def test_is_cert_working_with_scmb_failed_case(self, config_mock,
                                                   get_map_scmb_connections,
                                                   get_oneview_client,
                                                   _get_ov_ca_cert_base64data):
        config_mock.get_authentication_mode.return_value = 'session'
        config_mock.get_oneview_multiple_ips.return_value = ['1.1.1.1']
        config_mock.get_config.return_value = {
            'ssl': {
                'SSLCertFile': '/dir/cert_file.crt'
            },
        }

        oneview_client = mock.MagicMock()
        get_oneview_client.return_value = oneview_client
        oneview_client.certificate_rabbitmq.get_key_pair.return_value = {
            'base64SSLCertData': 'Client CERT',
            'base64SSLKeyData': 'Client Key'
        }

        oneview_client.connection = 'con'
        _get_ov_ca_cert_base64data.return_value = "CA CERT"
        get_map_scmb_connections.return_value = []

        scmb.init_event_service()

        scmb_thread = SCMB('2.2.2.2', 'cred', 'token')

        self.assertFalse(scmb_thread._is_cert_working_with_scmb())
    def test_get_oneview_cert_unexpected_error(self,
                                               _get_ov_ca_cert_base64data,
                                               get_oneview_client,
                                               config_mock):
        config_mock.get_config.return_value = {
            'ssl': {
                'SSLCertFile': 'cert_file.crt'
            }
        }

        # Certs Generated with success
        oneview_client = mock.MagicMock()
        e = HPOneViewException({
            'errorCode': 'UNEXPECTED ERROR',
            'message': 'Unexpected error.',
        })
        hp_ov_exception_msg = "Unexpected error."

        oneview_client.certificate_authority.get.return_value = "CA CERT"
        oneview_client.certificate_rabbitmq.generate.return_value = True
        oneview_client.certificate_rabbitmq.get_key_pair.side_effect = e
        get_oneview_client.return_value = oneview_client

        oneview_client.connection = 'con'
        _get_ov_ca_cert_base64data.return_value = "CA CERT"

        with self.assertRaises(HPOneViewException) as hp_exception:
            scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
            scmb_thread.get_scmb_certs()

        test_exception = hp_exception.exception
        self.assertEqual(hp_ov_exception_msg, test_exception.msg)
        self.assertEqual(e.oneview_response, test_exception.oneview_response)
    def test_consume_message(self, dispatch_mock):
        with open('oneview_redfish_toolkit/mockups/oneview/Alert.json') as f:
            event_mockup = f.read().encode('UTF-8')

        scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
        scmb_thread.consume_message(None, None, None, event_mockup)

        self.assertTrue(dispatch_mock.called)
    def test_check_cert_exist_when_config_key_is_missing(
            self, logging_mock, config_mock):
        config_mock.get_config.return_value = {'ssl': {}}

        with self.assertRaises(KeyError) as error:
            scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
            scmb_thread._has_valid_certificates()

        logging_mock.error.assert_called_with(
            'Invalid configuration for ssl cert. '
            'Verify the [ssl] section in config file')

        self.assertEqual("'SSLCertFile'", str(error.exception))
    def test_check_cert_exist(self, isfile, config_mock,
                              _is_cert_working_with_scmb):
        config_mock.get_config.return_value = {'ssl': {'SSLCertFile': ''}}

        # Files exist
        isfile.return_value = True
        _is_cert_working_with_scmb.return_value = True

        scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
        self.assertTrue(scmb_thread._has_valid_certificates())

        # Certs files don't exist
        isfile.return_value = False
        _is_cert_working_with_scmb.return_value = False
        self.assertFalse(scmb_thread._has_valid_certificates())
        self.assertFalse(scmb_thread._has_valid_certificates())
    def test_get_cert_already_exists(self, _get_ov_ca_cert_base64data,
                                     get_oneview_client, config_mock,
                                     _is_cert_working_with_scmb):
        config_mock.get_config.return_value = {
            'ssl': {
                'SSLCertFile': 'cert_file.crt'
            }
        }

        os.makedirs(name='scmb', exist_ok=True)
        self.addCleanup(shutil.rmtree, 'scmb')

