Added QA build

Author: rlillback

agent.h

@@ -43,11 +43,16 @@ extern ScheduledJob_t* currentJob; /* Defined in schedule.c */
 #endif
 
 /* Versioning Information                                                     */
-/* 3.0.0.1 = Release candidate for agent v3                                   */
+/* 3.0.0.2 = Release candidate for agent v3                                   */
 #define AGENT_MAJOR 3ULL
 #define AGENT_MINOR 0ULL
 #define AGENT_MICRO 0ULL
-#define AGENT_BUILD 2ULL
+
+#ifdef __QATESTING__
+  #define AGENT_BUILD 999ULL // Special build number for QA testing
+#else
+  #define AGENT_BUILD 2ULL
+#endif
 
 #define AGENT_VERSION \
 ((AGENT_MAJOR << 48) | \

httpclient.c

@@ -158,7 +158,6 @@ static void stripCR(char string[])
         }
     }                           /* while */
     string[y] = '\0';
-    return;
 }
 
 /******************************************************************************/
@@ -434,23 +433,17 @@ int http_post_json(const char *url, const char *username,
         log_trace("%s::%s(%d) : cURL options set correctly", LOG_INF);
 
         struct curl_slist *list = NULL;
-        /**************************************************************************/
-        /*
-         * Set up the HTTP header to tell the API this is standard JSON.
-         */
-        /*
-         * NOTE: Some versions of Internet Explorer have a problem using
-         */
-        /* these headers.                                                */
-        /*
-         * Also, set the content length header option to the data size.
-         */
+        /**********************************************************************/
+        /* Set up the HTTP header to tell the API this is standard JSON.      */
+        /* NOTE: Some versions of Internet Explorer have a problem using      */
+        /* these headers.                                                     */
+        /* Also, set the content length header option to the data size.       */
+        /**********************************************************************/
         /*
-         * TODO: Error checking, as this is a dynamic memory allocation and
+         * //TODO: Error checking, as this is a dynamic memory allocation and
          * any
+         * on-demand memory allocation needs a verification step.
          */
-        /* on-demand memory allocation needs a verification step.      */
-        /**************************************************************************/
         list = curl_slist_append(NULL, "Content-Type: application/json");
         list = curl_slist_append(list, "Accept: application/json");
         char clBuf[30];
@@ -466,11 +459,9 @@ int http_post_json(const char *url, const char *username,
             log_debug("%s::%s(%d) : Skipping adding header = %s", LOG_INF, CLIENT_CERT_HEADER);
         }
 
-        /**************************************************************************/
-        /*
-         * Now add the header & data to the HTTP POST request.
-         */
-        /**************************************************************************/
+        /**********************************************************************/
+        /* Now add the header & data to the HTTP POST request.                */
+        /**********************************************************************/
         errNum = curl_easy_setopt(curl, CURLOPT_HTTPHEADER, list);
         if (CURLE_OK != errNum) {
             return handle_curl_error(curl, errNum);
@@ -483,24 +474,19 @@ int http_post_json(const char *url, const char *username,
         if (CURLE_OK != errNum) {
             return handle_curl_error(curl, errNum);
         }
+#ifdef __QATESTING__
+        log_qa("%s::%s(%d): postData = %s", LOG_INF, postData);
+#else
         log_trace("%s::%s(%d): postData = %s", LOG_INF, postData);
+#endif
 
