status cmdlet update and first batch of test changes

Author: ejarvi

src/ResourceManager/Common/Commands.ScenarioTests.ResourceManager.Common/EnvironmentSetupHelper.cs

@@ -518,6 +518,7 @@ public virtual Collection<PSObject> RunPowerShellTest(params string[] scripts)
                 d.Add("Microsoft.Features", null);
                 d.Add("Microsoft.Authorization", null);
                 d.Add("Microsoft.Compute", null);
+                d.Add("Microsoft.Azure.Management.KeyVault", null);
                 var providersToIgnore = new Dictionary<string, string>();
                 providersToIgnore.Add("Microsoft.Azure.Management.Resources.ResourceManagementClient", "2016-02-01");
                 HttpMockServer.Matcher = new PermissiveRecordMatcherWithApiExclusion(true, d, providersToIgnore);

src/ResourceManager/Compute/Commands.Compute.Test/Commands.Compute.Test.csproj

@@ -66,6 +66,10 @@
     <Reference Include="Microsoft.Azure.Management.Compute">
       <HintPath>..\..\..\packages\Microsoft.Azure.Management.Compute.18.0.0\lib\net452\Microsoft.Azure.Management.Compute.dll</HintPath>
     </Reference>
+    <Reference Include="Microsoft.Azure.Management.KeyVault, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <SpecificVersion>False</SpecificVersion>
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.KeyVault.2.3.0-preview\lib\net452\Microsoft.Azure.Management.KeyVault.dll</HintPath>
+    </Reference>
     <Reference Include="Microsoft.Azure.Management.Network, Version=17.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\..\..\packages\Microsoft.Azure.Management.Network.17.0.0-preview\lib\net452\Microsoft.Azure.Management.Network.dll</HintPath>
       <Private>True</Private>

src/ResourceManager/Compute/Commands.Compute.Test/Common/ComputeTestController.cs

@@ -17,6 +17,7 @@
 using Microsoft.Azure.Graph.RBAC;
 using Microsoft.Azure.Management.Authorization;
 using Microsoft.Azure.Management.Compute;
+using Microsoft.Azure.Management.KeyVault;
 using Microsoft.Azure.Management.Network;
 using Microsoft.Azure.Management.Resources;
 using Microsoft.Azure.Management.Storage;
@@ -54,9 +55,10 @@ public sealed class ComputeTestController : RMTestBase
 
         public AuthorizationManagementClient AuthorizationManagementClient { get; private set; }
 
-
         public StorageManagementClient StorageClient { get; private set; }
 
+        public KeyVaultManagementClient KeyVaultManagementClient { get; private set; }
+
         public NetworkManagementClient NetworkManagementClient { get; private set; }
 
         public ComputeManagementClient ComputeManagementClient { get; private set; }
@@ -189,6 +191,7 @@ private void SetupManagementClients(RestTestFramework.MockContext context)
             StorageClient = GetStorageManagementClient(context);
             GalleryClient = GetGalleryClient();
             //var eventsClient = GetEventsClient();
+            KeyVaultManagementClient = GetKeyVaultManagementClient(context);
             NetworkManagementClient = this.GetNetworkManagementClientClient(context);
             ComputeManagementClient = GetComputeManagementClient(context);
             AuthorizationManagementClient = GetAuthorizationManagementClient();
@@ -202,6 +205,7 @@ private void SetupManagementClients(RestTestFramework.MockContext context)
                 StorageClient,
                 GalleryClient,
                 //eventsClient,
+                KeyVaultManagementClient,
                 NetworkManagementClient,
                 ComputeManagementClient,
                 AuthorizationManagementClient,
@@ -277,6 +281,13 @@ private GalleryClient GetGalleryClient()
         //    return TestBase.GetServiceClient<EventsClient>(this.csmTestFactory);
         //}
 
+        private KeyVaultManagementClient GetKeyVaultManagementClient(RestTestFramework.MockContext context)
+        {
+            return testViaCsm
+                ? context.GetServiceClient<KeyVaultManagementClient>(RestTestFramework.TestEnvironmentFactory.GetTestEnvironment())
+                : TestBase.GetServiceClient<KeyVaultManagementClient>(new RDFETestEnvironmentFactory());
+        }
+
         private NetworkManagementClient GetNetworkManagementClientClient(RestTestFramework.MockContext context)
         {
             return testViaCsm

src/ResourceManager/Compute/Commands.Compute.Test/ScenarioTests/VirtualMachineExtensionTests.ps1

