mirror of
https://github.com/SAP/jenkins-library.git
synced 2025-01-04 04:07:16 +02:00
a864cf0f60
* Fix docker.includes in WhitesourceConfigurationHelper Not sure, but it seems the [`docker.includes` parameter](https://whitesource.atlassian.net/wiki/spaces/WD/pages/804814917/Unified+Agent+Configuration+File+and+Parameters#UnifiedAgentConfigurationFileandParameters-DockerImages) needs to be a regex. Our pipeline is failing with: ``` 10:22:33 [ERROR] [2020-06-15 08:22:33,740 +0000] - Resolve DockerEntity Exception Dangling meta character '*' near index 0 10:22:33 *.tar 10:22:33 ^ 10:22:33 [DEBUG] [2020-06-15 08:22:33,743 +0000] - Resolve DockerEntity Exception {} 10:22:33 java.util.regex.PatternSyntaxException: Dangling meta character '*' near index 0 10:22:33 *.tar 10:22:33 ^ 10:22:33 at java.base/java.util.regex.Pattern.error(Unknown Source) 10:22:33 at java.base/java.util.regex.Pattern.sequence(Unknown Source) 10:22:33 at java.base/java.util.regex.Pattern.expr(Unknown Source) 10:22:33 at java.base/java.util.regex.Pattern.compile(Unknown Source) 10:22:33 at java.base/java.util.regex.Pattern.<init>(Unknown Source) 10:22:33 at java.base/java.util.regex.Pattern.compile(Unknown Source) 10:22:33 at org.whitesource.utils.WssStringUtils.isMatchingPattern(WssStringUtils.java:49) 10:22:33 at org.whitesource.agent.dependency.resolver.docker.DockerResolver.filterTarImagesToScan(DockerResolver.java:296) 10:22:33 at org.whitesource.agent.dependency.resolver.docker.DockerResolver.resolveDockerEntities(DockerResolver.java:186) 10:22:33 at org.whitesource.fs.scanOrigins.DockerEntityScanOrigin.scan(DockerEntityScanOrigin.java:66) 10:22:33 at org.whitesource.fs.scanOrigins.ScanOrigin.runOriginScan(ScanOrigin.java:36) 10:22:33 at org.whitesource.fs.FileSystemAgent.createProjects(FileSystemAgent.java:132) 10:22:33 at org.whitesource.fs.Main.scanAndSend(Main.java:157) 10:22:33 at org.whitesource.fs.Main.main(Main.java:102) 10:22:33 [WARN] [2020-06-15 08:22:33,744 +0000] - Resolve DockerEntity Exception Dangling meta character '*' near index 0 10:22:33 *.tar 10:22:33 ^ ``` * Switch docker.includes to slashy string * Fix docker includes pattern in tests Co-authored-by: Oliver Nocon <33484802+OliverNocon@users.noreply.github.com> Co-authored-by: D070410 <srinikitha.kondreddy@sap.com>
205 lines
11 KiB
Groovy
205 lines
11 KiB
Groovy
package com.sap.piper
|
|
|
|
import org.junit.Before
|
|
import org.junit.Rule
|
|
import org.junit.Test
|
|
import org.junit.rules.RuleChain
|
|
import util.BasePiperTest
|
|
import util.JenkinsLoggingRule
|
|
import util.JenkinsReadFileRule
|
|
import util.JenkinsWriteFileRule
|
|
import util.Rules
|
|
|
|
import static org.hamcrest.Matchers.containsString
|
|
import static org.hamcrest.Matchers.hasItem
|
|
import static org.hamcrest.Matchers.not
|
|
import static org.hamcrest.Matchers.allOf
|
|
import static org.junit.Assert.assertThat
|
|
|
|
class WhitesourceConfigurationHelperTest extends BasePiperTest {
|
|
JenkinsReadFileRule jrfr = new JenkinsReadFileRule(this, 'test/resources/utilsTest/')
|
|
JenkinsWriteFileRule jwfr = new JenkinsWriteFileRule(this)
|
|
JenkinsLoggingRule jlr = new JenkinsLoggingRule(this)
|
|
|
|
@Rule
|
|
public RuleChain ruleChain = Rules
|
|
.getCommonRules(this)
|
|
.around(jrfr)
|
|
.around(jwfr)
|
|
.around(jlr)
|
|
|
|
@Before
|
|
void init() {
|
|
def p = new Properties()
|
|
p.put("log.level", "debug")
|
|
helper.registerAllowedMethod('readProperties', [Map], {return p})
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentEmptyConfig() {
|
|
helper.registerAllowedMethod('readProperties', [Map], {return new Properties()})
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'none', whitesource: [configFilePath: './config',serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'DIST - name1', productToken: '1234', userKey: '0000']], "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
not(containsString("log.level=debug")),
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=DIST - name1"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000")
|
|
)
|
|
)
|
|
|
|
assertThat(jlr.log, containsString("[Whitesource] Configuration for scanType: 'none' is not yet hardened, please do a quality assessment of your scan results."))