-
-        /**************************************************************************/
-        /*
-         * Make sure the cURL operation succeeded and the HTTP response code
-         */
-        /*
-         * indicates success. If we are successfull, place the response
-         * message
-         */
-        /*
-         * If the cURL operation fails, return the cURL error code.
-         */
-        /*
-         * If the HTTP response is an error, return the HTTP failure code.
-         */
-        /**************************************************************************/
+        /**********************************************************************/
+        /* Make sure the cURL operation succeeded and the HTTP response code  */
+        /* indicates success. If we are successfull, place the response       */
+        /* message                                                            */
+        /* If the cURL operation fails, return the cURL error code.           */
+        /* If the HTTP response is an error, return the HTTP failure code.    */
+        /**********************************************************************/
         long httpCode = 0;
         int res = CURLE_FAILED_INIT;
         int tries = retryCount;
@@ -542,7 +528,11 @@ int http_post_json(const char *url, const char *username,
             log_verbose("%s::%s(%d): %lu bytes retrieved -- allocating memory for response",
                         LOG_INF, (unsigned long)chunk.size);
             *pRespData = strdup(chunk.memory);
+#ifdef __QATESTING__
+            log_qa("%s::%s(%d): Response is:\n%s", LOG_INF, *pRespData);
+#else
             log_trace("%s::%s(%d): Response is:\n%s", LOG_INF, *pRespData);
+#endif
             if (NULL == *pRespData) {
                 log_error("%s::%s(%d): Out of memory", LOG_INF);
                 toReturn = 255;

logging.c

@@ -30,6 +30,9 @@
 #define VERBOSELVL "[VERBOSE]"
 #define DEBUGLVL   "[DEBUG]  "
 #define TRACELVL   "[TRACE]  "
+#ifdef __QATESTING__
+#define QALVL      "[QA]     "
+#endif
 
 #define MAX_FILE_SIZE   (5ul * 1024ul * 1024ul) /* 5MByte log file on disk */
 #define MAX_HEAP_SIZE   (256 * 1024)    /* 256k of memory */
@@ -604,6 +607,42 @@ void log_trace(const char *fmt,...)
     }
 } /* log_trace */
 
+#ifdef __QATESTING__
+/*                                                                            */
+/* @fn log_qa                                                                 */
+/* @brief Print a message if the info logging level is enabled                */
+/* @returns none                                                              */
+/*                                                                            */
+void log_qa(const char *fmt,...)
+{
+  get_log_format(logFormat, fmt, QALVL);
+
+  va_list args;
+  va_start(args, fmt);
+  size_t chars_to_write = vfprintf(stderr, logFormat, args);
+  va_end(args);
+
+  if (config_loaded) {
+    /* Write to the log buffer, too */
+    size_t log_index = (log_tail - log_head);  /* parasoft-suppress
+                                                         * MISRAC2012-DIR_4_1-i
+                                                         * "same array" */
+    if (MAX_HEAP_SIZE <= (log_index + chars_to_write)) {
+
+      write_heap_to_disk();
+    }
+    get_log_format(logFormat, fmt, QALVL);
+    va_list args;
+    va_start(args, fmt);
+    size_t chars_written = vsprintf(log_tail, logFormat, args);
+    va_end(args);
+    log_tail += chars_written;
+    log_is_dirty = true;
+    /* End write to the log buffer, too */
+  }
+} /* log_warn */
+#endif
+
 /*                                                                            */
 /* @fn log_set_trace                                                          */
 /* @brief Turn on the trace & all lower logging levels                        */

logging.h

@@ -22,6 +22,9 @@ void log_info(const char* fmt, ...) __attribute__ ((format (printf, 1, 2)));
 void log_verbose(const char* fmt, ...) __attribute__ ((format (printf, 1, 2)));
 void log_debug(const char* fmt, ...) __attribute__ ((format (printf, 1, 2)));
 void log_trace(const char* fmt, ...) __attribute__ ((format (printf, 1, 2)));
+#ifdef __QATESTING__
+void log_qa(const char* fmt, ...) __attribute__ ((format (printf, 1, 2)));
+#endif
 
 void log_set_trace(bool param);
 void log_set_debug(bool param);
@@ -48,4 +51,4 @@ void free_log_heap( void );
 #endif /* LOGGING_H_ */
 /******************************************************************************/
 /******************************* END OF FILE **********************************/
-/******************************************************************************/
+/******************************************************************************/

makefile

@@ -95,6 +95,10 @@ openinstall: libagent.so
 	sudo cp libagent.so /usr/lib
 	sudo chmod 755 /usr/lib/libagent.so
 
