more reference tags, fixes issue #268

2013-08-24 11:16:39 +02:00
parent 115241f16c
commit a032b7c134
17 changed files with 3731 additions and 1418 deletions
--- a/spec/lib/common/models/vulnerability_spec.rb
+++ b/spec/lib/common/models/vulnerability_spec.rb
@@ -5,10 +5,10 @@ require 'spec_helper'
 describe Vulnerability do

  describe '#new' do
-    subject(:vulnerability) { Vulnerability.new(title, type, references, modules, fixed_version) }
+    subject(:vulnerability) { Vulnerability.new(title, type, references, fixed_version) }
    let(:title)             { 'A vulnerability title' }
    let(:type)              { 'XSS' }
-    let(:references)        { %w{http://ref1.com http://ref2.com} }
+    let(:references)        { {:url => 'example.com', :metasploit => 'm', :exploitdb => 'e'} }

    context 'w/o metasploit and fixed version modules argument' do
      subject(:vulnerability) { Vulnerability.new(title, type, references) }
@@ -16,36 +16,15 @@ describe Vulnerability do
      its(:title)              { should be title }
      its(:references)         { should be references }
      its(:type)               { should be type }
-      its(:metasploit_modules) { should be_empty }
      its(:fixed_in)           { should be_empty }
-      its(:cve)                { should be_empty }
    end

-    context 'with metasploit modules argument' do
-      subject(:vulnerability) { Vulnerability.new(title, type, references, modules) }
-      let(:modules) { %w{exploit/some_exploit exploit/unix/anotherone } }
-
-      its(:metasploit_modules) { should be modules }
-      its(:fixed_in)           { should be_empty }
-      its(:cve)                { should be_empty }
-    end
-
-    context 'with metasploit modules and fixed version argument' do
-      let(:modules) { %w{exploit/some_exploit exploit/unix/anotherone } }
+    context 'with fixed version argument' do
      let(:fixed_version)  { '1.0' }
-
-      its(:metasploit_modules) { should be modules }
-      its(:fixed_in)           { should == '1.0' }
-      its(:cve)                { should be_empty }
-    end
-
-    context 'with cve argument' do
-      subject(:vulnerability) { Vulnerability.new(title, type, references, [], '', cve) }
-      let(:cve) { %w{2011-001 2011-002} }
-
-      its(:metasploit_modules) { should be_empty }
-      its(:fixed_in)           { should be_empty }
-      its(:cve)                { should be cve }
+			its(:title)              { should be title }
+			its(:references)         { should be references }
+			its(:type)               { should be type }
+			its(:fixed_in)           { should be fixed_version }
    end

  end
@@ -56,11 +35,18 @@ describe Vulnerability do
      xml(MODELS_FIXTURES + '/vulnerability/xml_node.xml').xpath('//vulnerability')
    }

+		expected_refs = {
+				:url=>['Ref 1', 'Ref 2'],
+				:cve=>['2011-001'],
+				:secunia=>['secunia'],
+				:osvdb=>['osvdb'],
+				:metasploit=>['exploit/ex1'],
+				:exploitdb=>['exploitdb']
+		}
+
    its(:title)              { should == 'Vuln Title' }
    its(:type)               { should == 'CSRF' }
-    its(:references)         { should == ['Ref 1', 'Ref 2'] }
-    its(:metasploit_modules) { should == %w{exploit/ex1} }
-    its(:cve)                { should == %w{2011-001} }
+    its(:references)         { should ==  expected_refs}
    its(:fixed_in)           { should == '1.0'}
  end