@@ -1037,9 +1037,9 @@ function Test-AzureDiskEncryptionExtensionSinglePass
 	try 
 	{ 
 		# create virtual machine and key vault prerequisites
-		$vm = Create-VirtualMachine $resourceGroupName "centraluseuap"
+		$vm = Create-VirtualMachine $resourceGroupName
 		$kv = Create-KeyVault $vm.ResourceGroupName $vm.Location
-		
+
 		# enable encryption with single pass syntax (omits AD parameters)
 		Set-AzureRmVMDiskEncryptionExtension `
 			-ResourceGroupName $vm.ResourceGroupName `
@@ -1048,14 +1048,14 @@ function Test-AzureDiskEncryptionExtensionSinglePass
 			-DiskEncryptionKeyVaultId $kv.DiskEncryptionKeyVaultId `
 			-KeyEncryptionKeyUrl $kv.KeyEncryptionKeyUrl `
 			-KeyEncryptionKeyVaultId $kv.KeyEncryptionKeyVaultId `
-			-VolumeType "All" `	
+			-VolumeType "ALL" `
 			-Force
 
 		# verify encryption state
 		$status = Get-AzureRmVmDiskEncryptionStatus -ResourceGroupName $vm.ResourceGroupName -VMName $vm.Name
 		Assert-NotNull $status
-		Assert-AreEqual $status.OsVolumeEncrypted $true
-		Assert-AreEqual $status.DataVolumesEncrypted $true
+		Assert-AreEqual $status.OsVolumeEncrypted Encrypted
+		Assert-AreEqual $status.DataVolumesEncrypted NotEncrypted
 
 		# verify encryption settings 
 		$settings = $status.OsVolumeEncryptionSettings

src/ResourceManager/Compute/Commands.Compute/Extension/AzureDiskEncryption/GetAzureDiskEncryptionStatus.cs

@@ -136,6 +136,7 @@ private bool IsExtensionInstalled(OSType currentOSType)
             {
                 this.Name = this.Name ?? AzureDiskEncryptionExtensionContext.LinuxExtensionDefaultName;
             }
+
 
             AzureOperationResponse<VirtualMachineExtension> extensionResult = this.VirtualMachineExtensionClient.GetWithInstanceView(this.ResourceGroupName, this.VMName, this.Name);
             if (extensionResult == null)
@@ -222,19 +223,14 @@ private string GetExtensionStatusMessage(OSType currentOSType, bool returnSubsta
             if (publisherMatch)
             {
                 AzureDiskEncryptionExtensionContext context = new AzureDiskEncryptionExtensionContext(returnedExtension);
-                if ((context == null) ||
-                    (context.Statuses == null) ||
-                    (context.Statuses.Count < 1) ||
-                    (string.IsNullOrWhiteSpace(context.Statuses[0].Message)))
+                if ((context == null) || (context.Statuses == null) || (context.Statuses.Count < 1))
                 {
                     throw new KeyNotFoundException(string.Format(CultureInfo.CurrentUICulture, "Invalid extension status"));
                 }
 
                 if (returnSubstatusMessage)
                 {
-                    if((context == null) ||
-                       (context.SubStatuses == null) ||
-                       (context.SubStatuses.Count < 1))
+                    if ((context == null) || (context.SubStatuses == null) || (context.SubStatuses.Count < 1))
                     {
                         throw new KeyNotFoundException(string.Format(CultureInfo.CurrentUICulture, "Invalid extension substatus"));
                     }
@@ -243,8 +239,18 @@ private string GetExtensionStatusMessage(OSType currentOSType, bool returnSubsta
                         return context.SubStatuses[0].Message;
                     }
                 }
-
-                return context.Statuses[0].Message;
+                else
+                {
+                    if (!string.IsNullOrWhiteSpace(context.Statuses[0].Message))
+                    {
+                        return context.Statuses[0].Message;
+                    }
+                    else
+                    {
+                        // if message is empty, fall back to display status
+                        return context.Statuses[0].DisplayStatus;
+                    }
+                }                
             }
             else
             {
@@ -299,6 +305,17 @@ private EncryptionStatus IsOsVolumeEncrypted(VirtualMachine vmParameters)
             }
         }
 
+        private string GetLastEncryptionStatus(DiskInstanceView div)
+        {
+            string lastCode = "";
+            foreach (InstanceViewStatus ivs in div.Statuses)
+            {
+                if (ivs.Code.StartsWith("EncryptionState/"))
+                    lastCode = ivs.Code;
+            }
+            return lastCode;
+        }
+
         private DiskEncryptionSettings GetOsVolumeEncryptionSettings(VirtualMachine vmParameters)
         {
             if ((vmParameters != null) &&
@@ -307,6 +324,8 @@ private DiskEncryptionSettings GetOsVolumeEncryptionSettings(VirtualMachine vmPa
             {
                 return vmParameters.StorageProfile.OsDisk.EncryptionSettings;
             }
+
+            // nothing found
             return null;
         }
 
