tests for context.yaml
This commit is contained in:
parent
b21fa99902
commit
c1a04ead79
2 changed files with 93 additions and 26 deletions
|
@ -1,6 +1,7 @@
|
||||||
package csconfig
|
package csconfig
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
"encoding/json"
|
||||||
"fmt"
|
"fmt"
|
||||||
"os"
|
"os"
|
||||||
"path/filepath"
|
"path/filepath"
|
||||||
|
@ -108,8 +109,9 @@ func (c *Config) LoadCrowdsec() error {
|
||||||
c.Crowdsec.OutputRoutinesCount = 1
|
c.Crowdsec.OutputRoutinesCount = 1
|
||||||
}
|
}
|
||||||
|
|
||||||
var crowdsecCleanup = []*string{
|
crowdsecCleanup := []*string{
|
||||||
&c.Crowdsec.AcquisitionFilePath,
|
&c.Crowdsec.AcquisitionFilePath,
|
||||||
|
&c.Crowdsec.ConsoleContextPath,
|
||||||
}
|
}
|
||||||
|
|
||||||
for _, k := range crowdsecCleanup {
|
for _, k := range crowdsecCleanup {
|
||||||
|
@ -131,41 +133,51 @@ func (c *Config) LoadCrowdsec() error {
|
||||||
c.Crowdsec.AcquisitionFiles[i] = f
|
c.Crowdsec.AcquisitionFiles[i] = f
|
||||||
}
|
}
|
||||||
|
|
||||||
if err := c.LoadAPIClient(); err != nil {
|
if err = c.LoadAPIClient(); err != nil {
|
||||||
return fmt.Errorf("loading api client: %s", err)
|
return fmt.Errorf("loading api client: %s", err)
|
||||||
}
|
}
|
||||||
|
|
||||||
c.Crowdsec.ContextToSend = make(map[string][]string, 0)
|
if c.Crowdsec.ConsoleContextPath != "" {
|
||||||
fallback := false
|
// if it's provided, it must exist
|
||||||
if c.Crowdsec.ConsoleContextPath == "" {
|
if _, err = os.Stat(c.Crowdsec.ConsoleContextPath); err != nil {
|
||||||
// fallback to default config file
|
return fmt.Errorf("while checking console_context_path: %w", err)
|
||||||
|
}
|
||||||
|
} else {
|
||||||
c.Crowdsec.ConsoleContextPath = filepath.Join(c.ConfigPaths.ConfigDir, "console", "context.yaml")
|
c.Crowdsec.ConsoleContextPath = filepath.Join(c.ConfigPaths.ConfigDir, "console", "context.yaml")
|
||||||
fallback = true
|
|
||||||
}
|
}
|
||||||
|
|
||||||
f, err := filepath.Abs(c.Crowdsec.ConsoleContextPath)
|
c.Crowdsec.ContextToSend, err = buildContextToSend(c)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return fmt.Errorf("fail to get absolute path of %s: %s", c.Crowdsec.ConsoleContextPath, err)
|
return err
|
||||||
}
|
|
||||||
|
|
||||||
c.Crowdsec.ConsoleContextPath = f
|
|
||||||
yamlFile, err := os.ReadFile(c.Crowdsec.ConsoleContextPath)
|
|
||||||
if err != nil {
|
|
||||||
if fallback {
|
|
||||||
log.Debugf("Default context config file doesn't exist, will not use it")
|
|
||||||
} else {
|
|
||||||
return fmt.Errorf("failed to open context file: %s", err)
|
|
||||||
}
|
|
||||||
} else {
|
|
||||||
err = yaml.Unmarshal(yamlFile, c.Crowdsec.ContextToSend)
|
|
||||||
if err != nil {
|
|
||||||
return fmt.Errorf("unmarshaling labels console config file '%s': %s", c.Crowdsec.ConsoleContextPath, err)
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
|
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func buildContextToSend(c *Config) (map[string][]string, error) {
|
||||||
|
ret := make(map[string][]string, 0)
|
||||||
|
|
||||||
|
log.Tracef("loading console context from %s", c.Crowdsec.ConsoleContextPath)