        # Certs Generated with success
        oneview_client = mock.MagicMock()
        oneview_client.certificate_authority.get.return_value = "CA CERT"
        oneview_client.certificate_rabbitmq.generate.return_value = True
        oneview_client.certificate_rabbitmq.get_key_pair.return_value = {
            'base64SSLCertData': 'Client CERT',
            'base64SSLKeyData': 'Client Key'
        }
        get_oneview_client.return_value = oneview_client
        _is_cert_working_with_scmb.return_value = True

        # Certs already exist
        e = HPOneViewException({
            'errorCode': 'RABBITMQ_CLIENTCERT_CONFLICT',
            'message': 'certs already exist',
        })
        oneview_client.certificate_rabbitmq.generate.side_effect = e

        oneview_client.connection = 'con'
        _get_ov_ca_cert_base64data.return_value = "CA CERT"

        scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
        scmb_thread.get_scmb_certs()
        self.assertTrue(scmb_thread._has_valid_certificates())
    def test_init_event_service_with_certs_already_generated(
            self, config_mock, get_ov_client, _has_certs_path, conn_param,
            block_conn, channel):
        config_mock.get_config.return_value = {
            'ssl': {
                'SSLCertFile': '/dir/cert_file.crt'
            },
        }

        pika_mock = mock.MagicMock()
        pika_mock.channel.Channel = {}
        block_conn.return_value = pika_mock
        conn_param.return_value = {}
        channel.return_value = {}
        oneview_client = mock.MagicMock()
        get_ov_client.return_value = oneview_client
        _has_certs_path.return_value = True

        scmb.init_event_service()

        scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
        scmb_thread.run()

        self.assertTrue(scmb_thread._has_valid_certificates())
    def test_generate_new_cert_for_oneview(self, get_oneview_client,
                                           _is_cert_working_with_scmb,
                                           config_mock, _get_ov_ca_cert):
        config_mock.get_config.return_value = {
            'ssl': {
                'SSLCertFile': 'cert_file.crt'
            }
        }

        cert_key_pair = {
            'base64SSLCertData': 'Client CERT',
            'base64SSLKeyData': 'Client Key'
        }

        # Certs Generated with success
        oneview_client = mock.MagicMock()
        e = HPOneViewException({
            'errorCode': 'RESOURCE_NOT_FOUND',
            'message': 'Resource not found.',
        })

        oneview_client.certificate_authority.get.return_value = "CA CERT"
        oneview_client.certificate_rabbitmq.generate.return_value = True
        oneview_client.certificate_rabbitmq.get_key_pair.side_effect = \
            [e, cert_key_pair]
        get_oneview_client.return_value = oneview_client
        _is_cert_working_with_scmb.return_value = True

        _get_ov_ca_cert.return_value = {
            'type': 'CAInfo',
            'members': [{
                'certificateDetails': {
                    'base64Data': 'CA CERT'
                }
            }]
        }
        scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
        scmb_thread.get_scmb_certs()
        self.assertTrue(scmb_thread._has_valid_certificates())

        # Return None if cert is not a dict
        _get_ov_ca_cert.return_value = []
        cert = scmb_thread._get_ov_ca_cert_base64data(oneview_client)
        self.assertEqual(cert, None)
    def test_init_event_service_with_valid_certificate(self, _get_ov_ca_cert,
                                                       get_oneview_client,
                                                       config_mock, conn_param,
                                                       block_conn, channel):
        config_mock.get_config.return_value = {
            'ssl': {
                'SSLCertFile': 'cert_file.crt'
            },
        }

        os.makedirs(name='scmb', exist_ok=True)
        self.addCleanup(shutil.rmtree, 'scmb')

