serverspec 1.16.0 → 2.0.0.beta1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +1 -2
- data/Rakefile +20 -25
- data/lib/serverspec.rb +0 -3
- data/lib/serverspec/helper/os.rb +0 -3
- data/lib/serverspec/helper/type.rb +3 -3
- data/lib/serverspec/matchers.rb +1 -7
- data/lib/serverspec/matchers/have_rule.rb +1 -1
- data/lib/serverspec/setup.rb +12 -11
- data/lib/serverspec/type/file.rb +0 -15
- data/lib/serverspec/type/iis_app_pool.rb +0 -28
- data/lib/serverspec/type/iis_website.rb +0 -12
- data/lib/serverspec/type/interface.rb +0 -3
- data/lib/serverspec/type/user.rb +0 -4
- data/lib/serverspec/version.rb +1 -1
- data/serverspec.gemspec +4 -3
- data/wercker.yml +9 -9
- metadata +36 -471
- data/lib/serverspec/matchers/belong_to_primary_group.rb +0 -5
- data/lib/serverspec/matchers/have_site_application.rb +0 -18
- data/lib/serverspec/matchers/have_site_bindings.rb +0 -22
- data/lib/serverspec/matchers/have_virtual_dir.rb +0 -14
- data/lib/serverspec/type/ip6tables.rb +0 -13
- data/lib/serverspec/type/ppa.rb +0 -13
- data/lib/serverspec/type/windows_scheduled_task.rb +0 -9
- data/spec/aix/command_spec.rb +0 -65
- data/spec/aix/cron_spec.rb +0 -21
- data/spec/aix/default_gateway_spec.rb +0 -16
- data/spec/aix/file_spec.rb +0 -404
- data/spec/aix/group_spec.rb +0 -21
- data/spec/aix/host_spec.rb +0 -58
- data/spec/aix/package_spec.rb +0 -100
- data/spec/aix/php_config_spec.rb +0 -36
- data/spec/aix/port_spec.rb +0 -30
- data/spec/aix/process_spec.rb +0 -29
- data/spec/aix/routing_table_spec.rb +0 -120
- data/spec/aix/service_spec.rb +0 -93
- data/spec/aix/user_spec.rb +0 -57
- data/spec/arch/file_spec.rb +0 -413
- data/spec/arch/package_spec.rb +0 -100
- data/spec/arch/service_spec.rb +0 -84
- data/spec/backend/cmd/configuration_spec.rb +0 -9
- data/spec/backend/exec/configuration_spec.rb +0 -61
- data/spec/backend/powershell/script_helper_spec.rb +0 -105
- data/spec/backend/ssh/configuration_spec.rb +0 -184
- data/spec/backend/winrm/configuration_spec.rb +0 -9
- data/spec/darwin/command_spec.rb +0 -65
- data/spec/darwin/cron_spec.rb +0 -21
- data/spec/darwin/default_gateway_spec.rb +0 -16
- data/spec/darwin/file_spec.rb +0 -413
- data/spec/darwin/group_spec.rb +0 -21
- data/spec/darwin/host_spec.rb +0 -58
- data/spec/darwin/mail_alias_spec.rb +0 -12
- data/spec/darwin/package_spec.rb +0 -82
- data/spec/darwin/php_config_spec.rb +0 -36
- data/spec/darwin/port_spec.rb +0 -30
- data/spec/darwin/process_spec.rb +0 -29
- data/spec/darwin/routing_table_spec.rb +0 -120
- data/spec/darwin/service_spec.rb +0 -91
- data/spec/darwin/user_spec.rb +0 -57
- data/spec/debian/cgroup_spec.rb +0 -14
- data/spec/debian/command_spec.rb +0 -65
- data/spec/debian/cron_spec.rb +0 -21
- data/spec/debian/default_gateway_spec.rb +0 -16
- data/spec/debian/file_spec.rb +0 -413
- data/spec/debian/group_spec.rb +0 -22
- data/spec/debian/host_spec.rb +0 -58
- data/spec/debian/interface_spec.rb +0 -24
- data/spec/debian/ip6tables_spec.rb +0 -21
- data/spec/debian/iptables_spec.rb +0 -21
- data/spec/debian/kernel_module_spec.rb +0 -12
- data/spec/debian/linux_kernel_parameter_spec.rb +0 -36
- data/spec/debian/lxc_spec.rb +0 -22
