mirror of
https://github.com/aquasecurity/kube-bench.git
synced 2025-01-03 12:20:54 +00:00
af976e6f50
* Initial commit. * Add master and node config. * Add section 5 of CIS 1.5.1. * Split sections into section files * Fix YAML issues. * adds target translation * adds target translation * adds cis-1.5 mapping * fixed tests * fixes are per PR * fixed intergration test * integration kind test file to appropriate ks8 version * fixed etcd text * fixed README * fixed text * etcd: fixed grep path * etcd: fixes * fixed error message bug * Update README.md Co-Authored-By: Liz Rice <liz@lizrice.com> * Update README.md Co-Authored-By: Liz Rice <liz@lizrice.com> * fixes as per PR review
71 lines
1.7 KiB
Go
71 lines
1.7 KiB
Go
// +build integration
|
|
|
|
package integration
|
|
|
|
import (
|
|
"flag"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"strings"
|
|
"testing"
|
|
"time"
|
|
)
|
|
|
|
var kubebenchImg = flag.String("kubebenchImg", "aquasec/kube-bench:latest", "kube-bench image used as part of this test")
|
|
|
|
func TestRunWithKind(t *testing.T) {
|
|
flag.Parse()
|
|
fmt.Printf("kube-bench Container Image: %s\n", *kubebenchImg)
|
|
timeout := time.Duration(10 * time.Minute)
|
|
ticker := time.Duration(2 * time.Second)
|
|
|
|
mustMatch := func(expFname, data string) {
|
|
d, err := ioutil.ReadFile(expFname)
|
|
if err != nil {
|
|
t.Error(err)
|
|
}
|
|
expectedData := strings.TrimSpace(string(d))
|
|
data = strings.TrimSpace(data)
|
|
if expectedData != data {
|
|
t.Errorf("expected: %q\n\n Got %q\n\n", expectedData, data)
|
|
}
|
|
}
|
|
|
|
cases := []struct {
|
|
TestName string
|
|
KindCfg string
|
|
KubebenchYAML string
|
|
ExpectedFile string
|
|
ExpectError bool
|
|
}{
|
|
{
|
|
TestName: "job",
|
|
KindCfg: "./testdata/add-tls-kind-k8s114.yaml",
|
|
KubebenchYAML: "../job.yaml",
|
|
ExpectedFile: "./testdata/job.data",
|
|
},
|
|
{
|
|
TestName: "job-node",
|
|
KindCfg: "./testdata/add-tls-kind-k8s114.yaml",
|
|
KubebenchYAML: "../job-node.yaml",
|
|
ExpectedFile: "./testdata/job-node.data",
|
|
},
|
|
{
|
|
TestName: "job-master",
|
|
KindCfg: "./testdata/add-tls-kind-k8s114.yaml",
|
|
KubebenchYAML: "../job-master.yaml",
|
|
ExpectedFile: "./testdata/job-master.data",
|
|
},
|
|
}
|
|
for _, c := range cases {
|
|
t.Run(c.TestName, func(t *testing.T) {
|
|
data, err := runWithKind(c.TestName, c.KindCfg, c.KubebenchYAML, *kubebenchImg, timeout, ticker)
|
|
if err != nil {
|
|
t.Fatalf("unexpected error: %v", err)
|
|
return
|
|
}
|
|
mustMatch(c.ExpectedFile, data)
|
|
})
|
|
}
|
|
}
|