mirror of
https://github.com/valitydev/osquery-1.git
synced 2024-11-07 09:58:54 +00:00
49 lines
1.4 KiB
C++
49 lines
1.4 KiB
C++
|
|
/**
|
|
* Copyright (c) 2014-present, Facebook, Inc.
|
|
* All rights reserved.
|
|
*
|
|
* This source code is licensed under both the Apache 2.0 license (found in the
|
|
* LICENSE file in the root directory of this source tree) and the GPLv2 (found
|
|
* in the COPYING file in the root directory of this source tree).
|
|
* You may select, at your option, one of the above-listed licenses.
|
|
*/
|
|
|
|
// Sanity check integration test for windows_events
|
|
// Spec file: specs/windows/windows_events.table
|
|
|
|
#include <osquery/tests/integration/tables/helper.h>
|
|
|
|
namespace osquery {
|
|
|
|
class windowsEvents : public IntegrationTableTest {};
|
|
|
|
TEST_F(windowsEvents, test_sanity) {
|
|
// 1. Query data
|
|
// QueryData data = execute_query("select * from windows_events");
|
|
// 2. Check size before validation
|
|
// ASSERT_GE(data.size(), 0ul);
|
|
// ASSERT_EQ(data.size(), 1ul);
|
|
// ASSERT_EQ(data.size(), 0ul);
|
|
// 3. Build validation map
|
|
// See IntegrationTableTest.cpp for avaialbe flags
|
|
// Or use custom DataCheck object
|
|
// ValidatatioMap row_map = {
|
|
// {"time", IntType}
|
|
// {"datetime", NormalType}
|
|
// {"source", NormalType}
|
|
// {"provider_name", NormalType}
|
|
// {"provider_guid", NormalType}
|
|
// {"eventid", IntType}
|
|
// {"task", IntType}
|
|
// {"level", IntType}
|
|
// {"keywords", IntType}
|
|
// {"data", NormalType}
|
|
// {"eid", NormalType}
|
|
//}
|
|
// 4. Perform validation
|
|
// validate_rows(data, row_map);
|
|
}
|
|
|
|
} // namespace osquery
|