- data/spec/debian/mail_alias_spec.rb +0 -12
- data/spec/debian/package_spec.rb +0 -130
- data/spec/debian/php_config_spec.rb +0 -36
- data/spec/debian/port_spec.rb +0 -40
- data/spec/debian/process_spec.rb +0 -29
- data/spec/debian/routing_table_spec.rb +0 -120
- data/spec/debian/selinux_spec.rb +0 -18
- data/spec/debian/service_spec.rb +0 -93
- data/spec/debian/user_spec.rb +0 -57
- data/spec/debian/zfs_spec.rb +0 -18
- data/spec/fedora/cgroup_spec.rb +0 -14
- data/spec/fedora/command_spec.rb +0 -67
- data/spec/fedora/cron_spec.rb +0 -21
- data/spec/fedora/default_gateway_spec.rb +0 -16
- data/spec/fedora/file_spec.rb +0 -413
- data/spec/fedora/group_spec.rb +0 -21
- data/spec/fedora/host_spec.rb +0 -58
- data/spec/fedora/interface_spec.rb +0 -24
- data/spec/fedora/ip6tables_spec.rb +0 -21
- data/spec/fedora/iptables_spec.rb +0 -21
- data/spec/fedora/kernel_module_spec.rb +0 -12
- data/spec/fedora/linux_kernel_parameter_spec.rb +0 -36
- data/spec/fedora/lxc_spec.rb +0 -22
- data/spec/fedora/mail_alias_spec.rb +0 -12
- data/spec/fedora/package_spec.rb +0 -118
- data/spec/fedora/php_config_spec.rb +0 -36
- data/spec/fedora/port_spec.rb +0 -30
- data/spec/fedora/process_spec.rb +0 -41
- data/spec/fedora/routing_table_spec.rb +0 -120
- data/spec/fedora/selinux_spec.rb +0 -18
- data/spec/fedora/user_spec.rb +0 -57
- data/spec/fedora/yumrepo_spec.rb +0 -25
- data/spec/fedora/zfs_spec.rb +0 -18
- data/spec/freebsd/command_spec.rb +0 -65
- data/spec/freebsd/cron_spec.rb +0 -21
- data/spec/freebsd/default_gateway_spec.rb +0 -16
- data/spec/freebsd/file_spec.rb +0 -385
- data/spec/freebsd/group_spec.rb +0 -21
- data/spec/freebsd/host_spec.rb +0 -58
- data/spec/freebsd/package_spec.rb +0 -96
- data/spec/freebsd/php_config_spec.rb +0 -36
- data/spec/freebsd/port_spec.rb +0 -30
- data/spec/freebsd/process_spec.rb +0 -29
- data/spec/freebsd/routing_table_spec.rb +0 -120
- data/spec/freebsd/service_spec.rb +0 -93
- data/spec/freebsd/user_spec.rb +0 -57
- data/spec/freebsd10/package_spec.rb +0 -13
- data/spec/gentoo/cgroup_spec.rb +0 -14
- data/spec/gentoo/command_spec.rb +0 -65
- data/spec/gentoo/cron_spec.rb +0 -21
- data/spec/gentoo/default_gateway_spec.rb +0 -16
- data/spec/gentoo/file_spec.rb +0 -413
- data/spec/gentoo/group_spec.rb +0 -21
- data/spec/gentoo/host_spec.rb +0 -58
- data/spec/gentoo/interface_spec.rb +0 -24
- data/spec/gentoo/ip6tables_spec.rb +0 -21
- data/spec/gentoo/iptables_spec.rb +0 -21
- data/spec/gentoo/kernel_module_spec.rb +0 -12
- data/spec/gentoo/linux_kernel_parameter_spec.rb +0 -36
- data/spec/gentoo/lxc_spec.rb +0 -22
- data/spec/gentoo/mail_alias_spec.rb +0 -12
- data/spec/gentoo/package_spec.rb +0 -91
- data/spec/gentoo/php_config_spec.rb +0 -36
- data/spec/gentoo/port_spec.rb +0 -30
- data/spec/gentoo/process_spec.rb +0 -29
- data/spec/gentoo/routing_table_spec.rb +0 -120
- data/spec/gentoo/selinux_spec.rb +0 -18
- data/spec/gentoo/service_spec.rb +0 -93
- data/spec/gentoo/user_spec.rb +0 -57
- data/spec/gentoo/zfs_spec.rb +0 -18
- data/spec/nixos/file_spec.rb +0 -421
- data/spec/nixos/package_spec.rb +0 -109
- data/spec/nixos/service_spec.rb +0 -40
