Determine if all Docker tests should be executed, depending on exit code

author: Michael Boelen <michael.boelen@cisofy.com> 2016-07-30 14:23:27 +0300
committer: Michael Boelen <michael.boelen@cisofy.com> 2016-07-30 14:23:27 +0300
commit: a5baafca026bc87d31d54e77e13989c27a4aedd4 (patch)
tree: b8c9309889b48df843c3bb906200ac194a8a2275 /include/tests_containers
parent: a00f7130dd912dcfe603bec2627824a8dcd9aafe (diff)
1 files changed, 11 insertions, 3 deletions
diff --git a/include/tests_containers b/include/tests_containers
index bc91dbe9..c32a59d0 100644
--- a/include/tests_containers
+++ b/include/tests_containers
@@ -27,6 +27,7 @@
 #################################################################################
 #
     DOCKER_FILE_PERMISSIONS_WARNINGS=0
+    RUN_DOCKER_TESTS=0
 #
 #################################################################################
 #
@@ -81,6 +82,7 @@
             LogText "Result: found Docker daemon running"
             Report "docker_daemon_running=1"
             DOCKER_DAEMON_RUNNING=1
+            RUN_DOCKER_TESTS=1
             Display --indent 4 --text "- Docker"
             Display --indent 6 --text "- Docker daemon" --result "${STATUS_RUNNING}" --color GREEN
         fi
@@ -96,6 +98,12 @@
     if [ ${SKIPTEST} -eq 0 ]; then
         COUNT=0
         LogText "Test: Check for any warnings"
+        FIND=$(${DOCKERBINARY} version 2>&1)
+        if [ $? -gt 0 ]; then
+            Display --indent 8 --text "- Docker status" --result "${STATUS_ERROR}" --color RED
+            LogText "Result: disabling further Docker tests as docker version gave exit code other than zero (0)"
+            RUN_DOCKER_TESTS=0
+        fi
         FIND=`${DOCKERBINARY} info 2>&1 | grep "^WARNING:" | cut -d " " -f 2- | sed 's/ /:space:/g'`
         if [ ! "${FIND}" = "" ]; then
             LogText "Result: found warning(s) in output"
@@ -104,7 +112,7 @@
                 LogText "Output: ${J}"
                 COUNT=$((COUNT + 1))
             done
-            Display --indent 8 --text "- Docker info output (warnings)" --result "${COUNT}" --color RED
+            Display --indent 8 --text "- Docker info output (warnings)" --result "${COUNT}" --color YELLOW
             ReportSuggestion "${TEST_NO}" "Run 'docker info' to see warnings applicable to Docker daemon"
             AddHP 3 4
           else
@@ -119,7 +127,7 @@
     # Test        : CONT-8106
     # Description : Checking Docker containers (basic stats)
     # Notes       : Hardening points are awarded, if there aren't a lot of stopped containers
-    if [ ! "${DOCKERBINARY}" = "" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
+    if [ ! "${DOCKERBINARY}" = "" -a ${RUN_DOCKER_TESTS} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
     Register --test-no CONT-8106 --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Gather basic stats from Docker"
     if [ ${SKIPTEST} -eq 0 ]; then
         Display --indent 6 --text "- Containers"
@@ -172,7 +180,7 @@
     # Test        : CONT-8108
     # Description : Checking Docker file permissions
     # Notes       : /var/run/docker.sock - Usually root as owner, docker as group - should not be world writable
-    if [ ! "${DOCKERBINARY}" = "" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
+    if [ ! "${DOCKERBINARY}" = "" -a ${RUN_DOCKER_TESTS} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
     Register --test-no CONT-8108 --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Check file permissions for Docker files"
     if [ ${SKIPTEST} -eq 0 ]; then
         NOT_WORLD_WRITABLE="/var/run/docker.sock"
author	Michael Boelen <michael.boelen@cisofy.com>	2016-07-30 14:23:27 +0300
committer	Michael Boelen <michael.boelen@cisofy.com>	2016-07-30 14:23:27 +0300
commit	a5baafca026bc87d31d54e77e13989c27a4aedd4 (patch)
tree	b8c9309889b48df843c3bb906200ac194a8a2275 /include/tests_containers
parent	a00f7130dd912dcfe603bec2627824a8dcd9aafe (diff)