mirror of
https://github.com/inspec/inspec
synced 2024-09-20 06:21:56 +00:00
33e148dae4
* Fix systemd path for Leap image
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Use vhef client version 17 as doocker cookbook do not support >= 18
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Add nftables resource
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Add nftables tests
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Add fixtures for nftables tests
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* enable nftables only when attr is true - then disable iptables
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* By default test iptables, not nftables
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Fix tests and lint errors
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Increase unit test coverage for nftables
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Do not use -nn nft option as behaviour changes based on nft version
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Base nft params identification on its version, not os version
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Make test more human friendly by reversing unless/if logic
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Update mocked cmds with nft params
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Fix quoting issue with rubocop
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Fix uninitiallized class vars
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Fix unit test by adding nft version mocking
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
* Clean nftables doc
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
---------
Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
109 lines
2.5 KiB
YAML
109 lines
2.5 KiB
YAML
---
|
|
driver:
|
|
name: dokken
|
|
chef_version: 17
|
|
privileged: true # because Docker and SystemD/Upstart
|
|
|
|
transport:
|
|
name: dokken
|
|
|
|
provisioner:
|
|
name: dokken
|
|
|
|
verifier:
|
|
name: inspec
|
|
sudo: true
|
|
|
|
# Test against every supported target platform for which we have a dokken image.
|
|
# If we don't have a dokken image, see kitchen.chef.yml for Vagrant-based testing.
|
|
# Try to keep this list up to date!
|
|
# Visit https://hub.docker.com/search and https://github.com/test-kitchen/dokken-images to search for new images
|
|
platforms:
|
|
|
|
- name: amazonlinux-2
|
|
driver:
|
|
image: dokken/amazonlinux-2
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: centos-7
|
|
driver:
|
|
image: dokken/centos-7
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
- name: centos-8
|
|
driver:
|
|
image: dokken/centos-8
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: debian-9
|
|
driver:
|
|
image: dokken/debian-9
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
- name: debian-10
|
|
driver:
|
|
image: dokken/debian-10
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
|
|
- name: fedora-latest
|
|
driver:
|
|
image: dokken/fedora-latest
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: oraclelinux-7
|
|
driver:
|
|
image: dokken/oraclelinux-7
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
- name: oraclelinux-8
|
|
driver:
|
|
image: dokken/oraclelinux-8
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: opensuse-leap
|
|
driver:
|
|
image: dokken/opensuse-leap-15
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: ubuntu-16.04
|
|
driver:
|
|
image: dokken/ubuntu-16.04
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
|
|
- name: ubuntu-18.04
|
|
driver:
|
|
image: dokken/ubuntu-18.04
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
|
|
- name: ubuntu-20.04
|
|
driver:
|
|
image: dokken/ubuntu-20.04
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
|
|
suites:
|
|
- name: resources
|
|
run_list:
|
|
- recipe[os_prepare]
|
|
verifier:
|
|
inspec_tests:
|
|
# TODO - split these out into core, database, unix, and windows resources
|
|
- test/kitchen/policies/default
|
|
attributes:
|
|
osprepare:
|
|
docker: true
|
|
application: false
|
|
|
|
# These are planned for the future
|
|
# Suites which exercise resources that exercise databases
|
|
# - name: resources-database
|
|
# Unix-only resources
|
|
# - name: resources-unix
|
|
# Windows-only resources
|
|
# - name: resources-windows
|