- data/spec/plamo/cgroup_spec.rb +0 -14
- data/spec/plamo/command_spec.rb +0 -65
- data/spec/plamo/cron_spec.rb +0 -21
- data/spec/plamo/default_gateway_spec.rb +0 -16
- data/spec/plamo/file_spec.rb +0 -413
- data/spec/plamo/group_spec.rb +0 -22
- data/spec/plamo/host_spec.rb +0 -58
- data/spec/plamo/interface_spec.rb +0 -24
- data/spec/plamo/ip6tables_spec.rb +0 -21
- data/spec/plamo/iptables_spec.rb +0 -21
- data/spec/plamo/kernel_module_spec.rb +0 -12
- data/spec/plamo/linux_kernel_parameter_spec.rb +0 -36
- data/spec/plamo/lxc_spec.rb +0 -22
- data/spec/plamo/mail_alias_spec.rb +0 -12
- data/spec/plamo/package_spec.rb +0 -100
- data/spec/plamo/php_config_spec.rb +0 -36
- data/spec/plamo/port_spec.rb +0 -30
- data/spec/plamo/routing_table_spec.rb +0 -120
- data/spec/plamo/selinux_spec.rb +0 -18
- data/spec/plamo/service_spec.rb +0 -84
- data/spec/plamo/user_spec.rb +0 -57
- data/spec/plamo/zfs_spec.rb +0 -18
- data/spec/redhat/cgroup_spec.rb +0 -14
- data/spec/redhat/command_spec.rb +0 -67
- data/spec/redhat/cron_spec.rb +0 -21
- data/spec/redhat/default_gateway_spec.rb +0 -16
- data/spec/redhat/file_spec.rb +0 -418
- data/spec/redhat/group_spec.rb +0 -21
- data/spec/redhat/host_spec.rb +0 -64
- data/spec/redhat/interface_spec.rb +0 -24
- data/spec/redhat/ip6tables_spec.rb +0 -21
- data/spec/redhat/iptables_spec.rb +0 -21
- data/spec/redhat/kernel_module_spec.rb +0 -12
- data/spec/redhat/linux_kernel_parameter_spec.rb +0 -36
- data/spec/redhat/lxc_spec.rb +0 -22
- data/spec/redhat/mail_alias_spec.rb +0 -12
- data/spec/redhat/package_spec.rb +0 -118
- data/spec/redhat/php_config_spec.rb +0 -36
- data/spec/redhat/port_spec.rb +0 -30
- data/spec/redhat/process_spec.rb +0 -41
- data/spec/redhat/routing_table_spec.rb +0 -120
- data/spec/redhat/selinux_spec.rb +0 -18
- data/spec/redhat/service_spec.rb +0 -93
- data/spec/redhat/user_spec.rb +0 -57
- data/spec/redhat/yumrepo_spec.rb +0 -25
- data/spec/redhat/zfs_spec.rb +0 -18
- data/spec/redhat7/service_spec.rb +0 -21
- data/spec/smartos/mail_alias_spec.rb +0 -12
- data/spec/smartos/process_spec.rb +0 -29
- data/spec/solaris/command_spec.rb +0 -65
- data/spec/solaris/cron_spec.rb +0 -21
- data/spec/solaris/default_gateway_spec.rb +0 -16
- data/spec/solaris/file_spec.rb +0 -413
- data/spec/solaris/group_spec.rb +0 -21
- data/spec/solaris/host_spec.rb +0 -58
- data/spec/solaris/ipfilter_spec.rb +0 -8
- data/spec/solaris/ipnat_spec.rb +0 -8
- data/spec/solaris/mail_alias_spec.rb +0 -12
- data/spec/solaris/package_spec.rb +0 -100
- data/spec/solaris/php_config_spec.rb +0 -36
- data/spec/solaris/port_spec.rb +0 -30
- data/spec/solaris/process_spec.rb +0 -29
- data/spec/solaris/routing_table_spec.rb +0 -120
- data/spec/solaris/service_spec.rb +0 -93
- data/spec/solaris/svcprop_spec.rb +0 -13
- data/spec/solaris/user_spec.rb +0 -57
- data/spec/solaris/zfs_spec.rb +0 -18
- data/spec/solaris10/file_spec.rb +0 -395
- data/spec/solaris10/group_spec.rb +0 -21
- data/spec/solaris10/mail_alias_spec.rb +0 -12
- data/spec/solaris10/package_spec.rb +0 -85
- data/spec/solaris10/php_config_spec.rb +0 -36
- data/spec/solaris10/user_spec.rb +0 -57
- data/spec/solaris11/command_spec.rb +0 -65
