mirror of
https://github.com/inspec/inspec
synced 2024-11-15 01:17:08 +00:00
232de91d9a
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
52 lines
1.5 KiB
Ruby
52 lines
1.5 KiB
Ruby
# encoding: utf-8
|
|
# copyright: 2015, Dominik Richter
|
|
# license: All rights reserved
|
|
|
|
class MysqlSession
|
|
def initialize user, pass
|
|
@user = user
|
|
@pass = pass
|
|
@runner = Specinfra::Runner
|
|
initialize_fallback if user.nil? or pass.nil?
|
|
skip_resource if @user.nil? or @pass.nil?
|
|
end
|
|
|
|
def describe(query, db = "", &block)
|
|
# TODO: simple escape, must be handled by a library
|
|
# that does this securely
|
|
escaped_query = query.gsub(/\\/, '\\\\').gsub(/"/,'\\"').gsub(/\$/,'\\$')
|
|
# run the query
|
|
cmd = Serverspec::Type::Command.new("mysql -u#{@user} -p#{@pass} #{db} -s -e \"#{escaped_query}\"")
|
|
out = cmd.stdout + "\n" + cmd.stderr
|
|
if out =~ /Can't connect to .* MySQL server/ or
|
|
out.downcase =~ /^error/
|
|
# skip this test if the server can't run the query
|
|
RSpec.describe( cmd ) do
|
|
it "is skipped", skip: out do
|
|
end
|
|
end
|
|
else
|
|
RSpec.__send__( 'describe', cmd, &block )
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def initialize_fallback
|
|
# support debian mysql administration login
|
|
debian = @runner.run_command("test -f /etc/mysql/debian.cnf && cat /etc/mysql/debian.cnf").stdout
|
|
unless debian.empty?
|
|
user = debian.match(/^\s*user\s*=\s*([^ ]*)\s*$/)
|
|
pass = debian.match(/^\s*password\s*=\s*([^ ]*)\s*$/)
|
|
return if user.nil? or pass.nil?
|
|
@user = user[1]
|
|
@pass = pass[1]
|
|
return
|
|
end
|
|
end
|
|
end
|
|
|
|
def start_mysql_session( user=nil, password=nil )
|
|
MysqlSession.new(user, password)
|
|
end
|
|
|