fix #787 : load simulation config at startup (#793)

* fix #787 : load simulation config at startup
2025-05-10 20:05:55 +02:00 · 2021-05-17 11:54:28 +02:00 · 2021-05-17 11:54:28 +02:00 · eb0bd70046
commit eb0bd70046
parent f881510f79
5 changed files with 70 additions and 0 deletions
--- a/scripts/func_tests/tests_post-install_5simulation.sh
+++ b/scripts/func_tests/tests_post-install_5simulation.sh
@ -0,0 +1,47 @@
+#! /usr/bin/env bash
+# -*- coding: utf-8 -*-
+
+source tests_base.sh
+
+COLLECTION=crowdsecurity/sshd
+SCENARIO=crowdsecurity/ssh-bf
+
+# install sshd collection
+
+${CSCLI} collections install $COLLECTION
+${CSCLI} decisions delete --all
+${SYSTEMCTL} reload crowdsec
+
+
+# generate a fake bf log -> cold logs processing
+rm  -f ssh-bf.log
+
+for i in `seq 1 10` ; do 
+    echo `date '+%b %d %H:%M:%S '`'sd-126005 sshd[12422]: Invalid user netflix from 1.1.1.174 port 35424' >> ssh-bf.log
+done;
+
+${CROWDSEC} -file ./ssh-bf.log -type syslog -no-api
+
+${CSCLI} decisions list -o=json | ${JQ} '. | length == 1' || fail "expected exactly one decision"
+${CSCLI} decisions list -o=json | ${JQ} '.[].decisions[0].value == "1.1.1.174"'  || fail "(exact) expected ban on 1.1.1.174"
+${CSCLI} decisions list -o=json | ${JQ} '.[].decisions[0].simulated == false'  || fail "(exact) expected simulated on false"
+
+
+# enable simulation on specific scenario and try with same logs
+
+${CSCLI} decisions delete --all
+${CSCLI} simulation enable $SCENARIO
+
+${CROWDSEC} -file ./ssh-bf.log -type syslog -no-api
+
+${CSCLI} decisions list --no-simu -o=json | ${JQ} '. == null' || fail "expected no decision (listing only non-simulated decisions)"
+
+# enable global simulation and try with same logs
+
+${CSCLI} decisions delete --all
+${CSCLI} simulation disable $SCENARIO
+${CSCLI} simulation enable --global
+
+${CROWDSEC} -file ./ssh-bf.log -type syslog -no-api
+
+${CSCLI} decisions list --no-simu -o=json | ${JQ} '. == null' || fail "expected no decision (listing only non-simulated decisions)"