"""Gets index of active controller running specified service
:param resp: JSON formatted response from EOS
- :type resp: string
+ :type resp: str
:param service: EOS Service to look for
- :type service: string
+ :type service: str
:return: Index of controller
"""
entities = json.loads(resp)['entity-owners']['entity-type']
"""Gets modulo of number
:param num: Number to be used
- :type num: string
+ :type num: str
:param base: Base used
- :type base: string
+ :type base: str
:returns: Int representing modulo of specified numbers.
"""
:param n: Number to be converted
:type n: int
:param ip_address: Base address
- :type ip_address: string
+ :type ip_address: str
:returns: String containing Ipv4.
"""
"""Generate xml containing SGT mach data
:param ver1: Version of SXP protocol for compare
- :type ver1: string
+ :type ver1: str
:param ver2: Version of SXP protocol for compare
- :type ver2: string
+ :type ver2: str
:returns: String containing lower from those two specified versions.
"""
"""Generate xml containing FilterEntry data
:param seq: Sequence of entry
- :type seq: string
+ :type seq: str
:param entry_type: Type of entry (permit/deny)
- :type entry_type: string
+ :type entry_type: str
:param sgt: SGT matches to be added to entry
- :type sgt: string
+ :type sgt: str
:param esgt: SGT ranges match to be added to entry
- :type esgt: string
+ :type esgt: str
:param acl: ACL matches to be added to entry
- :type acl: string
+ :type acl: str
:param eacl: EACL matches to be added to entry
- :type eacl: string
+ :type eacl: str
:param pl: PrefixList matches to be added to entry
- :type pl: string
+ :type pl: str
:param epl: ExtendedPrefixList matches to be added to entry
- :type epl: string
+ :type epl: str
:param ps: PeerSequence matches to be added to entry
- :type ps: string
+ :type ps: str
:returns: String containing xml data for request
"""
"""Generate xml containing SGT mach data
:param sgt_entries: SGT matches
- :type sgt_entries: string
+ :type sgt_entries: str
:returns: String containing xml data for request
"""
"""Generate xml containing SGT RangeMach data
:param start: Start range of SGT
- :type start: string
+ :type start: str
:param end: End range of SGT
- :type end: string
+ :type end: str
:returns: String containing xml data for request
"""
"""Generate xml containing AccessList data
:param seq: Sequence of PrefixList entry
- :type seq: string
+ :type seq: str
:param entry_type: Entry type (permit/deny)
- :type entry_type: string
+ :type entry_type: str
:param acl_entries: XML data containing AccessList entries
- :type acl_entries: string
+ :type acl_entries: str
:returns: String containing xml data for request
"""
"""Generate xml containing AccessList data
:param ip: Ipv4/6 address
- :type ip: string
+ :type ip: str
:param mask: Ipv4/6 wildcard mask
- :type mask: string
+ :type mask: str
:returns: String containing xml data for request
"""
"""Generate xml containing ExtendedAccessList data
:param ip: Ipv4/6 address
- :type ip: string
+ :type ip: str
:param mask: Ipv4/6 wildcard mask
- :type mask: string
+ :type mask: str
:param amask: Ipv4/6 address mask
- :type amask: string
+ :type amask: str
:param wmask: Ipv4/6 address wildcard mask
- :type wmask: string
+ :type wmask: str
:returns: String containing xml data for request
"""
"""Generate xml containing PeerSequence data
:param seq: Sequence of PrefixList entry
- :type seq: string
+ :type seq: str
:param entry_type: Entry type (permit/deny)
- :type entry_type: string
+ :type entry_type: str
:param ps_entries: XML data containing PeerSequence entries
- :type ps_entries: string
+ :type ps_entries: str
:returns: String containing xml data for request
"""
"""Generate xml containing PrefixList data
:param seq: Sequence of PrefixList entry
- :type seq: string
+ :type seq: str
:param entry_type: Entry type (permit/deny)
- :type entry_type: string
+ :type entry_type: str
:param pl_entries: XML data containing PrefixList entries
- :type pl_entries: string
+ :type pl_entries: str
:returns: String containing xml data for request
"""
"""Generate xml containing PrefixList data
:param prefix: Ipv4/6 prefix
- :type prefix: string
+ :type prefix: str
:returns: String containing xml data for request
"""
"""Generate xml containing Extended PrefixList data
:param prefix: Ipv4/6 prefix
- :type prefix: string
+ :type prefix: str
:param op: PrefixList option (ge/le/eq)
- :type op: string
+ :type op: str
:param mask: Ipv4/6 Mask
- :type mask: string
+ :type mask: str
:returns: String containing xml data for request
"""
"""Generate xml containing Extended PrefixList data
:param op: PrefixList option (ge/le/eq)
- :type op: string
+ :type op: str
:param length: PeerSequence length
- :type length: string
+ :type length: str
:returns: String containing xml data for request
"""
"""Parse JSON string into Array of PeerGroups
:param groups_json: JSON containing PeerGroups
- :type groups_json: string
+ :type groups_json: str
:returns: Array containing PeerGroups.
"""
"""Parse JSON string into Array of Connections
:param connections_json: JSON containing Connections
- :type connections_json: string
+ :type connections_json: str
:returns: Array containing Connections.
"""
"""Test if Connection with specified values is contained in JSON
:param connections_json: JSON containing Connections
- :type connections_json: string
+ :type connections_json: str
:param version: Version of SXP protocol (version1/2/3/4)
- :type version: string
+ :type version: str
:param mode: Mode of SXP peer (speaker/listener/both)
- :type mode: string
+ :type mode: str
:param ip: Ipv4/6 address of remote peer
- :type ip: string
+ :type ip: str
:param port: Port on with remote peer listens
- :type port: string
+ :type port: str
:param state: State of connection (on/off/pendingOn/deleteHoldDown)
- :type state: string
+ :type state: str
:returns: True if Connection with specified params was found, otherwise False.
"""
"""Parse JSON string into Array of Bindings
:param bindings_json: JSON containing Bindings
- :type bindings_json: string
+ :type bindings_json: str
:returns: Array containing Bindings.
"""
"""Test if Binding with specified values is contained in JSON
:param bindings: JSON containing Bindings
- :type bindings: string
+ :type bindings: str
:param sgt: Source Group Tag
- :type sgt: string
+ :type sgt: str
:param prefix: Ipv4/6 prefix
- :type prefix: string
+ :type prefix: str
:returns: True if Binding with specified params was found, otherwise False.
"""
"""Parse JSON string into Array of PrefixGroups
:param prefix_groups_json: JSON containing PrefixGroups
- :type prefix_groups_json: string
+ :type prefix_groups_json: str
:param source_: Source of PrefixGroups (sxp/local)
- :type source_: string
+ :type source_: str
:returns: Array containing PrefixGroups.
"""
"""Test if Binding with specified values is contained in JSON
:param prefix_groups_json: JSON containing Bindings and PrefixGroups
- :type prefix_groups_json: string
+ :type prefix_groups_json: str
:param sgt: Source Group Tag
- :type sgt: string
+ :type sgt: str
:param prefix: Ipv4/6 prefix
- :type prefix: string
+ :type prefix: str
:param source_: Source of binding (local/sxp)
- :type source_: string
+ :type source_: str
:param action: Action for binding (add/delete)
- :type action: string
+ :type action: str
:returns: True if Binding with specified params was found, otherwise False.
"""
"""Generate xml for Add Bindings request
:param sgt: Source Group Tag
- :type sgt: string
+ :type sgt: str
:param prefix: Ipv4/6 prefix
- :type prefix: string
+ :type prefix: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:param domain_name: Name of Domain
- :type domain_name: string
+ :type domain_name: str
:returns: String containing xml data for request
"""
return data
-def add_connection_xml(version, mode, ip, port, node, password_, domain_name, bindings_timeout=0):
+def add_connection_xml(version, mode, ip, port, node, password_, domain_name, bindings_timeout=0, security_mode=''):
"""Generate xml for Add Connection request
:param version: Version of SXP protocol (version1/2/3/4)
- :type version: string
+ :type version: str
:param mode: Mode of SXP peer (speaker/listener/both)
- :type mode: string
+ :type mode: str
:param ip: Ipv4/6 address of remote peer
- :type ip: string
+ :type ip: str
:param port: Port on with remote peer listens
- :type port: string
+ :type port: str
:param node: Ipv4 address of node
- :type node: string
+ :type node: str
:param password_: Password type (none/default)
- :type password_: string
+ :type password_: str
:param domain_name: Name of Domain
- :type domain_name: string
+ :type domain_name: str
+ :param security_mode: Default/TSL security
+ :type security_mode: str
:param bindings_timeout: Specifies DHD and Reconciliation timers
:type bindings_timeout: int
:returns: String containing xml data for request
<mode>$mode</mode>
<version>$version</version>
<description>Connection to ISR-G2</description>
+ $security_type
<connection-timers>
<hold-time-min-acceptable>45</hold-time-min-acceptable>
<keep-alive-time>30</keep-alive-time>
''')
data = templ.substitute(
{'ip': ip, 'port': port, 'mode': mode, 'version': version, 'node': node,
- 'password_': password_, 'domain': get_domain_name(domain_name), 'timeout': bindings_timeout})
+ 'password_': password_, 'domain': get_domain_name(domain_name), 'timeout': bindings_timeout,
+ 'security_type': '<security-type>' + security_mode + '</security-type>' if security_mode else ''})
return data
"""Generate xml for Delete Connection request
:param address: Ipv4/6 address of remote peer
- :type address: string
+ :type address: str
:param port: Port on with remote peer listens
- :type port: string
+ :type port: str
:param node: Ipv4 address of node
- :type node: string
+ :type node: str
:param domain_name: Name of Domain
- :type domain_name: string
+ :type domain_name: str
:returns: String containing xml data for request
"""
"""Generate xml for Update Binding request
:param sgt0: Original Source Group Tag
- :type sgt0: string
+ :type sgt0: str
:param prefix0: Original Ipv4/6 prefix
- :type prefix0: string
+ :type prefix0: str
:param sgt1: New Source Group Tag
- :type sgt1: string
+ :type sgt1: str
:param prefix1: New Ipv4/6 prefix
- :type prefix1: string
+ :type prefix1: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:param domain_name: Name of Domain
- :type domain_name: string
+ :type domain_name: str
:returns: String containing xml data for request
"""
"""Generate xml for Delete Binding request
:param sgt: Source Group Tag
- :type sgt: string
+ :type sgt: str
:param prefix: Ipv4/6 prefix
- :type prefix: string
+ :type prefix: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:param domain_name: Name of Domain
- :type domain_name: string
+ :type domain_name: str
:returns: String containing xml data for request
"""
"""Generate xml for Add PeerGroups request
:param name: Name of PeerGroup
- :type name: string
+ :type name: str
:param peers: XML formatted peers that will be added to group
- :type peers: string
+ :type peers: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:returns: String containing xml data for request
"""
"""Generate xml for Delete PeerGroup request
:param name: Name of PeerGroup
- :type name: string
+ :type name: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:returns: String containing xml data for request
