mirrors/crowdsec
1
0
Fork 0
mirror of https://github.com/crowdsecurity/crowdsec.git synced 2025-05-17 23:03:56 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
crowdsec/tests/lib/setup_file.sh
mmetc 708fa8280a
add test and fix for configuration reload (#1808) 
fix reload issue by returning new configuration to the signal loop

example: run crowdsec, disable agent in the config file, reload config.
Now there is no agent but the signal loop believes there is, so
triggering a reload configuration again will make the process hang
forever.
This commit updates the configuration in the signal loop with the one
returned by the signal handler.
2022-10-14 15:48:41 +02:00

213 lines
5.3 KiB
Bash
Executable file
Raw Permalink Blame History

#!/usr/bin/env bash
# this should have effect globally, for all tests
# https://github.com/bats-core/bats-core/blob/master/docs/source/warnings/BW02.rst
bats_require_minimum_version 1.5.0
debug() {
echo 'exec 1<&-; exec 2<&-; exec 1>&3; exec 2>&1'
}
export -f debug
# redirects stdout and stderr to &3 otherwise the errors in setup, teardown would
# go unreported.
# BUT - don't do this in test functions. Everything written to stdout and
# stderr after this line will go to the terminal, but in the tests, these
# are supposed to be collected and shown only in case of test failure
# (see options --print-output-on-failure and --show-output-of-passing-tests)
eval "$(debug)"
# Allow tests to use relative paths for helper scripts.
# shellcheck disable=SC2164
cd "${TEST_DIR}"
# complain if there's a crowdsec running system-wide or leftover from a previous test
./bin/assert-crowdsec-not-running
# we can prepend the filename to the test descriptions (useful to feed a TAP consumer)
if [[ "${PREFIX_TEST_NAMES_WITH_FILE:-false}" == "true" ]]; then
BATS_TEST_NAME_PREFIX="$(basename "${BATS_TEST_FILENAME}" .bats): "
export BATS_TEST_NAME_PREFIX
fi
# before bats 1.7, we did that by hand
FILE=
export FILE
# the variables exported here can be seen in other setup/teardown/test functions
# MYVAR=something
# export MYVAR
# functions too
cscli() {
"${CSCLI}" "$@"
}
export -f cscli
config_get() {
local cfg="${CONFIG_YAML}"
if [[ $# -ge 2 ]]; then
cfg="$1"
shift
fi
yq e "$1" "${cfg}"
}
export -f config_get
config_set() {
local cfg="${CONFIG_YAML}"
if [[ $# -ge 2 ]]; then
cfg="$1"
shift
fi
yq e "$1" -i "${cfg}"
}
export -f config_set
config_disable_agent() {
config_set 'del(.crowdsec_service)'
}
export -f config_disable_agent
config_disable_lapi() {
config_set 'del(.api.server)'
}
export -f config_disable_lapi
config_disable_capi() {
config_set 'del(.api.server.online_client)'
}
export -f config_disable_capi
config_enable_capi() {
online_api_credentials="$(dirname "${CONFIG_YAML}")/online_api_credentials.yaml" \
config_set '.api.server.online_client.credentials_path=strenv(online_api_credentials)'
}
export -f config_enable_capi
# We use these functions like this:
# somecommand <(stderr)
# to provide a standard input to "somecommand".
# The alternatives echo "$stderr" or <<<"$stderr"
# ("here string" in bash jargon)
# are worse because they add a newline,
# even if the variable is empty.
# shellcheck disable=SC2154
stderr() {
printf '%s' "${stderr}"
}
export -f stderr
# shellcheck disable=SC2154
output() {
printf '%s' "${output}"
}
export -f output
is_db_postgres() {
[[ "${DB_BACKEND}" =~ ^postgres|pgx$ ]]
}
export -f is_db_postgres
is_db_mysql() {
[[ "${DB_BACKEND}" == "mysql" ]]
}
export -f is_db_mysql
is_db_sqlite() {
[[ "${DB_BACKEND}" == "sqlite" ]]
}
export -f is_db_sqlite
# Compare ignoring the key order, and allow "expected" without quoted identifiers.
# Preserve the output variable in case the following commands require it.
assert_json() {
local oldout="${output}"
# validate actual, sort
run -0 jq -Sen "${output}"
local actual="${output}"
# handle stdin, quote identifiers, sort
local expected="$1"
if [[ "${expected}" == "-" ]]; then
expected="$(cat)"
fi
run -0 jq -Sn "${expected}"
expected="${output}"
#shellcheck disable=SC2016
run jq -ne --argjson a "${actual}" --argjson b "${expected}" '$a == $b'
#shellcheck disable=SC2154
if [[ "${status}" -ne 0 ]]; then
echo "expect: $(jq -c <<<"${expected}")"
echo "actual: $(jq -c <<<"${actual}")"
diff <(echo "${actual}") <(echo "${expected}")
fail "json does not match"
fi
output="${oldout}"
}
export -f assert_json
# Check if there's something on stdin by consuming it. Only use this as a way
# to check if something was passed by mistake, since if you read it, it will be
# incomplete.
is_stdin_empty() {
if read -r -t 0.1; then
return 1
fi
return 0
}
export -f is_stdin_empty
assert_stderr() {
# it is never useful to call this without arguments
if [[ "$#" -eq 0 ]]; then
# maybe the caller forgot to use '-' with an heredoc
if ! is_stdin_empty; then
fail "${FUNCNAME[0]}: called with stdin and no arguments (heredoc?)"
fi
fail "${FUNCNAME[0]}: called with no arguments"
fi
local oldout="${output}"
run -0 echo "${stderr}"
assert_output "$@"
output="${oldout}"
}
export -f assert_stderr
# like refute_output, but for stderr
refute_stderr() {
# calling this without arguments is ok, as long as stdin in empty
if ! is_stdin_empty; then
fail "${FUNCNAME[0]}: called with stdin (heredoc?)"
fi
local oldout="${output}"
run -0 echo "${stderr}"
refute_output "$@"
output="${oldout}"
}
export -f refute_stderr
# like assert_output, but for stderr
assert_stderr_line() {
if [[ "$#" -eq 0 ]]; then
fail "${FUNCNAME[0]}: called with no arguments"
fi
local oldout="${output}"
run -0 echo "${stderr}"
assert_line "$@"
output="${oldout}"
}
export -f assert_stderr_line
# remove color and style sequences from stdin
plaintext() {
sed -E 's/\x1B\[[0-9;]*[JKmsu]//g'
}
export -f plaintext
Reference in a new issue View git blame Copy permalink