+qatesting: DEFINES += -D__OPEN_SSL__ -D__QATESTING__
+qatesting: ${OOBJ}
+	${CC} ${CFLAGS} ${DEBUG_FLAGS} ${DEFINES} -o agent $^ ${OPENLIBS}
+
 # The base build for a Raspberry Pi with a TPM installed
 rpi9670test: DEFINES += -D__OPEN_SSL__ -D__TPM__ -Wno-format
 rpi9670test: ${OOBJ}

management.c

@@ -383,7 +383,7 @@ int cms_job_manage(SessionJob_t * jobInfo, char *sessionToken,
         if (false == management_store_config_valid(manConf, &statusMessage)) {
             ManagementCompleteResp_t *manComp = NULL;
             send_management_job_complete(sessionToken, jobInfo->JobId,
-                    jobInfo->CompletionEndpoint, STAT_ERR, manConf->AuditId,
+                    jobInfo->CompletionEndpoint, STAT_ERR + 1, manConf->AuditId,
                     statusMessage, &manComp);
             ManagementCompleteResp_free(manComp);
             returnable = 999;

session.c

@@ -65,6 +65,9 @@ static void add_custom_client_parameters(SessionRegisterReq_t * sessionReq) {
      * this: SessionRegisterReq_addNewClientParameter(sessionReq,
      * "devicetype", "linux");
      */
+#ifdef __QATESTING__
+    SessionRegisterReq_addNewClientParameter(sessionReq, "qatesting", "true");
+#endif
     return;
 } /* add_custom_client_parameters */
 
@@ -135,17 +138,22 @@ static void update_config_from_session(SessionRegisterResp_t * sessionResp) {
     if (!ConfigData || !sessionResp) return;
     if (!ConfigData->EnrollOnStartup) return;
 
-    if (sessionResp->Session.Certificate) {
+    if (sessionResp->Session.Certificate && sessionResp->Session.Certificate[0] != '\0') {
         log_info("%s::%s(%d) : Received Agent Certificate. Turning off EnrollOnStartup.", LOG_INF);
         isChanged = true;
         ConfigData->EnrollOnStartup = false;
+    } else if (false == ConfigData->UseAgentCert) {
+      log_info("%s::%s(%d) : Not using an Agent Certificate. Turning off EnrollOnStartup.", LOG_INF);
+      isChanged = true;
+      ConfigData->EnrollOnStartup = false;
+    } else {
+      log_info("%s::%s(%d) : Received no Agent Certificate. BUT, we should have received one.", LOG_INF);
     }
 
     if (isChanged) {
         log_trace("%s::%s(%d) : Saving configuration to file system", LOG_INF);
         config_save();
     }
-    return;
 } /* update_config_from_session */
 
 /*                                                                            */
@@ -290,8 +298,8 @@ static void prioritize_jobs(ScheduledJob_t **pJobList,
       schedule_job(pJobList, job_to_schedule, time(NULL));
     }
   }
-  return;
 } /* prioritize_jobs */
+
 /*                                                                            */
 /* Add the capabilities allowed in this version of the agent by               */
 /* capability GUID defined in Keyfactor                                       */
@@ -376,7 +384,6 @@ static void set_registration_parameters(SessionRegisterReq_t * sessionReq) {
     /* Add any custom parameters for this customer */
     add_custom_client_parameters(sessionReq);
 
