fixup! split up the rest of features from connect into separate suites

Bravo555 · Bravo555 · commit 6cb58511426b · 2025-12-08T17:32:42.000Z
Signed-off-by: Marcel Guzik &lt;marcel.guzik@cumulocity.com&gt;
diff --git a/tests/RobotFramework/tests/pkcs11/pin_select/current.robot b/tests/RobotFramework/tests/pkcs11/pin_select/current.robot
@@ -1,7 +1,5 @@
 *** Settings ***
 Resource    pin_select.resource
-Resource    ../pkcs11_common.resource
-
 Suite Setup    tedge-p11-server Setup    ${TEDGE_P11_SERVER_VERSION}
 
 
diff --git a/tests/RobotFramework/tests/pkcs11/pin_select/initial.robot b/tests/RobotFramework/tests/pkcs11/pin_select/initial.robot
@@ -1,12 +1,10 @@
 *** Settings ***
 Resource    pin_select.resource
-Resource    ../pkcs11_common.resource
-
 Suite Setup    tedge-p11-server Setup    ${TEDGE_P11_SERVER_VERSION}
 
 
 *** Variables ***
-${TEDGE_P11_SERVER_VERSION}    1.6.0
+${TEDGE_P11_SERVER_VERSION}    1.7.0
 
 
 *** Test Cases ***
diff --git a/tests/RobotFramework/tests/pkcs11/pin_select/pin_select.resource b/tests/RobotFramework/tests/pkcs11/pin_select/pin_select.resource
@@ -12,10 +12,18 @@ Pass PIN in the request using pin-value
     Execute Command    cmd=tedge config set device.key_uri "pkcs11:token=tedge;object=tedge?pin-value=incorrect"
     Tedge Reconnect Should Fail With    The specified PIN is incorrect
 
-    [Teardown]    Execute Command    tedge config set device.key_uri "${key_uri}"
+    [Teardown]    Restore previous key_uri    ${key_uri}
 
 Pass PIN in the request using device.key_pin
     Execute Command    tedge config set device.key_pin incorrect
     Tedge Reconnect Should Fail With    The specified PIN is incorrect
 
     [Teardown]    Execute Command    tedge config unset device.key_pin
+
+Restore previous key_uri
+    [Arguments]    ${key_uri}
+    IF    $key_uri
+        Execute Command    tedge config set device.key_uri "${key_uri}"
+    ELSE
+        Execute Command    tedge config unset device.key_uri
+    END
diff --git a/tests/RobotFramework/tests/pkcs11/pkcs11_common.resource b/tests/RobotFramework/tests/pkcs11/pkcs11_common.resource
@@ -151,12 +151,19 @@ tedge-p11-server Setup
     ${DEVICE_SN}=    Setup    register=${False}
     Set Suite Variable    ${DEVICE_SN}
 
-    # initialize the soft hsm
-    Execute Command    sudo /usr/bin/tedge-init-hsm.sh --type softhsm2 --pin 123456
+    # Allow the tedge user to access softhsm
+    Execute Command    sudo usermod -a -G softhsm tedge
+    Transfer To Device    ${CURDIR}/data/init_softhsm.sh    /usr/bin/
+    Execute Command    sudo -u tedge /usr/bin/init_softhsm.sh --device-id "${DEVICE_SN}" --pin 123456
+
+    Execute Command    tedge config set device.cryptoki.pin 123456
+    Execute Command    tedge config set device.cryptoki.module_path /usr/lib/softhsm/libsofthsm2.so
+    Execute Command    tedge config set mqtt.bridge.built_in true
+    Execute Command    tedge config set device.cryptoki.mode socket
+
     # tests expect that the device.key_uri is initially unset
     Execute Command    cmd=tedge config unset device.key_uri
 
-    # configure tedge
     Set Cumulocity URLs
     ThinEdgeIO.Register Device With Cumulocity CA    ${DEVICE_SN}
 
diff --git a/tests/RobotFramework/tests/pkcs11/tedge_cert_download/current.robot b/tests/RobotFramework/tests/pkcs11/tedge_cert_download/current.robot
@@ -1,6 +1,5 @@
 *** Settings ***
 Resource    tedge_cert_download.resource
-Resource    ../pkcs11_common.resource
 
 Suite Setup    tedge-p11-server Setup    ${TEDGE_P11_SERVER_VERSION}
 
diff --git a/tests/RobotFramework/tests/pkcs11/tedge_cert_download/initial.robot b/tests/RobotFramework/tests/pkcs11/tedge_cert_download/initial.robot
@@ -1,12 +1,11 @@
 *** Settings ***
 Resource    tedge_cert_download.resource
-Resource    ../pkcs11_common.resource
-
 Suite Setup    tedge-p11-server Setup    ${TEDGE_P11_SERVER_VERSION}
 
