Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Venom: Test security event autoreg using DHCP fingerprint #6816

Merged
merged 8 commits into from Jan 27, 2022
Merged

Venom: Test security event autoreg using DHCP fingerprint #6816

merged 8 commits into from Jan 27, 2022

Conversation

julsemaan
Copy link
Collaborator

Description

Test security event autoreg using DHCP fingerprint

Impacts

Venom tests

Delete branch after merge

YES

@julsemaan julsemaan added this to the PacketFence-11.2 milestone Jan 11, 2022
@julsemaan julsemaan requested a review from nqb January 11, 2022 17:35
@julsemaan
Copy link
Collaborator Author

Pipeline: https://gitlab.com/inverse-inc/packetfence/-/pipelines/445856632

@nqb
Copy link
Contributor

nqb commented Jan 12, 2022

I re-run a pipeline and it works.

I will review this PR soon.

nqb
nqb suggested changes Jan 26, 2022
View reviewed changes
Copy link
Contributor

@nqb nqb left a comment
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

General remarks:

  1. Can we merge this test suite to another scenario ? I'm thinking about captive_portal scenario
  2. I think there is a risk that DHCP fingerprint can change when we will upgrade node01 OS or make some changes on infrastructure.
  3. I think it could be interesting to check if security event has been triggered on node using API. Can be done later.
  4. Could you add a short TESTSUITE.md which explain test suite ?

t/venom/test_suites/security_event_autoreg/prepare/00_create_autoreg_security_event.yml Outdated Show resolved Hide resolved
t/venom/test_suites/security_event_autoreg/prepare/00_create_autoreg_security_event.yml Outdated Show resolved Hide resolved
t/venom/vars/all.yml Outdated Show resolved Hide resolved
t/venom/test_suites/security_event_autoreg/verify/run.yml Outdated Show resolved Hide resolved
@julsemaan
Copy link
Collaborator Author

  1. Can we merge this test suite to another scenario ? I'm thinking about captive_portal scenario

The "problem" with this is that since this suite involves switching from a VLAN to another it may break the other scenarios as they expand. Having one dedicated to security events (that would include isolation for suricata events, etc) made sense to me since it will be implicit that it involves multiple VLAN switches. I'm fine to merge it if you disagree, I'm just scared of the potential breakage that can happen due to it (either now or in the future)

  1. I think there is a risk that DHCP fingerprint can change when we will upgrade node01 OS or make some changes on infrastructure.

It's a variable so we can always change it in the future when that happens. If I use dhcp_test, it won't be as "real" as using node01

  1. I think it could be interesting to check if security event has been triggered on node using API. Can be done later.

👍

  1. Could you add a short TESTSUITE.md which explain test suite ?

Will do

@nqb
Copy link
Contributor

nqb commented Jan 26, 2022

Agree with your answers @julsemaan.

@julsemaan
Copy link
Collaborator Author

PIpeline with fixes: https://gitlab.com/inverse-inc/packetfence/-/pipelines/456839663

@nqb
Copy link
Contributor

nqb commented Jan 27, 2022

LGTM.

I will just adjust syntax of variables to avoid spaces inside curly brackets like we have for all Venom test suites.

  • Current: security_event_autoreg.node.mac: '{{ .node01_ens7_mac_address }}'
  • Expected: security_event_autoreg.node.mac: '{{.node01_ens7_mac_address}}'

@nqb nqb merged commit 5bba700 into devel Jan 27, 2022
nqb added a commit that referenced this pull request Jan 27, 2022
@nqb
remove space inside curly brackets
39da568 
Related to #6816
nqb added a commit that referenced this pull request Jan 27, 2022
@nqb
news for #6816
e8b4980
nqb added a commit that referenced this pull request Jan 31, 2022
@nqb
fix(tests): typo related to #6816
c66b881
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nqb nqb nqb requested changes

Assignees

@nqb nqb

Labels
Status: For review
Projects
None yet
Milestone
PacketFence-11.2
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@julsemaan @nqb