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentConfigDeeper() {
|
|
helper.registerAllowedMethod('readProperties', [Map], { m -> if (!m.file.contains('testModule')) return new Properties() else return null })
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'none', whitesource: [configFilePath: './config',serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'DIST - name1', productToken: '1234', userKey: '0000']], "./testModule/")
|
|
assertThat(jwfr.files['./testModule/config.13954509c7675edfce373138f51c68464d1abcac'],
|
|
allOf(
|
|
not(containsString("log.level=debug")),
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=DIST - name1"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000")
|
|
)
|
|
)
|
|
|
|
assertThat(jlr.log, containsString("[Whitesource] Configuration for scanType: 'none' is not yet hardened, please do a quality assessment of your scan results."))
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentMaven() {
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'none', whitesource: [configFilePath: './config',serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'DIST - name1', productToken: '1234', userKey: '0000']], "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=DIST - name1"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000")
|
|
)
|
|
)
|
|
|
|
assertThat(jlr.log, containsString("[Whitesource] Configuration for scanType: 'none' is not yet hardened, please do a quality assessment of your scan results."))
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentNpm() {
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'npm', whitesource: [configFilePath: './config',serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'DIST - name1', productToken: '1234', userKey: '0000']], "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=DIST - name1"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000")
|
|
)
|
|
)
|
|
|
|
assertThat(jlr.log, containsString("[Whitesource] Configuration for scanType: 'npm' is not yet hardened, please do a quality assessment of your scan results."))
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentDocker() {
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'docker', whitesource: [configFilePath: './config',serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'DIST - name1', productToken: '1234', userKey: '0000']], "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=DIST - name1"),
|
|
containsString("productToken=1234"),
|
|
containsString("docker.scanImages=true"),
|
|
containsString("docker.scanTarFiles=true"),
|
|
containsString("docker.includes=.*.tar"),
|
|
)
|
|
)
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentSbt() {
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'sbt', whitesource: [configFilePath: './config',serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'DIST - name1', productToken: '1234', userKey: '0000']], "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=DIST - name1"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000"),
|
|
containsString("sbt.resolveDependencies=true"),
|
|
containsString("log.level=debug")
|
|
)
|
|
)
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentDub() {
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'dub', whitesource: [configFilePath: './config',serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'DIST - name1', productToken: '1234', userKey: '0000']], "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=DIST - name1"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000"),
|
|
containsString("includes=**/*.d **/*.di")
|
|
)
|
|
)
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentPip() {
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'pip', whitesource: [configFilePath: './config',serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'DIST - name1', productToken: '1234', userKey: '0000']], "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=DIST - name1"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000"),
|
|
containsString("python.resolveDependencies=true")
|
|
)
|
|
)
|
|
|
|
assertThat(jlr.log, not(containsString("[Whitesource] Configuration for scanType: 'pip' is not yet hardened, please do a quality assessment of your scan results.")))
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentGolangVerbose() {
|
|
def config = [scanType: 'golang', whitesource: [configFilePath: './config', serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'abcd', productName: 'SHC - name2', productToken: '1234', userKey: '0000'], stashContent: ['some', 'stashes'], verbose: true]
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, config, "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
containsString("apiKey=abcd"),
|
|
containsString("productName=SHC - name2"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000"),
|
|
containsString("go.resolveDependencies=true"),
|
|
containsString("log.level=debug")
|
|
)
|
|
)
|
|
|
|
assertThat(config.stashContent, hasItem(containsString('modified whitesource config ')))
|
|
assertThat(jlr.log, not(containsString("[Warning][Whitesource] Configuration for scanType: 'golang' is not yet hardened, please do a quality assessment of your scan results.")))
|
|
}
|
|
|
|
@Test
|
|
void testExtendConfigurationFileUnifiedAgentEnforcement() {
|
|
def p = new Properties()
|
|
p.putAll(['python.resolveDependencies': 'false', 'python.ignoreSourceFiles': 'false', 'python.ignorePipInstallErrors': 'true','python.installVirtualenv': 'false'])
|
|
helper.registerAllowedMethod('readProperties', [Map], {return p})
|
|
|
|
WhitesourceConfigurationHelper.extendUAConfigurationFile(nullScript, utils, [scanType: 'pip', whitesource: [configFilePath: './config', serviceUrl: "http://some.host.whitesource.com/api/", orgToken: 'cdfg', productName: 'name', productToken: '1234', userKey: '0000'], verbose: true], "./")
|
|
assertThat(jwfr.files['./config.847f9aec2f93de9000d5fa4e6eaace2283ae6377'],
|
|
allOf(
|
|
containsString("apiKey=cdfg"),
|
|
containsString("productName=name"),
|
|
containsString("productToken=1234"),
|
|
containsString("userKey=0000"),
|
|
containsString("python.resolveDependencies=true"),
|
|
containsString("log.level=debug"),
|
|
containsString("python.resolveDependencies=true"),
|
|
containsString("python.ignoreSourceFiles=true"),
|
|
containsString("python.ignorePipInstallErrors=true"),
|
|
containsString("python.installVirtualenv=false")
|
|
)
|
|
)
|
|
}
|
|
}
|
|
|