@@ -373,6 +392,18 @@ private bool ExtensionProvisioningSucceeded(AzureDiskEncryptionExtensionContext
 
         private EncryptionStatus AreDataVolumesEncrypted(VirtualMachine vmParameters)
         {
+            // return true if any (non-OS) data volume attached to the VM reports an encrypted state
+            VirtualMachineInstanceView iv = this.ComputeClient.ComputeManagementClient.VirtualMachines.InstanceView(this.ResourceGroupName, this.VMName);
+            foreach (DiskInstanceView div in iv.Disks)
+            {
+                if (!((div.Name.Equals("osDisk") || div.Name.Contains("_OsDisk_"))) &&
+                    GetLastEncryptionStatus(div).Equals("EncryptionState/encrypted"))
+                {
+                    return EncryptionStatus.Encrypted;
+                }
+            }
+
+            // no encrypted status found in disk instance data, check vm model 
             if (vmParameters == null || vmParameters.Resources == null)
             {
                 return EncryptionStatus.Unknown;
@@ -409,21 +440,91 @@ private EncryptionStatus AreDataVolumesEncrypted(VirtualMachine vmParameters)
             return EncryptionStatus.NotEncrypted;
         }
 
+        private AzureDiskEncryptionStatusContext GetStatusFromInstanceView()
+        {
+            AzureDiskEncryptionStatusContext result = null;
+
+            VirtualMachineInstanceView iv = this.ComputeClient.ComputeManagementClient.VirtualMachines.InstanceView(this.ResourceGroupName, this.VMName);
+            if (iv != null)
+            {
+                result = new AzureDiskEncryptionStatusContext();
+                result.OsVolumeEncrypted = EncryptionStatus.Unknown;
+                result.DataVolumesEncrypted = EncryptionStatus.Unknown;
+
+                foreach (DiskInstanceView div in iv.Disks)
+                {
+                    if (result.OsVolumeEncrypted==EncryptionStatus.Unknown && 
+                        (div.Name.Equals("osDisk") || div.Name.Contains("_OsDisk_")))
+                    {
+                        // check os volume status
+                        string status = GetLastEncryptionStatus(div);
+                        switch (status)
+                        {
+                            case "EncryptionState/encrypted":
+                                result.OsVolumeEncrypted = EncryptionStatus.Encrypted;
+                                break;
+                            case "EncryptionState/notEncrypted":
+                                result.OsVolumeEncrypted = EncryptionStatus.NotEncrypted;
+                                break;
+                            default:
+                                break;
+                        }
+                        result.OsVolumeEncryptionSettings = (div.EncryptionSettings != null) ? div.EncryptionSettings[0] : null;
+                    }
+                    else if (result.DataVolumesEncrypted == EncryptionStatus.Unknown)
+                    {
+                        // check data volume status
+                        string status = GetLastEncryptionStatus(div);
+                        if (status.Equals("EncryptionState/encrypted"))
+                        {
+                            result.DataVolumesEncrypted = EncryptionStatus.Encrypted;
+                        }
+                        else if (status.Equals("EncryptionState/notEncrypted"))
+                        {
+                            result.DataVolumesEncrypted = EncryptionStatus.NotEncrypted;
+                        }
+                    }
+                }
+            }
+
+            return result;
+        }
+
         public override void ExecuteCmdlet()
         {
             base.ExecuteCmdlet();
 
             ExecuteClientAction(() =>
             {
+                // get current extension status progress message
                 VirtualMachine vmParameters = (this.ComputeClient.ComputeManagementClient.VirtualMachines.Get(this.ResourceGroupName, this.VMName));
+                OSType osType = GetOSType(vmParameters);
+                string progressMessage = null;
+                if (IsExtensionInstalled(osType))
+                {
+                    try
+                    {
+                        progressMessage = GetExtensionStatusMessage(osType);
+                    }
+                    catch (KeyNotFoundException)
+                    {
+                        progressMessage = string.Format(CultureInfo.CurrentUICulture, "Extension status not available on the VM");
+                    }
+                }
 
+                // retrieve encryption state using per-disk instance status and report if successful
+                AzureDiskEncryptionStatusContext encryptionStatus = GetStatusFromInstanceView();
+                if (encryptionStatus != null && !(encryptionStatus.OsVolumeEncrypted==EncryptionStatus.Unknown || encryptionStatus.DataVolumesEncrypted==EncryptionStatus.Unknown))
+                {
+                    encryptionStatus.ProgressMessage = progressMessage;
+                    WriteObject(encryptionStatus);
+                    return;
+                }
+
+                // fall back to retrieval of encryption state using vm model extension status
                 EncryptionStatus osVolumeEncrypted = IsOsVolumeEncrypted(vmParameters);
                 DiskEncryptionSettings osVolumeEncryptionSettings = GetOsVolumeEncryptionSettings(vmParameters);
                 EncryptionStatus dataVolumesEncrypted = AreDataVolumesEncrypted(vmParameters);
-                AzureDiskEncryptionStatusContext encryptionStatus = null;
-                string progressMessage = null;
-
-                OSType osType = GetOSType(vmParameters);
                 switch (osType)
                 {
                     case OSType.Windows: