mirror of
https://github.com/inspec/inspec
synced 2024-11-23 21:23:29 +00:00
5114173e50
* Support PAX-formatted tar files, standardize file lists When a tar file is generated in PAX format, the files have an additional relative path prefix added to them. For example, instead of: inspec.yml ... the file is listed as: ./inspec.yml And the source reader plugin looks only for a "inspec.yml" file to determine the profile format. This change addresses this issue by normalizing the file paths in the TarReader and accounting for the additional "./" prefix that may exist whenever the tar file is walked looking for a file to read its content. Signed-off-by: Adam Leff <adam@leff.co> * Remove pax from unit test, will move to functional Signed-off-by: Adam Leff <adam@leff.co> * Add function test for the pax header tar file Signed-off-by: Adam Leff <adam@leff.co>
124 lines
3.3 KiB
Ruby
124 lines
3.3 KiB
Ruby
# encoding: utf-8
|
|
# author: Dominik Richter
|
|
# author: Christoph Hartmann
|
|
|
|
require 'functional/helper'
|
|
require 'mixlib/shellout'
|
|
|
|
describe 'inspec json' do
|
|
include FunctionalHelper
|
|
|
|
it 'read the profile json' do
|
|
out = inspec('json ' + example_profile)
|
|
out.stderr.must_equal ''
|
|
out.exit_status.must_equal 0
|
|
s = out.stdout
|
|
JSON.load(s).must_be_kind_of Hash
|
|
end
|
|
|
|
describe 'json profile data' do
|
|
let(:json) { JSON.load(inspec('json ' + example_profile).stdout) }
|
|
|
|
it 'has a name' do
|
|
json['name'].must_equal 'profile'
|
|
end
|
|
|
|
it 'has a title' do
|
|
json['title'].must_equal 'InSpec Example Profile'
|
|
end
|
|
|
|
it 'has a summary' do
|
|
json['summary'].must_equal 'Demonstrates the use of InSpec Compliance Profile'
|
|
end
|
|
|
|
it 'has a version' do
|
|
json['version'].must_equal '1.0.0'
|
|
end
|
|
|
|
it 'has a maintainer' do
|
|
json['maintainer'].must_equal 'Chef Software, Inc.'
|
|
end
|
|
|
|
it 'has a copyright' do
|
|
json['copyright'].must_equal 'Chef Software, Inc.'
|
|
end
|
|
|
|
it 'has controls' do
|
|
json['controls'].length.must_equal 4
|
|
end
|
|
|
|
describe 'a control' do
|
|
let(:control) { json['controls'].find { |x| x['id'] == 'tmp-1.0' } }
|
|
|
|
it 'has a title' do
|
|
control['title'].must_equal 'Create /tmp directory'
|
|
end
|
|
|
|
it 'has a description' do
|
|
control['desc'].must_equal 'An optional description...'
|
|
end
|
|
|
|
it 'has an impact' do
|
|
control['impact'].must_equal 0.7
|
|
end
|
|
|
|
it 'has a ref' do
|
|
control['refs'].must_equal([{'ref' => 'Document A-12', 'url' => 'http://...'}])
|
|
end
|
|
|
|
it 'has a source location' do
|
|
loc = File.join(example_profile, '/controls/example.rb')
|
|
control['source_location']['ref'].must_equal loc
|
|
control['source_location']['line'].must_equal 7
|
|
end
|
|
|
|
it 'has a the source code' do
|
|
control['code'].must_match(/\Acontrol \"tmp-1.0\" do.*end\n\Z/m)
|
|
end
|
|
end
|
|
end
|
|
|
|
describe 'filter with --controls' do
|
|
let(:out) { inspec('json ' + example_profile + ' --controls tmp-1.0') }
|
|
|
|
it 'still succeeds' do
|
|
out.stderr.must_equal ''
|
|
out.exit_status.must_equal 0
|
|
end
|
|
|
|
it 'only has one control included' do
|
|
json = JSON.load(out.stdout)
|
|
json['controls'].length.must_equal 1
|
|
json['controls'][0]['id'].must_equal 'tmp-1.0'
|
|
json['groups'].length.must_equal 1
|
|
json['groups'][0]['id'].must_equal 'controls/example.rb'
|
|
end
|
|
end
|
|
|
|
it 'writes json to file' do
|
|
out = inspec('json ' + example_profile + ' --output ' + dst.path)
|
|
out.stderr.must_equal ''
|
|
out.exit_status.must_equal 0
|
|
hm = JSON.load(File.read(dst.path))
|
|
hm['name'].must_equal 'profile'
|
|
hm['controls'].length.must_equal 4
|
|
end
|
|
|
|
describe 'json test for pax header archives' do
|
|
let(:profile_tgz) { File.join(Dir.mktmpdir, "pax-profile-test.tar.gz") }
|
|
|
|
before do
|
|
files = Dir.glob("#{example_profile}/**/*").delete_if { |x| !File.file?(x) }
|
|
relatives = files.map { |e| Pathname.new(e).relative_path_from(Pathname.new(example_profile)).to_s }
|
|
|
|
cmd = Mixlib::ShellOut.new("tar --format=pax -czf #{profile_tgz} #{relatives.join(' ')}", cwd: example_profile)
|
|
cmd.run_command
|
|
cmd.error!
|
|
end
|
|
|
|
it 'successfully reads a pax-formatted tar file' do
|
|
out = inspec("json #{profile_tgz}")
|
|
out.exit_status.must_equal 0
|
|
end
|
|
end
|
|
end
|