From 30e199a70b32a6256c2a148eec870800ef1fbefc Mon Sep 17 00:00:00 2001
From: Pawel Wieczorek <p.wieczorek2@samsung.com>
Date: Thu, 16 Jul 2020 16:15:06 +0200
Subject: Import upstream component version inspection tool

This patch adds utility to check versions of binaries available in
Docker containers run on Kubernetes cluster. It has been contributed by:
kkkk-k <kkkk.k@samsung.com>

Several minor changes were made to comply with ONAP CI linter rules.

Issue-ID: INT-1571
Change-Id: Id0e4b557212dec1bf8d2bac580968d69e2cf5595
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
---
 test/security/check_versions/tests/test_main.py | 84 +++++++++++++++++++++++++
 1 file changed, 84 insertions(+)
 create mode 100644 test/security/check_versions/tests/test_main.py

(limited to 'test/security/check_versions/tests/test_main.py')

diff --git a/test/security/check_versions/tests/test_main.py b/test/security/check_versions/tests/test_main.py
new file mode 100644
index 000000000..0dff0b230
--- /dev/null
+++ b/test/security/check_versions/tests/test_main.py
@@ -0,0 +1,84 @@
+#!/usr/bin/env python3
+
+import k8s_bin_versions_inspector as kbvi
+import json
+import tempfile
+import yaml
+
+
+def exec_main(pod_name_trimmer, acceptable_data):
+
+    with tempfile.NamedTemporaryFile() as output_temp, tempfile.NamedTemporaryFile() as acceptable_temp:
+
+        with open(acceptable_temp.name, "w") as stream:
+            yaml.safe_dump(acceptable_data, stream)
+
+        result = kbvi.main(
+            [
+                "--quiet",
+                "--output-file",
+                output_temp.name,
+                "--output-format",
+                "json",
+                "--acceptable",
+                acceptable_temp.name,
+            ]
+        )
+
+        with open(output_temp.name, "r") as stream:
+            output_data = json.load(stream)
+            output_extracted = (
+                (
+                    item["namespace"],
+                    pod_name_trimmer(item["pod"]),
+                    item["container"],
+                    item["versions"]["python"],
+                    item["versions"]["java"],
+                )
+                for item in output_data
+            )
+            output_sorted = sorted(output_extracted)
+
+    assert output_sorted == [
+        ("default", "kbvi-test-java-keycloak", "keycloak", [], ["11.0.8"]),
+        ("default", "kbvi-test-java-keycloak-old", "keycloak-old", [], ["11.0.5"]),
+        (
+            "default",
+            "kbvi-test-java-keycloak-very-old",
+            "keycloak-very-old",
+            ["2.7.5"],
+            [],
+        ),
+        ("default", "kbvi-test-python-jupyter", "jupyter", ["3.8.4"], []),
+        ("default", "kbvi-test-python-jupyter-old", "jupyter-old", ["3.6.6"], []),
+        ("default", "kbvi-test-python-stderr-filebeat", "filebeat", ["2.7.5"], []),
+        ("default", "kbvi-test-terminated", "python", [], []),
+        ("ingress-nginx", "kbvi-test-ingress-nginx", "echo-server", [], []),
+        ("kube-system", "kbvi-test-kube-system", "echo-server", [], []),
+    ]
+
+    return result
+
+
+def test_main(pod_name_trimmer):
+
+    acceptable_data = {
+        "python": ["2.7.5", "3.6.6", "3.8.4"],
+        "java": ["11.0.5", "11.0.8"],
+    }
+
+    result = exec_main(pod_name_trimmer, acceptable_data)
+
+    assert result == 0
+
+
+def test_main_neg(pod_name_trimmer):
+
+    acceptable_data = {
+        "python": ["3.6.6", "3.8.4"],
+        "java": ["11.0.5", "11.0.8"],
+    }
+
+    result = exec_main(pod_name_trimmer, acceptable_data)
+
+    assert result == 1
-- 
cgit 1.2.3-korg