2015-10-06 16:55:44 +00:00
|
|
|
# author: Christoph Hartmann
|
|
|
|
# author: Dominik Richter
|
2015-09-20 16:43:52 +00:00
|
|
|
|
|
|
|
require 'helper'
|
2015-10-26 03:04:18 +00:00
|
|
|
require 'inspec/resource'
|
2015-09-20 16:43:52 +00:00
|
|
|
|
2015-10-26 03:04:18 +00:00
|
|
|
describe 'Inspec::Resources::KernelModule' do
|
2017-07-05 09:41:44 +00:00
|
|
|
|
|
|
|
#kernel version
|
|
|
|
# 1
|
|
|
|
it 'Verify kernel_module version' do
|
|
|
|
resource = load_resource('kernel_module', 'dhcp')
|
|
|
|
_(resource.version).must_equal '3.2.2'
|
|
|
|
end
|
|
|
|
|
|
|
|
# loaded
|
|
|
|
# 2
|
|
|
|
it 'Verify kernel_module parsing `loaded` - true' do
|
2015-09-22 16:31:21 +00:00
|
|
|
resource = load_resource('kernel_module', 'bridge')
|
2015-09-21 11:02:17 +00:00
|
|
|
_(resource.loaded?).must_equal true
|
2015-09-20 16:43:52 +00:00
|
|
|
end
|
|
|
|
|
2017-07-05 09:41:44 +00:00
|
|
|
# 3
|
|
|
|
it 'Verify kernel_module parsing `loaded` - false' do
|
2015-09-22 16:31:21 +00:00
|
|
|
resource = load_resource('kernel_module', 'bridges')
|
2015-09-21 11:02:17 +00:00
|
|
|
_(resource.loaded?).must_equal false
|
|
|
|
end
|
2015-09-20 16:43:52 +00:00
|
|
|
|
2017-07-05 09:41:44 +00:00
|
|
|
#disabled
|
|
|
|
# 4
|
|
|
|
it 'Verify kernel_module parsing `disabled` - true ' do
|
|
|
|
resource = load_resource('kernel_module', 'nvidiafb')
|
|
|
|
_(resource.disabled?).must_equal true
|
|
|
|
end
|
|
|
|
|
|
|
|
# 5
|
|
|
|
it 'Verify kernel_module parsing `disabled` - false' do
|
|
|
|
resource = load_resource('kernel_module', 'bridge')
|
|
|
|
_(resource.disabled?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
#/bin/true
|
|
|
|
# 6
|
|
|
|
it 'Verify a kernel_module is disabled via /bin/true - true' do
|
|
|
|
resource = load_resource('kernel_module', 'nvidiafb')
|
|
|
|
_(resource.blacklisted?).must_equal true
|
|
|
|
end
|
|
|
|
|
|
|
|
# 7
|
|
|
|
it 'Verify a kernel_module is not disabled via /bin/true - false' do
|
|
|
|
resource = load_resource('kernel_module', 'ssftb')
|
|
|
|
_(resource.blacklisted?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
# 8
|
|
|
|
#/bin/false
|
|
|
|
it 'Verify a kernel_module is disabled via /bin/false - true' do
|
|
|
|
resource = load_resource('kernel_module', 'sstfb')
|
|
|
|
_(resource.blacklisted?).must_equal true
|
|
|
|
end
|
|
|
|
|
|
|
|
# 9
|
|
|
|
it 'Verify a kernel_module is not disabled via /bin/false - true ' do
|
|
|
|
resource = load_resource('kernel_module', 'bridge')
|
|
|
|
_(resource.blacklisted?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
# 10
|
|
|
|
# unlisted bin/true,/bin/false
|
|
|
|
it 'Verify an unlisted kernel_module is not disabled via /bin/true - false' do
|
|
|
|
resource = load_resource('kernel_module', 'fakemod')
|
|
|
|
_(resource.blacklisted?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
# 11
|
|
|
|
it 'Verify an unlisted kernel_module is not disabled via /bin/false - false' do
|
|
|
|
resource = load_resource('kernel_module', 'fakemod')
|
|
|
|
_(resource.blacklisted?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
# 12
|
|
|
|
#blacklisting
|
|
|
|
it 'Verify a kernel_module is blacklisted - true' do
|
|
|
|
resource = load_resource('kernel_module', 'floppy')
|
|
|
|
_(resource.blacklisted?).must_equal true
|
|
|
|
end
|
|
|
|
|
|
|
|
# 13
|
|
|
|
it 'Verify a kernel_module is not blacklisted - false' do
|
|
|
|
resource = load_resource('kernel_module', 'ssftb')
|
|
|
|
_(resource.blacklisted?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
# 14
|
|
|
|
#unlisted moduled
|
|
|
|
it 'Verify an unlisted kernel_module is not `loaded` - false' do
|
|
|
|
resource = load_resource('kernel_module', 'not_a_module')
|
2015-09-21 11:02:17 +00:00
|
|
|
_(resource.loaded?).must_equal false
|
2015-09-20 16:43:52 +00:00
|
|
|
end
|
2017-01-25 20:47:39 +00:00
|
|
|
|
2017-07-05 09:41:44 +00:00
|
|
|
# 15
|
|
|
|
it 'Verify an unlisted kernel_module is not `disabled` - false' do
|
|
|
|
resource = load_resource('kernel_module', 'not_a_module')
|
|
|
|
_(resource.disabled?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
# 16
|
|
|
|
it 'Verify an unlisted kernel_module is not blacklisted - false' do
|
|
|
|
resource = load_resource('kernel_module', 'not_a_module')
|
|
|
|
_(resource.blacklisted?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
# 17
|
|
|
|
it 'Verify an unlisted kernel_module is not disabled_via_bin_true - false' do
|
|
|
|
resource = load_resource('kernel_module', 'not_a_module')
|
|
|
|
_(resource.blacklisted?).must_equal false
|
|
|
|
end
|
|
|
|
|
|
|
|
# 18
|
|
|
|
it 'Verify an unlisted kernel_module is not disabled_via_bin_false - false' do
|
|
|
|
resource = load_resource('kernel_module', 'not_a_module')
|
|
|
|
_(resource.blacklisted?).must_equal false
|
2017-01-25 20:47:39 +00:00
|
|
|
end
|
2015-09-20 16:43:52 +00:00
|
|
|
end
|