|
||||||
|
content, err := os.ReadFile(c.Crowdsec.ConsoleContextPath)
|
||||||
|
if err != nil && !os.IsNotExist(err) {
|
||||||
|
return nil, fmt.Errorf("failed to open context file: %s", err)
|
||||||
|
}
|
||||||
|
|
||||||
|
err = yaml.Unmarshal(content, ret)
|
||||||
|
if err != nil {
|
||||||
|
return nil, fmt.Errorf("while loading context from %s: %s", c.Crowdsec.ConsoleContextPath, err)
|
||||||
|
}
|
||||||
|
|
||||||
|
feedback, err := json.Marshal(ret)
|
||||||
|
if err != nil {
|
||||||
|
return nil, fmt.Errorf("marshaling console context: %s", err)
|
||||||
|
}
|
||||||
|
|
||||||
|
log.Debugf("console context to send: %s", feedback)
|
||||||
|
|
||||||
|
return ret, nil
|
||||||
|
}
|
||||||
|
|
||||||
func (c *CrowdsecServiceCfg) DumpContextConfigFile() error {
|
func (c *CrowdsecServiceCfg) DumpContextConfigFile() error {
|
||||||
var out []byte
|
var out []byte
|
||||||
var err error
|
var err error
|
||||||
|
|
55
test/bats/09_context.bats
Normal file
55
test/bats/09_context.bats
Normal file
|
@ -0,0 +1,55 @@
|
||||||
|
#!/usr/bin/env bats
|
||||||
|
# vim: ft=bats:list:ts=8:sts=4:sw=4:et:ai:si:
|
||||||
|
|
||||||
|
set -u
|
||||||
|
|
||||||
|
setup_file() {
|
||||||
|
load "../lib/setup_file.sh"
|
||||||
|
CONFIG_DIR=$(config_get '.config_paths.config_dir')
|
||||||
|
export CONFIG_DIR
|
||||||
|
CONTEXT_YAML="$CONFIG_DIR/console/context.yaml"
|
||||||
|
export CONTEXT_YAML
|
||||||
|
}
|
||||||
|
|
||||||
|
teardown_file() {
|
||||||
|
load "../lib/teardown_file.sh"
|
||||||
|
}
|
||||||
|
|
||||||
|
setup() {
|
||||||
|
load "../lib/setup.sh"
|
||||||
|
load "../lib/bats-file/load.bash"
|
||||||
|
./instance-data load
|
||||||
|
config_set '.common.log_media="stdout"'
|
||||||
|
mkdir -p "$CONFIG_DIR/console"
|
||||||
|
}
|
||||||
|
|
||||||
|
teardown() {
|
||||||
|
./instance-crowdsec stop
|
||||||
|
}
|
||||||
|
|
||||||
|
#----------
|
||||||
|
|
||||||
|
@test "attempt to load from default context file, ignore if missing" {
|
||||||
|
rune -0 rm -f "$CONTEXT_YAML"
|
||||||
|
rune -0 "$CROWDSEC" -t --trace
|
||||||
|
assert_stderr --partial "loading console context from $CONTEXT_YAML"
|
||||||
|
}
|
||||||
|
|
||||||
|
@test "error if context file is explicitly set but does not exist" {
|
||||||
|
config_set ".crowdsec_service.console_context_path=\"$CONTEXT_YAML\""
|
||||||
|
rune -0 rm -f "$CONTEXT_YAML"
|
||||||
|
rune -1 "$CROWDSEC" -t
|
||||||
|
assert_stderr --partial "while checking console_context_path: stat $CONTEXT_YAML: no such file or directory"
|
||||||
|
}
|
||||||
|
|
||||||
|
@test "context file is bad" {
|
||||||
|
echo "bad yaml" > "$CONTEXT_YAML"
|
||||||
|
rune -1 "$CROWDSEC" -t
|
||||||
|
assert_stderr --partial "while loading context from $CONTEXT_YAML: yaml: unmarshal errors"
|
||||||
|
}
|
||||||
|
|
||||||
|
@test "context file is good" {
|
||||||
|
echo '{"source_ip":["evt.Parsed.source_ip"]}' > "$CONTEXT_YAML"
|
||||||
|
rune -0 "$CROWDSEC" -t --debug
|
||||||
|
assert_stderr --partial 'console context to send: {"source_ip":["evt.Parsed.source_ip"]}'
|
||||||
|
}
|
Loading…
Reference in a new issue