"""
"""Generate xml for Get PeerGroups request
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:returns: String containing xml data for request
"""
"""Generate xml for Add Filter request
:param group: Name of group containing filter
- :type group: string
+ :type group: str
:param filter_type: Type of filter
- :type filter_type: string
+ :type filter_type: str
:param entries: XML formatted entries that will be added in filter
- :type entries: string
+ :type entries: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:param policy: Policy of filter update mechanism
- :type policy: string
+ :type policy: str
:returns: String containing xml data for request
"""
"""Generate xml for Add Domain Filter request
:param domain: Name of Domain containing filter
- :type domain: string
+ :type domain: str
:param domains: Domains on which filter will be applied
- :type domains: string
+ :type domains: str
:param entries: XML formatted entries that will be added in filter
- :type entries: string
+ :type entries: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:param filter_name: Name of filter
- :type filter_name: string
+ :type filter_name: str
:returns: String containing xml data for request
"""
"""Generate xml for Delete Filter request
:param group: Name of group containing filter
- :type group: string
+ :type group: str
:param filter_type: Type of filter
- :type filter_type: string
+ :type filter_type: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:returns: String containing xml data for request
"""
"""Generate xml for Delete Filter request
:param domain: Name of Domain containing filter
- :type domain: string
+ :type domain: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:param filter_name: Name of filter
- :type filter_name: string
+ :type filter_name: str
:returns: String containing xml data for request
"""
"""Generate xml for Get Connections request
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:param domain_name: Name of Domain
- :type domain_name: string
+ :type domain_name: str
:returns: String containing xml data for request
"""
"""Generate xml for Get Bindings request
:param binding_range: All or only Local bindings
- :type binding_range: string
+ :type binding_range: str
:param ip: Ipv4 address of node
- :type ip: string
+ :type ip: str
:param domain_name: Name of Domain
- :type domain_name: string
+ :type domain_name: str
:returns: String containing xml data for request
"""
return data
-def add_node_xml(node_id, port, password, version, node_ip=None, expansion=0, bindings_timeout=0):
+def add_node_xml(node_id, port, password, version, node_ip=None, expansion=0, bindings_timeout=0, keystores=None):
"""Generate xml for Add Node request
:param node_id: Ipv4 address formatted node id
- :type node_id: string
+ :type node_id: str
:param node_ip: Ipv4 address of node
- :type node_ip: string
+ :type node_ip: strl
:param port: Node port number
:type port: int
:param password: TCP-MD5 password
- :type password: string
+ :type password: str
:param version: Sxp device version
- :type version: string
+ :type version: str
:param expansion: Bindings expansion
:type expansion: int
:param bindings_timeout: Specifies DHD and Reconciliation timers
:type bindings_timeout: int
+ :param keystores: SSL keystore and truststore specification
+ :type keystores: dict
:returns: String containing xml data for request
"""
+ tls = ''
+ if keystores:
+ tls = Template('''
+ <tls>
+ <keystore>
+ <location>$keystore</location>
+ <type>JKS</type>
+ <path-type>PATH</path-type>
+ <password>$passwd</password>
+ </keystore>
+ <truststore>
+ <location>$truststore</location>
+ <type>JKS</type>
+ <path-type>PATH</path-type>
+ <password>$passwd</password>
+ </truststore>
+ <certificate-password>$passwd</certificate-password>
+ </tls>
+ ''').substitute(
+ {'keystore': keystores['keystore'], 'truststore': keystores['truststore'], 'passwd': keystores['password']})
