mirror of
https://github.com/inspec/inspec
synced 2024-11-25 06:00:29 +00:00
33e148dae4
* Fix systemd path for Leap image Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Use vhef client version 17 as doocker cookbook do not support >= 18 Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Add nftables resource Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Add nftables tests Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Add fixtures for nftables tests Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * enable nftables only when attr is true - then disable iptables Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * By default test iptables, not nftables Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Fix tests and lint errors Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Increase unit test coverage for nftables Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Do not use -nn nft option as behaviour changes based on nft version Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Base nft params identification on its version, not os version Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Make test more human friendly by reversing unless/if logic Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Update mocked cmds with nft params Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Fix quoting issue with rubocop Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Fix uninitiallized class vars Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Fix unit test by adding nft version mocking Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> * Clean nftables doc Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com> --------- Signed-off-by: Jeremy JACQUE <jeremy.jacque@algolia.com>
109 lines
2.5 KiB
YAML
109 lines
2.5 KiB
YAML
---
|
|
driver:
|
|
name: dokken
|
|
chef_version: 17
|
|
privileged: true # because Docker and SystemD/Upstart
|
|
|
|
transport:
|
|
name: dokken
|
|
|
|
provisioner:
|
|
name: dokken
|
|
|
|
verifier:
|
|
name: inspec
|
|
sudo: true
|
|
|
|
# Test against every supported target platform for which we have a dokken image.
|
|
# If we don't have a dokken image, see kitchen.chef.yml for Vagrant-based testing.
|
|
# Try to keep this list up to date!
|
|
# Visit https://hub.docker.com/search and https://github.com/test-kitchen/dokken-images to search for new images
|
|
platforms:
|
|
|
|
- name: amazonlinux-2
|
|
driver:
|
|
image: dokken/amazonlinux-2
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: centos-7
|
|
driver:
|
|
image: dokken/centos-7
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
- name: centos-8
|
|
driver:
|
|
image: dokken/centos-8
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: debian-9
|
|
driver:
|
|
image: dokken/debian-9
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
- name: debian-10
|
|
driver:
|
|
image: dokken/debian-10
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
|
|
- name: fedora-latest
|
|
driver:
|
|
image: dokken/fedora-latest
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: oraclelinux-7
|
|
driver:
|
|
image: dokken/oraclelinux-7
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
- name: oraclelinux-8
|
|
driver:
|
|
image: dokken/oraclelinux-8
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: opensuse-leap
|
|
driver:
|
|
image: dokken/opensuse-leap-15
|
|
pid_one_command: /usr/lib/systemd/systemd
|
|
|
|
- name: ubuntu-16.04
|
|
driver:
|
|
image: dokken/ubuntu-16.04
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
|
|
- name: ubuntu-18.04
|
|
driver:
|
|
image: dokken/ubuntu-18.04
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
|
|
- name: ubuntu-20.04
|
|
driver:
|
|
image: dokken/ubuntu-20.04
|
|
pid_one_command: /bin/systemd
|
|
intermediate_instructions:
|
|
- RUN /usr/bin/apt-get update -y
|
|
|
|
suites:
|
|
- name: resources
|
|
run_list:
|
|
- recipe[os_prepare]
|
|
verifier:
|
|
inspec_tests:
|
|
# TODO - split these out into core, database, unix, and windows resources
|
|
- test/kitchen/policies/default
|
|
attributes:
|
|
osprepare:
|
|
docker: true
|
|
application: false
|
|
|
|
# These are planned for the future
|
|
# Suites which exercise resources that exercise databases
|
|
# - name: resources-database
|
|
# Unix-only resources
|
|
# - name: resources-unix
|
|
# Windows-only resources
|
|
# - name: resources-windows
|