 
 *** Variables ***
-${TEDGE_P11_SERVER_VERSION}    1.6.0
+${TEDGE_P11_SERVER_VERSION}    1.7.0
+${PKCS11_USE_P11TOOL}    ${True}
 
 
 *** Test Cases ***
diff --git a/tests/RobotFramework/tests/pkcs11/tedge_cert_renew/current.robot b/tests/RobotFramework/tests/pkcs11/tedge_cert_renew/current.robot
@@ -6,7 +6,7 @@ Documentation       This test suite runs the tests with tedge-p11-server pinned
 Resource            ../pkcs11_common.resource
 Resource            tedge_cert_renew.resource
 
-Suite Setup         Custom Setup    ${TEDGE_P11_SERVER_VERSION}
+Suite Setup         tedge-p11-server Setup    ${TEDGE_P11_SERVER_VERSION}
 Suite Teardown      Get Suite Logs
 
 Test Tags           adapter:docker    theme:cryptoki    compatibility
diff --git a/tests/RobotFramework/tests/pkcs11/tedge_cert_renew/initial.robot b/tests/RobotFramework/tests/pkcs11/tedge_cert_renew/initial.robot
@@ -3,17 +3,17 @@ Documentation       This test suite runs the tests with tedge-p11-server pinned
 ...                 versions of thin-edge remain backwards compatible with tedge-p11-server's binary communication protocol. The
 ...                 scope of this test is limited to tedge-p11-server's initial feature set and will generally not be expanded.
 
-Resource            ../pkcs11_common.resource
 Resource            tedge_cert_renew.resource
 
-Suite Setup         Custom Setup    ${TEDGE_P11_SERVER_VERSION}
+Suite Setup         tedge-p11-server Setup    ${TEDGE_P11_SERVER_VERSION}
 Suite Teardown      Get Suite Logs
 
 Test Tags           adapter:docker    theme:cryptoki    compatibility
 
 
 *** Variables ***
 ${TEDGE_P11_SERVER_VERSION}     1.6.1
+${PKCS11_USE_P11TOOL}    ${True}
 
 
 *** Test Cases ***
@@ -24,4 +24,6 @@ Renew certificate
     Use PKCS11 key to renew the public certificate    error=PKCS #11 service failed: Failed to find a signing key
 
 Can renew the certificate using different keypair
+    # In 1.6.1 there was a bug where the generated CSR signature was invalid (#3737), fixed in 1.7.0
+    Install tedge-p11-server    1.7.0
     Renew the certificate using different keypair
diff --git a/tests/RobotFramework/tests/pkcs11/tedge_cert_renew/tedge_cert_renew.resource b/tests/RobotFramework/tests/pkcs11/tedge_cert_renew/tedge_cert_renew.resource
@@ -66,27 +66,3 @@ Renew the certificate using different keypair
     Execute Command    tedge cert renew c8y
     ${stdout}=    Tedge Reconnect Should Succeed
     Should Contain    ${stdout}    The new certificate is now the active certificate
-
-Custom Setup
-    [Arguments]    ${tedge_p11_server_version}
-    ${DEVICE_SN}=    Setup    register=${False}
-    Set Suite Variable    ${DEVICE_SN}
-
-    # Allow the tedge user to access softhsm
-    Execute Command    sudo usermod -a -G softhsm tedge
-    Transfer To Device    ${CURDIR}/data/init_softhsm.sh    /usr/bin/
-
-    # initialize the soft hsm and create a certificate signing request
-    Execute Command    tedge config set device.cryptoki.pin 123456
-    Execute Command    tedge config set device.cryptoki.module_path /usr/lib/softhsm/libsofthsm2.so
-    Execute Command    sudo -u tedge /usr/bin/init_softhsm.sh --device-id "${DEVICE_SN}" --pin 123456
-
-    # configure tedge
-    Set Cumulocity URLs
-    Execute Command    tedge config set mqtt.bridge.built_in true
-    Execute Command    tedge config set device.cryptoki.mode socket
-
-    ${csr_path}=    Execute Command    cmd=tedge config get device.csr_path    strip=${True}
-    Register Device With Cumulocity CA    ${DEVICE_SN}    csr_path=${csr_path}
-
-    Install tedge-p11-server    ${tedge_p11_server_version}
diff --git a/tests/RobotFramework/tests/pkcs11/tedge_connect/initial.robot b/tests/RobotFramework/tests/pkcs11/tedge_connect/initial.robot
@@ -37,4 +37,5 @@ Can connect to C8y using an RSA key
     Connects to C8y using an RSA key
 
 Can connect to C8y supporting all TLS13 ECDSA signature algorithms
+    Install tedge-p11-server    1.6.0
     Connects to C8y supporting all TLS13 ECDSA signature algorithms