        oneview_client = mock.MagicMock()
        oneview_client.certificate_authority.get.return_value = "CA CERT"
        oneview_client.certificate_rabbitmq.generate.return_value = True
        get_oneview_client.return_value = oneview_client
        oneview_client.certificate_rabbitmq.get_key_pair.return_value = {
            'base64SSLCertData': 'Client CERT',
            'base64SSLKeyData': 'Client Key'
        }

        oneview_client.connection = 'con'
        _get_ov_ca_cert.return_value = "CA CERT"

        pika_mock = mock.MagicMock()
        pika_mock.channel.Channel = {}
        block_conn.return_value = pika_mock
        conn_param.return_value = {}
        channel.return_value = {}

        scmb.init_event_service()

        scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
        scmb_thread.run()
        self.assertTrue(scmb_thread._has_valid_certificates())
        self.assertTrue(scmb_thread._is_cert_working_with_scmb())
 def test_scmb_connect(self, blk_conn, conn_params, ext_cred):
     blk_conn.return_value = {}
     conn_params.return_value = {}
     ext_cred.return_value = {}
     scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
     self.assertEqual(scmb_thread.scmb_connect(), {})
Пример #11
0
    def test_get_oneview_cert_unexpected_error(self, scmb_connect,
                                               resource_client,
                                               _get_ov_ca_cert_base64data,
                                               get_oneview_client,
                                               config_mock):
        config_mock.get_config.return_value = {
            'ssl': {
                'SSLCertFile': 'cert_file.crt'
            }
        }

        # Certs Generated with success
        oneview_client = mock.MagicMock()
        e = HPOneViewException({
            'errorCode': 'UNEXPECTED ERROR',
            'message': 'Unexpected error.',
        })
        hp_ov_exception_msg = "Unexpected error."

        oneview_client.certificate_authority.get.return_value = "CA CERT"
        oneview_client.certificate_rabbitmq.generate.return_value = True
        oneview_client.certificate_rabbitmq.get_key_pair.side_effect = e
        get_oneview_client.return_value = oneview_client

        oneview_client.connection = 'con'
        _get_ov_ca_cert_base64data.return_value = "CA CERT"

        with self.assertRaises(HPOneViewException) as hp_exception:
            scmb_thread = SCMB('1.1.1.1', 'cred', 'token')
            scmb_thread.get_scmb_certs()

        test_exception = hp_exception.exception
        self.assertEqual(hp_ov_exception_msg, test_exception.msg)
        self.assertEqual(e.oneview_response, test_exception.oneview_response)

        scmb_connect.side_effect = e

        scmb_thread._listen_scmb()

        # test get certificate exception
        _get_ov_ca_cert_base64data.return_value = None

        with self.assertRaises(OneViewRedfishException) as redfish_exception:
            scmb_thread.get_scmb_certs()

        test_exception = redfish_exception.exception.msg
        self.assertEqual(test_exception,
                         "Failed to fetch OneView CA Certificate")

        e = HPOneViewException({
            'errorCode': 'RABBITMQ_CLIENTCERT_CONFLICT',
            'message': 'RABBITMQ_CLIENTCERT_CONFLICT',
        })
        oneview_client.certificate_rabbitmq.generate.side_effect = e
        scmb_thread._generate_certificate_in_oneview(oneview_client)

        resource_client.get.return_value = "Cert"

        scmb_thread._get_ov_ca_cert(oneview_client)

        # test certificate generation exception
        e = HPOneViewException({
            'errorCode': 'NOT_FOUND',
            'message': 'NOT_FOUND',
        })
        oneview_client.certificate_rabbitmq.generate.side_effect = e
        with self.assertRaises(HPOneViewException) as hp_exception:
            scmb_thread._generate_certificate_in_oneview(oneview_client)

        test_exception = hp_exception.exception.msg
        self.assertEqual(test_exception, "NOT_FOUND")