- data/spec/solaris11/cron_spec.rb +0 -21
- data/spec/solaris11/default_gateway_spec.rb +0 -16
- data/spec/solaris11/file_spec.rb +0 -413
- data/spec/solaris11/group_spec.rb +0 -21
- data/spec/solaris11/host_spec.rb +0 -58
- data/spec/solaris11/ipfilter_spec.rb +0 -8
- data/spec/solaris11/ipnat_spec.rb +0 -8
- data/spec/solaris11/mail_alias_spec.rb +0 -12
- data/spec/solaris11/package_spec.rb +0 -100
- data/spec/solaris11/php_config_spec.rb +0 -36
- data/spec/solaris11/port_spec.rb +0 -12
- data/spec/solaris11/routing_table_spec.rb +0 -120
- data/spec/solaris11/service_spec.rb +0 -93
- data/spec/solaris11/svcprop_spec.rb +0 -13
- data/spec/solaris11/user_spec.rb +0 -57
- data/spec/solaris11/zfs_spec.rb +0 -18
- data/spec/support/powershell_command_runner.rb +0 -52
- data/spec/ubuntu/ppa_spec.rb +0 -25
- data/spec/windows/command_spec.rb +0 -67
- data/spec/windows/file_spec.rb +0 -161
- data/spec/windows/group_spec.rb +0 -28
- data/spec/windows/port_spec.rb +0 -31
- data/spec/windows/service_spec.rb +0 -31
- data/spec/windows/user_spec.rb +0 -44
- data/spec/windows/windows_hot_fix_spec.rb +0 -25
- data/spec/windows/windows_registry_key_spec.rb +0 -66
data/spec/darwin/command_spec.rb
DELETED
@@ -1,65 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
include SpecInfra::Helper::Darwin
|
4
|
-
|
5
|
-
describe command('cat /etc/resolv.conf') do
|
6
|
-
let(:stdout) { "nameserver 127.0.0.1\r\n" }
|
7
|
-
it { should return_stdout("nameserver 127.0.0.1") }
|
8
|
-
its(:command) { should eq 'cat /etc/resolv.conf' }
|
9
|
-
end
|
10
|
-
|
11
|
-
describe 'complete matching of stdout' do
|
12
|
-
context command('cat /etc/resolv.conf') do
|
13
|
-
let(:stdout) { "foocontent-should-be-includedbar\r\n" }
|
14
|
-
it { should_not return_stdout('content-should-be-included') }
|
15
|
-
end
|
16
|
-
end
|
17
|
-
|
18
|
-
describe 'regexp matching of stdout' do
|
19
|
-
context command('cat /etc/resolv.conf') do
|
20
|
-
let(:stdout) { "nameserver 127.0.0.1\r\n" }
|
21
|
-
it { should return_stdout(/127\.0\.0\.1/) }
|
22
|
-
end
|
23
|
-
end
|
24
|
-
|
25
|
-
describe command('cat /etc/resolv.conf') do
|
26
|
-
let(:stderr) { "No such file or directory\r\n" }
|
27
|
-
it { should return_stderr("No such file or directory") }
|
28
|
-
its(:command) { should eq 'cat /etc/resolv.conf' }
|
29
|
-
end
|
30
|
-
|
31
|
-
describe 'complete matching of stderr' do
|
32
|
-
context command('cat /etc/resolv.conf') do
|
33
|
-
let(:stderr) { "No such file or directory\r\n" }
|
34
|
-
it { should_not return_stderr('file') }
|
35
|
-
end
|
36
|
-
end
|
37
|
-
|
38
|
-
describe 'regexp matching of stderr' do
|
39
|
-
context command('cat /etc/resolv.conf') do
|
40
|
-
let(:stderr) { "No such file or directory\r\n" }
|
41
|
-
it { should return_stderr(/file/) }
|
42
|
-
end
|
43
|
-
end
|
44
|
-
|
45
|
-
describe command('cat /etc/resolv.conf') do
|
46
|
-
it { should return_exit_status 0 }
|
47
|
-
its(:command) { should eq 'cat /etc/resolv.conf' }
|
48
|
-
end
|
49
|
-
|
50
|
-
describe command('ls -al /') do
|
51
|
-
let(:stdout) { <<EOF
|
52
|
-
total 88
|
53
|
-
drwxr-xr-x 23 root root 4096 Oct 10 17:19 .
