Class: NoradCli::SecTestContainer

Inherits:

Object

• Object
• NoradCli::SecTestContainer

Defined in:

lib/norad_cli/support/sectest_container.rb

Instance Attribute Summary

• #assessment_id ⇒ Object

  Returns the value of attribute assessment_id.

• #container ⇒ Object

  Returns the value of attribute container.

• #results_server ⇒ Object

  Returns the value of attribute results_server.

• #sectest_image ⇒ Object

  Returns the value of attribute sectest_image.

Instance Method Summary

• #initialize(sectest_name, options) ⇒ SecTestContainer constructor

  A new instance of SecTestContainer.

• #output(target) ⇒ Object
• #prog_args(sectest_name, options) ⇒ Object

  Format the prog_args appropriately for the container.

• #results ⇒ Object
• #shutdown ⇒ Object
• #start ⇒ Object

Constructor Details

#initialize(sectest_name, options) ⇒ SecTestContainer

Returns a new instance of SecTestContainer.

# File 'lib/norad_cli/support/sectest_container.rb', line 14

def initialize(sectest_name, options)
  # Generate a random assessment id
  @assessment_id = SecureRandom.hex(32)

  @sectest_image = "#{options['registry']}/#{sectest_name}:#{options[:version]}"

  # Create a results server
  @results_server = NoradCli::ResultsServer.new('docker-images-test-results-server')

  ENV['ENABLE_LOGS'] = 'true'
  env = [
    'NORAD_ROOT=http://results:3000',
    %(ASSESSMENT_PATHS=[{"id":"singletest", "assessment": "/results/#{@assessment_id}"}]),
    'NORAD_SECRET=1234'
  ]

  # Create the container
  @container = Docker::Container.create(Image: @sectest_image,
                                        Cmd: prog_args(sectest_name, options),
                                        Env: env,
                                        HostConfig: { Links: ["#{@results_server.container.id}:results"] })
end

Instance Attribute Details

#assessment_id ⇒ Object

Returns the value of attribute assessment_id.

# File 'lib/norad_cli/support/sectest_container.rb', line 10

def assessment_id
  @assessment_id
end

#container ⇒ Object

Returns the value of attribute container.

# File 'lib/norad_cli/support/sectest_container.rb', line 9

def container
  @container
end

#results_server ⇒ Object

Returns the value of attribute results_server.

# File 'lib/norad_cli/support/sectest_container.rb', line 12

def results_server
  @results_server
end

#sectest_image ⇒ Object

Returns the value of attribute sectest_image.

# File 'lib/norad_cli/support/sectest_container.rb', line 11

def sectest_image
  @sectest_image
end

Instance Method Details

#output(target) ⇒ Object

# File 'lib/norad_cli/support/sectest_container.rb', line 73

def output(target)
  # Output container logs for debugging
  @container.stop
  c_state = @container.json['State']

  # Print the entire state regardless of error or not to aid in debugging
  puts Rainbow("[DEBUG] Container #{@sectest_image}'s Final State").green
  puts Rainbow('-------------------------').green
  c_state.each do |key, value|
    puts Rainbow("#{key}: #{value}").green
  end

  puts Rainbow("\n[DEBUG] Logs for target #{@sectest_image} run against #{target}:").green

  # Print logs regardless of ExitCode
  puts Rainbow(@container.logs(stdout: true, stderr: true)).green
end

#prog_args(sectest_name, options) ⇒ Object

Format the prog_args appropriately for the container

# File 'lib/norad_cli/support/sectest_container.rb', line 38

def prog_args(sectest_name, options)
  # Grab the program arguments (minus other function options)
  # Options is a Thor::CoreExt::HashWithIndifferentAccess (except does not work)
  prog_arg_hash = options.each_with_object({}) do |(k, v), hsh|
    hsh[k.to_sym] = v unless k == 'debug' || k == 'registry' || k == 'version'
  end

  # Load the prog_arg format
  sectest_options ||= YAML.safe_load(File.read("sectests/#{sectest_name}/manifest.yml"))

  # Load an ssh key if necess
  prog_arg_hash[:ssh_key] = load_ssh_key(prog_arg_hash[:ssh_key]) if prog_arg_hash.key?(:ssh_key)

  # Fill out the prog_args and return
  begin
    format(sectest_options['prog_args'], prog_arg_hash).split(' ')
  rescue KeyError
    puts Rainbow('Error: The containers required arguments were not set.').red
    puts Rainbow("Arguments in %{} should be set: #{sectest_options['prog_args']}").red
    puts Rainbow("Arguments given: #{prog_arg_hash}").red
    puts Rainbow("Run 'norad sectest execute #{sectest_name} -h' to see how to set arguments!").red
    puts Rainbow('Exiting...').red
    exit(1)
  end
end

#results ⇒ Object

# File 'lib/norad_cli/support/sectest_container.rb', line 91

def results
  # Get the results
  url = "http://localhost:#{@results_server.host_port}/results?assessment_id=#{@assessment_id}"
  uri = URI.parse(url)
  http = Net::HTTP.new(uri.host, uri.port)
  request = Net::HTTP::Get.new(uri)
  response = http.request(request)
  if response.code == '200'
    response.body
  else
    puts Rainbow('Error retrieving results\nExiting...').red
    shutdown
    exit(1)
  end
end

#shutdown ⇒ Object

# File 'lib/norad_cli/support/sectest_container.rb', line 107

def shutdown
  # Stop the sectest image container and delete
  @container.stop
  @container.delete(force: true)

  # Cleanup/Garbage collect the results server
  @results_server.shutdown
end

#start ⇒ Object

# File 'lib/norad_cli/support/sectest_container.rb', line 64

def start
  # Start the results server container
  @results_server.start

  # Start the sectest container
  @container.start
  @container.wait(60 * 10)
end