+
templ = Template('''<input xmlns="urn:opendaylight:sxp:controller">
<node-id>$id</node-id>
<timers>
</timers>
<mapping-expanded>$expansion</mapping-expanded>
<security>
+ $tls
<password>$password</password>
</security>
<tcp-port>$port</tcp-port>
<master-database></master-database>
</input>''')
data = templ.substitute(
- {'ip': node_id if not node_ip else node_ip, 'id': node_id, 'port': port, 'password': password,
- 'version': version, 'expansion': expansion, 'timeout': bindings_timeout})
+ {'ip': node_ip or node_id, 'id': node_id, 'port': port, 'password': password,
+ 'version': version, 'expansion': expansion, 'timeout': bindings_timeout, 'tls': tls})
return data
"""Generate xml for Delete node request
:param node_id: Ipv4 address formatted node id
- :type node_id: string
+ :type node_id: str
:returns: String containing xml data for request
"""
"""Generate xml for Add Domain request
:param node_id: Id of node
- :type node_id: string
+ :type node_id: str
:param name: Name of Domain
- :type name: string
+ :type name: str
:returns: String containing xml data for request
"""
"""Generate xml for Remove Domain request
:param node_id: Id of node
- :type node_id: string
+ :type node_id: str
:param name: Name of Domain
- :type name: string
+ :type name: str
:returns: String containing xml data for request
"""
"""Generate xml for Get Bindings request
:param domain_name: Name of Domain
- :type domain_name: string
+ :type domain_name: str
:returns: String containing xml data for request
"""
"""Generate xml for Add Bindings request
:param node_id: Id of node
- :type node_id: string
+ :type node_id: str
:param domain: Name of Domain
- :type domain: string
+ :type domain: str
:param sgt: Security group
:type sgt: int
:param prefixes: List of ip-prefixes
- :type prefixes: string
+ :type prefixes: str
:returns: String containing xml data for request
"""
"""Generate xml for Remove Bindings request
:param node_id: Id of node
- :type node_id: string
+ :type node_id: str
:param domain: Name of Domain
- :type domain: string
+ :type domain: str
:param sgt: Security group
:type sgt: int
:param prefixes: List of ip-prefixes
- :type prefixes: string
+ :type prefixes: str
:returns: String containing xml data for request
"""
"""Generate and concatenate ip-prefixes
:param start: Start index
- :type start: string
+ :type start: str
:param end: End index
- :type end: string
+ :type end: str
:returns: String containing concatenated ip-prefixes
"""
--- /dev/null
+*** Settings ***
+Documentation Test suite to test SSL security fuctionality
+Suite Setup Setup SXP Environment Local 6
+Suite Teardown Clean SXP Environment 6
+Test Setup Clean Nodes
+Library RequestsLibrary
+Library SSHLibrary
+Library ../../../libraries/Sxp.py
+Resource ../../../libraries/SxpLib.robot
+Resource ../../../libraries/WaitForFailure.robot
+Resource ../../../libraries/SSHKeywords.robot
+
+*** Variables ***
+${version} version4
+${password} admin123
+${ssl_stores} /tmp
+
+*** Test Cases ***
+SSL ConectivityCase 1
+ [Documentation] Test of SSL security with two SXP-nodes both have each other in truststores
+ [Tags] SXP SSL
+ Add Connection ${version} speaker 127.0.0.2 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} listener 127.0.0.1 64999 127.0.0.2 security_mode=TLS
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} speaker 127.0.0.2
+ ... 64999 127.0.0.1
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} listener 127.0.0.1
+ ... 64999 127.0.0.2
+ Clean Connections 127.0.0.1
+ Clean Connections 127.0.0.2
+ Add Connection ${version} listener 127.0.0.2 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} speaker 127.0.0.1 64999 127.0.0.2 security_mode=TLS
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} listener 127.0.0.2
+ ... 64999 127.0.0.1
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} speaker 127.0.0.1
+ ... 64999 127.0.0.2
+ Clean Connections 127.0.0.1
+ Clean Connections 127.0.0.2