|
54
|
-
drwxr-xr-x 23 root root 4096 Oct 10 17:19 ..
|
55
|
-
drwxr-xr-x 2 root root 4096 Sep 11 16:43 bin
|
56
|
-
drwxr-xr-x 3 root root 4096 Sep 23 18:14 boot
|
57
|
-
drwxr-xr-x 14 root root 4260 Oct 14 16:14 dev
|
58
|
-
drwxr-xr-x 104 root root 4096 Oct 14 17:34 etc
|
59
|
-
drwxr-xr-x 8 root root 4096 Oct 1 15:09 home
|
60
|
-
EOF
|
61
|
-
}
|
62
|
-
|
63
|
-
its(:stdout) { should match /bin/ }
|
64
|
-
its(:stdout) { should eq stdout }
|
65
|
-
end
|
data/spec/darwin/cron_spec.rb
DELETED
@@ -1,21 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
include SpecInfra::Helper::Darwin
|
4
|
-
|
5
|
-
describe cron do
|
6
|
-
it { should have_entry '* * * * * /usr/local/bin/batch.sh' }
|
7
|
-
its(:command) { should eq 'crontab -l | grep -v "#" -- | grep -- \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ /usr/local/bin/batch.sh' }
|
8
|
-
end
|
9
|
-
|
10
|
-
describe cron do
|
11
|
-
it { should_not have_entry 'invalid entry' }
|
12
|
-
end
|
13
|
-
|
14
|
-
describe cron do
|
15
|
-
it { should have_entry('* * * * * /usr/local/bin/batch.sh').with_user('root') }
|
16
|
-
its(:command) { should eq 'crontab -u root -l | grep -v "#" | grep -- \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ /usr/local/bin/batch.sh' }
|
17
|
-
end
|
18
|
-
|
19
|
-
describe cron do
|
20
|
-
it { should_not have_entry('* * * * * /usr/local/bin/batch.sh').with_user('invalid-user') }
|
21
|
-
end
|
@@ -1,16 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
include SpecInfra::Helper::Darwin
|
4
|
-
|
5
|
-
describe default_gateway do
|
6
|
-
let(:stdout) { "default via 192.168.1.1 dev eth1 \r\n" }
|
7
|
-
|
8
|
-
its(:ipaddress) { should eq '192.168.1.1' }
|
9
|
-
its(:command) { should eq "ip route | grep -E '^default |^default '" }
|
10
|
-
|
11
|
-
its(:interface) { should eq 'eth1' }
|
12
|
-
its(:command) { should eq "ip route | grep -E '^default |^default '" }
|
13
|
-
|
14
|
-
its(:ipaddress) { should_not eq '192.168.1.2' }
|
15
|
-
its(:interface) { should_not eq 'eth0' }
|
16
|
-
end
|
data/spec/darwin/file_spec.rb
DELETED
@@ -1,413 +0,0 @@
|
|
1
|
-
require 'spec_helper'
|
2
|
-
|
3
|
-
include SpecInfra::Helper::Darwin
|
4
|
-
|
5
|
-
describe file('/etc/ssh/sshd_config') do
|
6
|
-
it { should be_file }
|
7
|
-
its(:command) { should eq "test -f /etc/ssh/sshd_config" }
|
8
|
-
end
|
9
|
-
|
10
|
-
describe file('/etc/invalid_file') do
|
11
|
-
it { should_not be_file }
|
12
|
-
end
|
13
|
-
|
14
|
-
describe file('/etc/ssh') do
|
15
|
-
it { should be_directory }
|
16
|
-
its(:command) { should eq "test -d /etc/ssh" }
|
17
|
-
end
|
18
|
-
|
19
|
-
describe file('/etc/invalid_directory') do
|
20
|
-
it { should_not be_directory }
|
21
|
-
end
|
22
|
-
|
23
|
-
