Giter VIP home page Giter VIP logo

dobby-security-tool's People

Contributors

ashoks-hub avatar deepthi-ps avatar koczek9 avatar marcin-koczwara-red avatar

Stargazers

avatar

Watchers

avatar avatar avatar avatar avatar

Forkers

koczek9 ashoks-hub

dobby-security-tool's Issues

Multiple repetitions of same condition in test_5_3

In file tests/5_dobby_container_runtime_test.sh there is test test_5_3 In which there is same line copy-pasted 4 times:

if [ "${input[$j]}" == "${ouputarr[$i]}" ]; then
	fail "$check"
	return
elif [ "${input[$j]}" == "${ouputarr[$i]}" ]; then
	fail "$check"
	return
elif [ "${input[$j]}" == "${ouputarr[$i]}" ]; then
	fail "$check"
	return
elif [ "${input[$j]}" == "${ouputarr[$i]}" ]; then
	fail "$check"
	return
fi

All those copies doesn't make sense. We could probably delete them, but as there was some if/else I think that author had something in mind just forgot to implement it.

test_5_3 uses unsupported "capsh" command

The command capsh is not available on some platforms. We should think about different way of testing if capabilities are correct. Also we should check if output isn't empty, as when platform doesn't support capsh it will have empty output, and it will PASS the test instead of failing it. If there is no other way to test it I am fine with using WARN to say that this command is required for this test.

DobbyInit_PID is not read correctly on Vagrant

Current implementation of DobbyInit_PID does return empty string on Vagrant. This also shows that we should move current implementation into functions.sh and call just:
DobbyInit_PID=get_DobbyInit_PID
instead of copy pasting every time whole thing:
DobbyInit_PID=$(ps -fe | grep DobbyInit | grep $containername | awk '{print $2}')
Because when we will need to modify it will need to change it in every occurrence of that code (currently 17 cases but it will grow with time). If we move implementation somewhere and just call it we will only need to change it once.

If it comes to why DobbyInit_PID isn't working it is because in vagrant output looks like:

ps -fe | grep DobbyInit
vagrant    33138   28831  0 11:42 pts/0    00:00:00 /usr/libexec/DobbyInit sleep 600
vagrant    33195   20516  0 11:42 pts/0    00:00:00 grep --color=auto DobbyInit

as one can see there is no container name there.

test_5_29 uses unsupported "brctl" command

The command brctl is not supported in some platforms. We should think about different way to test if bridge is in use. Is ifconfig enough in this case? If it is then it should be available on every platform.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.