+ Add Connection ${version} both 127.0.0.2 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} both 127.0.0.1 64999 127.0.0.2 security_mode=TLS
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} both 127.0.0.2
+ ... 64999 127.0.0.1
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} both 127.0.0.1
+ ... 64999 127.0.0.2
+
+SSL ConectivityCase 2
+ [Documentation] Test of SSL security with two SXP-nodes while node-1 does not contain node-3 in truststore
+ [Tags] SXP SSL
+ Add Connection ${version} speaker 127.0.0.3 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} listener 127.0.0.1 64999 127.0.0.3 security_mode=TLS
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} speaker 127.0.0.3
+ ... 64999 127.0.0.1
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} listener 127.0.0.1
+ ... 64999 127.0.0.3
+ Clean Connections 127.0.0.1
+ Clean Connections 127.0.0.3
+ Add Connection ${version} listener 127.0.0.3 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} speaker 127.0.0.1 64999 127.0.0.3 security_mode=TLS
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} listener 127.0.0.3
+ ... 64999 127.0.0.1
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} speaker 127.0.0.1
+ ... 64999 127.0.0.3
+ Clean Connections 127.0.0.1
+ Clean Connections 127.0.0.3
+ Add Connection ${version} both 127.0.0.3 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} both 127.0.0.1 64999 127.0.0.3 security_mode=TLS
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} both 127.0.0.3
+ ... 64999 127.0.0.1
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} both 127.0.0.1
+ ... 64999 127.0.0.3
+
+SSL ConectivityCase 3
+ [Documentation] Test of SSL security with two SXP-nodes while both of nodes does not have each other in truststores
+ [Tags] SXP SSL
+ Add Connection ${version} speaker 127.0.0.4 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} listener 127.0.0.1 64999 127.0.0.4 security_mode=TLS
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} speaker 127.0.0.4
+ ... 64999 127.0.0.1
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} listener 127.0.0.1
+ ... 64999 127.0.0.4
+ Clean Connections 127.0.0.1
+ Clean Connections 127.0.0.4
+ Add Connection ${version} listener 127.0.0.4 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} speaker 127.0.0.1 64999 127.0.0.4 security_mode=TLS
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} listener 127.0.0.4
+ ... 64999 127.0.0.1
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} speaker 127.0.0.1
+ ... 64999 127.0.0.4
+ Clean Connections 127.0.0.1
+ Clean Connections 127.0.0.4
+ Add Connection ${version} both 127.0.0.4 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} both 127.0.0.1 64999 127.0.0.4 security_mode=TLS
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} both 127.0.0.4
+ ... 64999 127.0.0.1
+ Verify_Keyword_Never_Passes_Within_Timeout 15 1 Verify Connection ${version} both 127.0.0.1
+ ... 64999 127.0.0.4
+
+SSL ConectivityCase 4
+ [Documentation] Test of SSL security in topology consisting of SXP-nodes that does not uses any security,
+ ... uses TCP-MD5 and SSL security. Each node conatains series of bindings that in the end should
+ ... be all propagated to node-5 in topology.
+ [Tags] SXP SSL
+ Add Connection ${version} listener 127.0.0.2 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} speaker 127.0.0.1 64999 127.0.0.2 security_mode=TLS
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} listener 127.0.0.2
+ ... 64999 127.0.0.1
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} speaker 127.0.0.1
+ ... 64999 127.0.0.2
+ Add Connection ${version} listener 127.0.0.3 64999 127.0.0.1 paswd
+ Add Connection ${version} speaker 127.0.0.1 64999 127.0.0.3 paswd
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} listener 127.0.0.3
+ ... 64999 127.0.0.1
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} speaker 127.0.0.1
+ ... 64999 127.0.0.3
