initial commit of tests/99_community_checks.sh v1.3.1

Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
This commit is contained in:
Thomas Sjögren 2021-05-25 20:49:46 +02:00
parent 32c5e5f1fb
commit c1457e6ad3

View file

@ -1,4 +1,5 @@
#!/bin/sh #!/bin/bash
check_c() { check_c() {
logit "" logit ""
local id="99" local id="99"
@ -10,10 +11,10 @@ check_c() {
check_c_1() { check_c_1() {
local id="C.1" local id="C.1"
local desc="This is a example check for a Scored check" local desc="This is a example check for a Automated check"
local remediation="This is an example remediation measure for a Scored check" local remediation="This is an example remediation measure for a Automated check"
local remediationImpact="This is an example remediation impact for a Scored check" local remediationImpact="This is an example remediation impact for a Automated check"
local check="$id - $desc" local check="$id - $desc"
starttestjson "$id" "$desc" starttestjson "$id" "$desc"
if docker info --format='{{ .Architecture }}' | grep 'x86_64' 2>/dev/null 1>&2; then if docker info --format='{{ .Architecture }}' | grep 'x86_64' 2>/dev/null 1>&2; then
@ -32,10 +33,10 @@ check_c_1() {
check_c_1_1() { check_c_1_1() {
local id="C.1.1" local id="C.1.1"
local desc="This is a example check for a Not Scored check" local desc="This is a example check for a Manual check"
local remediation="This is an example remediation measure for a Not Scored check" local remediation="This is an example remediation measure for a Manual check"
local remediationImpact="This is an example remediation impact for a Not Scored check" local remediationImpact="This is an example remediation impact for a Manual check"
local check="$id - $desc" local check="$id - $desc"
starttestjson "$id" "$desc" starttestjson "$id" "$desc"
if docker info --format='{{ .Architecture }}' | grep 'x86_64' 2>/dev/null 1>&2; then if docker info --format='{{ .Architecture }}' | grep 'x86_64' 2>/dev/null 1>&2; then
@ -60,7 +61,7 @@ check_c_2() {
local desc="Ensure operations on legacy registry (v1) are Disabled" local desc="Ensure operations on legacy registry (v1) are Disabled"
local remediation="Start docker daemon with --disable-legacy-registry=false flag. Starting with Docker 17.12, support for V1 registries has been removed, and the --disable-legacy-registry flag can no longer be used." local remediation="Start docker daemon with --disable-legacy-registry=false flag. Starting with Docker 17.12, support for V1 registries has been removed, and the --disable-legacy-registry flag can no longer be used."
local remediationImpact="Prevents the docker daemon from pull, push, and login operations against v1 registries." local remediationImpact="Prevents the docker daemon from pull, push, and login operations against v1 registries."
local check="$id - $desc" local check="$id - $desc"
starttestjson "$id" "$desc" starttestjson "$id" "$desc"
if [ "$docker_version" -lt 1712 ]; then if [ "$docker_version" -lt 1712 ]; then
@ -79,7 +80,7 @@ check_c_2() {
return return
fi fi
local desc="$desc (Deprecated)" local desc="$desc (Deprecated)"
local check="$id - $desc" local check="$id - $desc"
info -c "$check" info -c "$check"
logcheckresult "INFO" logcheckresult "INFO"
} }