Mirrors/inspec
2
0
Fork 0
mirror of https://github.com/inspec/inspec synced 2024-11-14 17:07:09 +00:00
Code Issues Projects Releases Packages Wiki Activity
inspec/test/unit/resources/selinux_test.rb
Vasu1105 0d7f2c11fd Updated the condition to only verify the amazon linux os. 
Signed-off-by: Vasu1105 <vasundhara.jagdale@chef.io>
2022-02-08 14:04:22 +05:30

74 lines
2.2 KiB
Ruby
Raw Blame History

require "helper"
require "inspec/resource"
require "inspec/resources/selinux"
describe "Inspec::Resources::Selinux" do
let(:resource) { load_resource("selinux") }
it "verify selinux is installed" do
resource = load_resource("selinux", "/etc/selinux/selinux_conf")
_(resource.installed?).must_equal true
end
it "verify selinux state - enforcing" do
_(resource.enforcing?).must_equal true
end
it "verify selinux state - permissive" do
_(resource.permissive?).must_equal false
end
it "verify selinux disabled" do
_(resource.disabled?).must_equal false
end
it "verify selinux policy type is targeted" do
_(resource.policy).must_equal "targeted"
end
it "verify selinux on linux" do
resource = MockLoader.new(:linux).load_resource("selinux")
_(resource.enforcing?).must_equal true
_(resource.permissive?).must_equal false
_(resource.disabled?).must_equal false
end
it "verify selinux on windows" do
resource = MockLoader.new(:windows).load_resource("selinux")
_(resource.installed?).must_equal false
_(resource.enforcing?).must_equal false
end
it "verify selinux on freebsd" do
resource = MockLoader.new(:freebsd12).load_resource("selinux")
_(resource.installed?).must_equal false
_(resource.enforcing?).must_equal false
end
it "verify selinux on Amazon Linux" do
resource = MockLoader.new(:amazon2).load_resource("selinux")
_(resource.installed?).must_equal false
_(resource.enforcing?).must_equal true
end
it "verify selinux.modules is exist" do
_(resource.modules.exist?).must_equal true
end
it "verify selinux.modules parsing" do
_(resource.modules.names).must_equal %w{foo bar baz}
_(resource.modules.states).must_equal %w{enabled disabled enabled}
_(resource.modules.status).must_equal %w{installed installed installed}
_(resource.modules.priorities).must_equal %w{100 100 100}
end
it "verify selinux.booleans is exist" do
_(resource.booleans.exist?).must_equal true
end
it "verify selinux.booleans parsing" do
_(resource.booleans.names).must_equal %w{xen_use_nfs xend_run_blktap zebra_write_config}
_(resource.booleans.states).must_equal %w{off on off}
_(resource.booleans.defaults).must_equal %w{off on off}
end
end
Reference in a new issue View git blame Copy permalink