-    return;
 } /* set_registration_parameters */
 
 /*                                                                            */
@@ -808,34 +815,38 @@ static int re_register_agent(SessionInfo_t * session, ScheduledJob_t * *pJobList
 static bool do_first_registration_response(SessionRegisterResp_t * resp, char **status,
                                       enum AgentApiResultStatus *statusCode)
 {
-    if (NULL == resp) {
-        log_error("%s::%s(%d) : Error, response to parse is null", LOG_INF);
-        return false;
-    }
-    bool bResult = false;
-    bool bIdOk = false;
-    log_trace("%s::%s(%d): Updating config from session", LOG_INF);
-    bIdOk = update_agentid_from_session(resp);
-
-    if (ConfigData->UseAgentCert && bIdOk) {
-        if (resp->Session.Certificate) {
-            bResult = true;
-            log_info("%s::%s(%d): Agent certificate recieved from platform.  Saving Agent Specific Keypair and "
-                     "Agent Specific Cert.", LOG_INF);
-            save_cert_key(ConfigData->AgentCert,
-                          ConfigData->AgentKey, ConfigData->AgentKeyPassword,
-                          resp->Session.Certificate, status, statusCode);
-            update_config_from_session(resp);
-        } else {
-            /* The platform should have provided a certificate */
-            log_error("%s::%s(%d): Certificate not found", LOG_INF);
-        }
-    } else {
-        /* We don't need a certificate, but we do need an AgentId */
-        if (bIdOk)
-            bResult = true;
-    }
-    return bResult;
+  if (NULL == resp) {
+      log_error("%s::%s(%d) : Error, response to parse is null", LOG_INF);
+      return false;
+  }
+  bool bResult = false;
+  bool bIdOk = false;
+  log_trace("%s::%s(%d): Updating config from session", LOG_INF);
+  bIdOk = update_agentid_from_session(resp);
+
+  if (ConfigData->UseAgentCert && bIdOk) {
+      if (resp->Session.Certificate) {
+          bResult = true;
+          log_info("%s::%s(%d): Agent certificate received from platform.  Saving Agent Specific Keypair and "
+                   "Agent Specific Cert.", LOG_INF);
+          save_cert_key(ConfigData->AgentCert,
+                        ConfigData->AgentKey, ConfigData->AgentKeyPassword,
+                        resp->Session.Certificate, status, statusCode);
+          update_config_from_session(resp);
+      } else {
+          /* The platform should have provided a certificate */
+          log_error("%s::%s(%d): Certificate not found", LOG_INF);
+      }
+  } else {
+      /* We don't need a certificate, but we do need an AgentId */
+      if (bIdOk)
+          bResult = true;
+  }
+
+  log_info("%s::%s(%d): First registration completed with %s",
+    LOG_INF, bResult ? "success" : "failure");
+
+  return bResult;
 } /* do_first_registration_response */
 
 /*                                                                            */
@@ -930,7 +941,7 @@ int register_session(SessionInfo_t * session, ScheduledJob_t * *pJobList, uint64
                 log_trace("%s::%s(%d) : Successfully set up /Session/Register data.", LOG_INF);
             }
         } else {
-            log_trace("%s::%s(%d) : Skipping agent cert from configurtion", LOG_INF);
+            log_trace("%s::%s(%d) : Configured to not use an Agent Certificate", LOG_INF);
         }
     } else {
         if (ConfigData->UseAgentCert) {
@@ -1062,12 +1073,15 @@ int register_session(SessionInfo_t * session, ScheduledJob_t * *pJobList, uint64
         log_trace("%s::%s(%d) Performing second registration.", LOG_INF);
         httpRes = do_second_registration(session, pJobList, agentVersion);
         if (0 == httpRes) {
-            log_info("%s::%s(%d): Re-enrollment jobs set up successfully", LOG_INF);
+          log_info("%s::%s(%d): Re-enrollment jobs set up successfully", LOG_INF);
+          ConfigData->EnrollOnStartup = false;
+          config_save();
         } else {
-            /* Session failed, so we need to re-register the agent */
-            /* on the next trigger */
-            ConfigData->EnrollOnStartup = true;
-            log_warn("%s::%s(%d) : Re-registering agent as second registration failed", LOG_INF);
+          /* Session failed, so we need to re-register the agent */
+          /* on the next trigger */
+          ConfigData->EnrollOnStartup = true;
+          log_warn("%s::%s(%d) : Re-registering agent as second registration failed", LOG_INF);
+          config_save();
         }
     }