_ip}:{registrar_port}', tls_enabled)
response = client.put(f'/v{api_version}/agents/{agent_id}/activate', cert=tls_cert_info, data=json.dumps(data), verify=False)
response_body = response.json()
if response.status_code == 200:
logger.info("Registration activated for agent %s.", agent_id)
return True
logger.error(
"Error: unexpected http response code from Registrar Server: %s", str(response.status_code))
keylime_logging.log_http_response(logger, logging.ERROR, response_body)
return False
