test: Add a system test to check tedge cert create-cert with device profile

rina23q · rina23q · commit a4d99a48f618 · 2025-01-10T10:34:17.000Z
Signed-off-by: Rina Fujino &lt;rina.fujino.23@gmail.com&gt;
diff --git a/tests/RobotFramework/tests/tedge/certificate_signing_request.robot b/tests/RobotFramework/tests/tedge/certificate_signing_request.robot
@@ -52,6 +52,39 @@ Generate CSR without an existing certificate and private key
     ...    openssl req -in /etc/tedge/device-certs/tedge.csr -pubkey -noout | openssl md5
     Should Be Equal    ${output_private_key_md5}    ${output_csr_md5}
 
+Generate CSR using the device-id from an existing certificate and private key of cloud profile
+    [Tags]    \#3315
+    [Setup]    Setup With Self-Signed Certificate
+
+    ${second_device_sn}=    Catenate    SEPARATOR=_    ${DEVICE_SN}    second
+    Execute Command
+    ...    tedge config set c8y.device.cert_path --profile second /etc/tedge/device-certs/tedge@second-certificate.pem
+    Execute Command
+    ...    tedge config set c8y.device.key_path --profile second /etc/tedge/device-certs/tedge@second-key.pem
+    Execute Command    tedge cert create --device-id ${second_device_sn} c8y --profile second
+
+    ${hash_before_cert}=    Execute Command    md5sum /etc/tedge/device-certs/tedge@second-certificate.pem
+    ${hash_before_private_key}=    Execute Command    md5sum /etc/tedge/device-certs/tedge@second-key.pem
+
+    Execute Command    sudo tedge cert create-csr c8y --profile second
+
+    ${output_cert_subject}=    Execute Command
+    ...    openssl x509 -noout -subject -in /etc/tedge/device-certs/tedge@second-certificate.pem
+    ${output_csr_subject}=    Execute Command
+    ...    openssl req -noout -subject -in /etc/tedge/device-certs/tedge.csr
+    Should Be Equal    ${output_cert_subject}    ${output_csr_subject}
+
+    ${output_private_key_md5}=    Execute Command
+    ...    openssl pkey -in /etc/tedge/device-certs/tedge@second-key.pem -pubout | openssl md5
+    ${output_csr_md5}=    Execute Command
+    ...    openssl req -in /etc/tedge/device-certs/tedge.csr -pubkey -noout | openssl md5
+    Should Be Equal    ${output_private_key_md5}    ${output_csr_md5}
+
+    ${hash_after_cert}=    Execute Command    md5sum /etc/tedge/device-certs/tedge@second-certificate.pem
+    ${hash_after_private_key}=    Execute Command    md5sum /etc/tedge/device-certs/tedge@second-key.pem
+    Should Be Equal    ${hash_before_cert}    ${hash_after_cert}
+    Should Be Equal    ${hash_before_private_key}    ${hash_after_private_key}
+
 
 *** Keywords ***
 Setup With Self-Signed Certificate