+ Add Connection ${version} listener 127.0.0.4 64999 127.0.0.1
+ Add Connection ${version} speaker 127.0.0.1 64999 127.0.0.4
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} listener 127.0.0.4
+ ... 64999 127.0.0.1
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} speaker 127.0.0.1
+ ... 64999 127.0.0.4
+ Add Connection ${version} speaker 127.0.0.5 64999 127.0.0.1 security_mode=TLS
+ Add Connection ${version} listener 127.0.0.1 64999 127.0.0.5 security_mode=TLS
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} speaker 127.0.0.5
+ ... 64999 127.0.0.1
+ Wait Until Keyword Succeeds 15 1 Verify Connection ${version} listener 127.0.0.1
+ ... 64999 127.0.0.5
+ Wait Until Keyword Succeeds 15 1 Verify Topology Bindings 6
+
+*** Keywords ***
+Setup SXP Environment Local
+ [Arguments] ${node_range}
+ [Documentation] Create session to Controller, copy keystores to ODL machines and setup topology for testing
+ Setup SXP Session
+ Open_Connection_To_ODL_System
+ ${ODL_SYSTEM_JAVA_HOME} SSHLibrary.Execute_Command java -XshowSettings:properties -version 2>&1 | grep java.home | sed 's/.*= //'
+ : FOR ${node} IN RANGE 1 ${node_range}
+ \ SSHKeywords.Execute_Command_Should_Pass ${ODL_SYSTEM_JAVA_HOME}/bin/keytool -genkeypair -alias odl-sxp-${node} -keyalg RSA -storepass ${password} -keypass ${password} -dname "CN=www.opendaylight.org, OU=csit, O=ODL, L=N/A, S=N/A, C=N/A" -keystore csit-keystore-${node}
+ \ SSHKeywords.Execute_Command_Should_Pass ${ODL_SYSTEM_JAVA_HOME}/bin/keytool -exportcert -keystore csit-keystore-${node} -alias odl-sxp-${node} -storepass ${password} -file odl-sxp-${node}.cer
+ # Node-1 TRUSTS Node-2, Node-5
+ SSHKeywords.Execute_Command_Should_Pass ${ODL_SYSTEM_JAVA_HOME}/bin/keytool -importcert -keystore csit-truststore-1 -alias odl-sxp-2 -storepass ${password} -keypass ${password} -file odl-sxp-2.cer -noprompt
+ SSHKeywords.Execute_Command_Should_Pass ${ODL_SYSTEM_JAVA_HOME}/bin/keytool -importcert -keystore csit-truststore-1 -alias odl-sxp-5 -storepass ${password} -keypass ${password} -file odl-sxp-5.cer -noprompt
+ # Node-2 TRUSTS Node-1
+ SSHKeywords.Execute_Command_Should_Pass ${ODL_SYSTEM_JAVA_HOME}/bin/keytool -importcert -keystore csit-truststore-2 -alias odl-sxp-2 -storepass ${password} -keypass ${password} -file odl-sxp-1.cer -noprompt
+ # Node-3 TRUSTS Node-1
+ SSHKeywords.Execute_Command_Should_Pass ${ODL_SYSTEM_JAVA_HOME}/bin/keytool -importcert -keystore csit-truststore-3 -alias odl-sxp-2 -storepass ${password} -keypass ${password} -file odl-sxp-1.cer -noprompt
+ # Node-5 TRUSTS Node-1
+ SSHKeywords.Execute_Command_Should_Pass ${ODL_SYSTEM_JAVA_HOME}/bin/keytool -importcert -keystore csit-truststore-5 -alias odl-sxp-2 -storepass ${password} -keypass ${password} -file odl-sxp-1.cer -noprompt
+ SSHKeywords.Execute_Command_Should_Pass cp csit-keystore-4 csit-truststore-4
+ SSHKeywords.Execute_Command_Should_Pass rm odl-sxp-*.cer
+ SSHKeywords.Execute_Command_Should_Pass mv ./csit-keystore-* ${ssl_stores}
+ SSHKeywords.Execute_Command_Should_Pass mv ./csit-truststore-* ${ssl_stores}
+ SSHLibrary.Close Connection
+ : FOR ${node} IN RANGE 1 ${node_range}
+ \ ${SSL} Create Dictionary truststore=${ssl_stores}/csit-truststore-${node} keystore=${ssl_stores}/csit-keystore-${node} password=${password}
+ \ Add Node 127.0.0.${node} ${EMPTY} ssl_stores=${SSL}
+ \ Add Binding ${node}00 1.1.1.${node}/32 127.0.0.${node}
+ \ Add Binding ${node}00 2.2.2.${node}/32 127.0.0.${node}
+
+Verify Topology Bindings
+ [Arguments] ${node_range}
+ [Documentation] Create session to Controller
+ ${resp} Get Bindings 127.0.0.5
+ : FOR ${node} IN RANGE 1 ${node_range}
+ \ Should Contain Binding ${resp} ${node}00 2.2.2.${node}/32
+
+Clean Nodes
+ [Documentation] Cleanup of resources alocated by test suite
+ Clean Connections 127.0.0.1
+ Clean Connections 127.0.0.2
+ Clean Connections 127.0.0.3
+ Clean Connections 127.0.0.4
+ Clean Connections 127.0.0.5
Code Review / integration / test.git / commitdiff