diff options
| author |   Pawel Wieczorek <p.wieczorek2@samsung.com> | 2019-05-26 11:40:36 +0200 |
|---|---|---|
| committer |   Gary Wu <gary.wu@futurewei.com> | 2019-06-20 00:27:04 +0000 |
| commit | cc752913623586ea27104ef49230629d2c8c7921 (patch) | |
| tree | 987b94469d40f5aaa95b5a1bdbce5e0e4e197075 | |
| parent | f54cbc192441c82879d63d4d3aee7f7448c45172 (diff) | |
k8s: Add basic structure for validation tool
This patch introduces CLI utility for checking if Kubernetes cluster
follows security recommendations. Provided Makefile simplifies setup
process by setting appropriate environment variables for the build.
Further information can be found in README. Provided symlink allows
proper document rendering on VCS hosting site.
Issue-ID: SECCOM-235
Change-Id: I4a1337c9834322ee4fd742a9ccb979b9bc505f75
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
| -rw-r--r-- | test/security/k8s/.gitignore | 2 | ||||
| -rw-r--r-- | test/security/k8s/Makefile | 20 | ||||
| -rw-r--r-- | test/security/k8s/README | 26 | ||||
| l--------- | test/security/k8s/README.rst | 1 | ||||
| -rw-r--r-- | test/security/k8s/src/check/cmd/check/check.go | 9 |
5 files changed, 58 insertions, 0 deletions
diff --git a/test/security/k8s/.gitignore b/test/security/k8s/.gitignore new file mode 100644 index 000000000..3db554d59 --- /dev/null +++ b/test/security/k8s/.gitignore @@ -0,0 +1,2 @@ +# Built binaries +/bin/check diff --git a/test/security/k8s/Makefile b/test/security/k8s/Makefile new file mode 100644 index 000000000..aeb1d9077 --- /dev/null +++ b/test/security/k8s/Makefile @@ -0,0 +1,20 @@ +PROJECT = check +BIN_DIR = bin +BIN = check + +all: run + +run: build + $(BIN_DIR)/$(BIN) + +build: $(BIN) + +$(BIN): export GOPATH = $(shell pwd) +$(BIN): + go install $(PROJECT)/cmd/$(BIN) + +clean: + rm $(BIN_DIR)/$(BIN) + rmdir $(BIN_DIR) + +.PHONY: all run build clean $(BIN) diff --git a/test/security/k8s/README b/test/security/k8s/README new file mode 100644 index 000000000..e7ee79f3d --- /dev/null +++ b/test/security/k8s/README @@ -0,0 +1,26 @@ +############################## +K8s secure configuration check +############################## + +Utility for checking if Kubernetes cluster configuration follows security recommendations. + +*************** +Getting started +*************** + +Prerequisites +============= + +- make +- go_ + +.. _go: https://golang.org/doc/install + +Running +======= + +Calling:: + + make run + +will build and run configuration check executable. It is the default target. diff --git a/test/security/k8s/README.rst b/test/security/k8s/README.rst new file mode 120000 index 000000000..100b93820 --- /dev/null +++ b/test/security/k8s/README.rst @@ -0,0 +1 @@ +README
\ No newline at end of file diff --git a/test/security/k8s/src/check/cmd/check/check.go b/test/security/k8s/src/check/cmd/check/check.go new file mode 100644 index 000000000..18487e29f --- /dev/null +++ b/test/security/k8s/src/check/cmd/check/check.go @@ -0,0 +1,9 @@ +package main + +import ( + "flag" +) + +func main() { + flag.Parse() +} |