def testExamineEventAndCompileReport(self):
"""Tests the ExamineEvent and CompileReport functions."""
plugin = nsrlsvr.NsrlsvrAnalysisPlugin()
plugin.SetHost('localhost')
plugin.SetPort(9120)
plugin.SetLabel('nsrl_present')
storage_writer = self._AnalyzeEvents(self._TEST_EVENTS, plugin)
self.assertEqual(len(storage_writer.analysis_reports), 1)
self.assertEqual(storage_writer.number_of_event_tags, 1)
report = storage_writer.analysis_reports[0]
self.assertIsNotNone(report)
expected_text = (
'nsrlsvr hash tagging results\n'
'1 path specifications tagged with label: nsrl_present\n')
self.assertEqual(report.text, expected_text)
labels = []
for event_tag in storage_writer.GetEventTags():
labels.extend(event_tag.labels)
self.assertEqual(len(labels), 1)
expected_labels = ['nsrl_present']
self.assertEqual(labels, expected_labels)
def testExamineEventAndCompileReport(self):
"""Tests the ExamineEvent and CompileReport functions."""
events = []
for event_dictionary in self._TEST_EVENTS:
event = self._CreateTestEventObject(event_dictionary)
events.append(event)
plugin = nsrlsvr.NsrlsvrAnalysisPlugin()
plugin.SetHost(u'localhost')
plugin.SetPort(9120)
storage_writer = self._AnalyzeEvents(events, plugin)
self.assertEqual(len(storage_writer.analysis_reports), 1)
analysis_report = storage_writer.analysis_reports[0]
tags = analysis_report.GetTags()
self.assertEqual(len(tags), 1)
tag = tags[0]
self.assertEqual(tag.event_uuid, u'8')
expected_labels = [u'nsrl_present']
self.assertEqual(tag.labels, expected_labels)
def testExamineEventAndCompileReport(self):
"""Tests the ExamineEvent and CompileReport functions."""
events = []
for event_dictionary in self._TEST_EVENTS:
event = self._CreateTestEventObject(event_dictionary)
events.append(event)
plugin = nsrlsvr.NsrlsvrAnalysisPlugin()
plugin.SetHost(u'localhost')
plugin.SetPort(9120)
plugin.SetLabel(u'nsrl_present')
storage_writer = self._AnalyzeEvents(events, plugin)
self.assertEqual(len(storage_writer.analysis_reports), 1)
self.assertEqual(len(storage_writer.event_tags), 1)
report = storage_writer.analysis_reports[0]
self.assertIsNotNone(report)
expected_text = (
u'nsrlsvr hash tagging results\n'
u'1 path specifications tagged with label: nsrl_present\n')
self.assertEqual(report.text, expected_text)
labels = []
for event_tag in storage_writer.event_tags:
labels.extend(event_tag.labels)
self.assertEqual(len(labels), 1)
expected_labels = [u'nsrl_present']
self.assertEqual(labels, expected_labels)
def testExamineEventAndCompileReport(self):
"""Tests the ExamineEvent and CompileReport functions."""
plugin = nsrlsvr.NsrlsvrAnalysisPlugin()
plugin.SetHost('localhost')
plugin.SetPort(9120)
plugin.SetLabel('nsrl_present')
storage_writer = self._AnalyzeEvents(self._TEST_EVENTS, plugin)
number_of_reports = storage_writer.GetNumberOfAttributeContainers(
'analysis_report')
self.assertEqual(number_of_reports, 1)
analysis_report = storage_writer.GetAttributeContainerByIndex(
reports.AnalysisReport.CONTAINER_TYPE, 0)
self.assertIsNotNone(analysis_report)
self.assertEqual(analysis_report.plugin_name, 'nsrlsvr')
expected_analysis_counter = collections.Counter({'nsrl_present': 1})
self.assertEqual(analysis_report.analysis_counter,
expected_analysis_counter)
number_of_event_tags = storage_writer.GetNumberOfAttributeContainers(
'event_tag')
self.assertEqual(number_of_event_tags, 1)
labels = []
for event_tag in storage_writer.GetAttributeContainers(
events.EventTag.CONTAINER_TYPE):
labels.extend(event_tag.labels)
self.assertEqual(len(labels), 1)
expected_labels = ['nsrl_present']
self.assertEqual(labels, expected_labels)
def testParseOptions(self):
"""Tests the ParseOptions function."""
options = cli_test_lib.TestOptions()
analysis_plugin = nsrlsvr.NsrlsvrAnalysisPlugin()
with self.assertRaises(errors.BadConfigOption):
nsrlsvr_analysis.NsrlsvrAnalysisArgumentsHelper.ParseOptions(
options, analysis_plugin)
with self.assertRaises(errors.BadConfigObject):
nsrlsvr_analysis.NsrlsvrAnalysisArgumentsHelper.ParseOptions(
options, None)
def testParseOptions(self):
"""Tests the ParseOptions function."""
options = cli_test_lib.TestOptions()
analysis_plugin = nsrlsvr.NsrlsvrAnalysisPlugin()
options.nsrlsvr_hash = 'sha1'
options.nsrlsvr_host = '127.0.0.1'
options.nsrlsvr_port = 9120
options.nsrlsvr_label = 'NSRLSVR'
with self.assertRaises(errors.BadConfigOption):
nsrlsvr_analysis.NsrlsvrAnalysisArgumentsHelper.ParseOptions(
options, analysis_plugin)
self.assertEqual(analysis_plugin._analyzer._host, '127.0.0.1')
self.assertEqual(analysis_plugin._analyzer._port, 9120)
self.assertEqual(analysis_plugin._label, 'NSRLSVR')
with self.assertRaises(errors.BadConfigObject):
nsrlsvr_analysis.NsrlsvrAnalysisArgumentsHelper.ParseOptions(
options, None)
