Updated the condition to only verify the amazon linux os.

Signed-off-by: Vasu1105 <vasundhara.jagdale@chef.io>
2025-02-16 22:18:38 +00:00 · 2022-02-08 14:04:22 +05:30 · 2022-02-08 14:04:22 +05:30 · 0d7f2c11fd
commit 0d7f2c11fd
parent c989e512ca
3 changed files with 9 additions and 3 deletions
--- a/lib/inspec/resources/selinux.rb
+++ b/lib/inspec/resources/selinux.rb
@ -84,9 +84,8 @@ module Inspec::Resources

    def initialize(selinux_path = "/etc/selinux/config")
      @path = selinux_path
-
-      if inspec.os.redhat? || inspec.os.name == "fedora"
-        lcmd = "/sbin/sestatus"
+      if inspec.os.redhat? && inspec.os.name == "amazon"
+        lcmd = "/usr/sbin/sestatus"
      else
        lcmd = "sestatus"
      end
--- a/test/helpers/mock_loader.rb
+++ b/test/helpers/mock_loader.rb
@ -586,6 +586,7 @@ class MockLoader

      # filesystem command
      "2e7e0d4546342cee799748ec7e2b1c87ca00afbe590fa422a7c27371eefa88f0" => cmd.call("get-wmiobject-filesystem"),
+      "/usr/sbin/sestatus" => cmd.call("sestatus"),
      "sestatus" => cmd.call("sestatus"),
      "semodule -lfull" => cmd.call("semodule-lfull"),
      "semanage boolean -l -n" => cmd.call("semanage-boolean"),
--- a/test/unit/resources/selinux_test.rb
+++ b/test/unit/resources/selinux_test.rb
@ -45,6 +45,12 @@ describe "Inspec::Resources::Selinux" do
    _(resource.enforcing?).must_equal false
  end

+  it "verify selinux on Amazon Linux" do
+    resource = MockLoader.new(:amazon2).load_resource("selinux")
+    _(resource.installed?).must_equal false
+    _(resource.enforcing?).must_equal true
+  end
+
  it "verify selinux.modules is exist" do
    _(resource.modules.exist?).must_equal true
  end