Closed Deblintrake09 closed 5 months ago
Found some provision errors:
It has been created a basic test structure and some fixture for configure the environment. The current E2E approach has several limitations:
Created class method to configure the environment through YAML files
Continue creating common fixtures for the basic tests.
Created first PoC of the E2E-VD-3
tests and common structure for all the basic tests cases
Development branch |
---|
enhacement/4590-vd-basic-test-cases |
There still some issues regarding the monitoring of the logs. Currently working on it
Development branch |
---|
enhacement/4590-vd-basic-test-cases |
The Installation of a vulnerable package case was implemented correctly. This was performed following this case structure
- case: "Updating a vulnerable package that remains vulnerable to the same CVE"
id: "update_vuln_package_remain_vulnerable"
description: "Updating a vulnerable package that remains vulnerable to the same CVE"
preconditions:
tasks:
- install_package:
package:
centos: https://downloads.rclone.org/v1.49.5/rclone-v1.49.5-linux-amd64.rpm
ubuntu: https://downloads.rclone.org/v1.49.5/rclone-v1.49.5-linux-amd64.deb
check_alerts:
centos:
- event: install_package
name: "rclone"
version: "1.49.5"
ubuntu:
- event: install_package
name: "rclone"
version: "1.49.5"
body:
tasks:
- install_package:
package:
centos: https://downloads.rclone.org/v1.50.0/rclone-v1.50.0-linux-amd64.rpm
ubuntu: https://downloads.rclone.org/v1.50.0/rclone-v1.50.0-linux-amd64.deb
check_alerts:
centos:
- event: upgrade_package
name: "rclone"
version: "1.50.0"
ubuntu:
- event: upgrade_package
name: "rclone"
version: "1.50.0"
teardown:
- remove_package:
package:
centos: rclone
ubuntu: rclone
This approach will allow us to include desired cases easily. However this first iteration do not include dependency. The implementation of dynamic dependency could lead into delays in the development
Warning Currently it is only checked that the package installation/removal/upgrade alert was generated in the manager. It would be necessary a development branch to implement a fully functional tests.
Regarding this clarifications it is necessary to:
Currently working in tests dependency and fixing minor errors in vulnerability alerts gathering. Changes here: https://github.com/wazuh/wazuh-qa/commit/21176da539f42e496371f8142616e4dcff50ca7c
New ETA 17/11/23 due the following reasons:
Refactor VD tests in order to improve migration to new framework. Done in https://github.com/wazuh/wazuh-qa/commit/b9f1101992dcb7ecc7b67f9f8a72c322536b1ab3 Also refactor schema in order to check generated vulnerabilities in different ways.
Created PR with development https://github.com/wazuh/wazuh-qa/pull/4703 It is required further testing
[!NOTE] Current approach implement host handling functionality using different E2E modules. This is a workaround in order to avoid the migration of the QA framework. However it is recommended to follow a class approach to implement those operations.
During testing it has been detected a possible issue handling Vulnerabilities of Windows agents registered in worker nodes. Currently researching this issue. In addition it has been detected that HostMonitor approach for monitoring the alerts generated in the environment is not viable due to the large amount of alerts produced in a multi agent environment. It is suggested to check alerts performing API requests to the indexer server instead.
Currently testing in real environment It seems that in real testing Vulnerability Scan of agents is waiting longer that the expected: https://ci.wazuh.info/job/Test_e2e_system/186/console It is necessary to analyze result. In addition, it is necessary to include a minor logic to gather information about the environment
Testing build: https://ci.wazuh.info/job/Test_e2e_system/189/console
Working on PR review requested changes
Moved ETA to 27/11/2023 to apply the rest of the PR comments from @juliamagan
Moved ETA to 28/11/2023 to allow the revision from @juliamagan
Description
This issue aims to create the basic End-to-end test cases defined in https://github.com/wazuh/wazuh-qa/issues/4531. As all tests defined in the issue are part of the minimal required testing suite, and as tests have tight dependencies, the cases that are part of the basis for all test cases will be done in this issue, so development can be parallelized.
Proposed test cases
Considerations