describe file('/var/run/unicorn.sock') do
|
24
|
-
it { should be_socket }
|
25
|
-
its(:command) { should eq "test -S /var/run/unicorn.sock" }
|
26
|
-
end
|
27
|
-
|
28
|
-
describe file('/etc/invalid_socket') do
|
29
|
-
it { should_not be_socket }
|
30
|
-
end
|
31
|
-
|
32
|
-
describe file('/etc/ssh/sshd_config') do
|
33
|
-
it { should contain 'This is the sshd server system-wide configuration file' }
|
34
|
-
its(:command) { should eq "grep -q -- This\\ is\\ the\\ sshd\\ server\\ system-wide\\ configuration\\ file /etc/ssh/sshd_config || grep -qF -- This\\ is\\ the\\ sshd\\ server\\ system-wide\\ configuration\\ file /etc/ssh/sshd_config" }
|
35
|
-
end
|
36
|
-
|
37
|
-
describe file('/etc/ssh/sshd_config') do
|
38
|
-
it { should contain /^This is the sshd server system-wide configuration file/ }
|
39
|
-
its(:command) { should eq "grep -q -- \\^This\\ is\\ the\\ sshd\\ server\\ system-wide\\ configuration\\ file /etc/ssh/sshd_config || grep -qF -- \\^This\\ is\\ the\\ sshd\\ server\\ system-wide\\ configuration\\ file /etc/ssh/sshd_config"}
|
40
|
-
end
|
41
|
-
|
42
|
-
describe file('/etc/ssh/sshd_config') do
|
43
|
-
it { should_not contain 'This is invalid text!!' }
|
44
|
-
end
|
45
|
-
|
46
|
-
describe file('Gemfile') do
|
47
|
-
it { should contain('rspec').from(/^group :test do/).to(/^end/) }
|
48
|
-
its(:command) { should eq "sed -n /\\^group\\ :test\\ do/,/\\^end/p Gemfile | grep -q -- rspec - || sed -n /\\^group\\ :test\\ do/,/\\^end/p Gemfile | grep -qF -- rspec -" }
|
49
|
-
end
|
50
|
-
|
51
|
-
describe file('/etc/ssh/sshd_config') do
|
52
|
-
it { should_not contain('This is invalid text!!').from(/^group :test do/).to(/^end/) }
|
53
|
-
end
|
54
|
-
|
55
|
-
describe file('Gemfile') do
|
56
|
-
it { should contain('rspec').after(/^group :test do/) }
|
57
|
-
its(:command) { should eq "sed -n /\\^group\\ :test\\ do/,\\$p Gemfile | grep -q -- rspec - || sed -n /\\^group\\ :test\\ do/,\\$p Gemfile | grep -qF -- rspec -" }
|
58
|
-
end
|
59
|
-
|
60
|
-
describe file('/etc/ssh/sshd_config') do
|
61
|
-
it { should_not contain('This is invalid text!!').after(/^group :test do/) }
|
62
|
-
end
|
63
|
-
|
64
|
-
describe file('Gemfile') do
|
65
|
-
it { should contain('rspec').before(/^end/) }
|
66
|
-
its(:command) { should eq "sed -n 1,/\\^end/p Gemfile | grep -q -- rspec - || sed -n 1,/\\^end/p Gemfile | grep -qF -- rspec -" }
|
67
|
-
end
|
68
|
-
|
69
|
-
describe file('/etc/ssh/sshd_config') do
|
70
|
-
it { should_not contain('This is invalid text!!').before(/^end/) }
|
71
|
-
end
|
72
|
-
|
73
|
-
describe file('/etc/passwd') do
|
74
|
-
it { should be_mode 644 }
|
75
|
-
its(:command) { should eq "stat -f%Lp /etc/passwd | grep -- \\^644\\$" }
|
76
|
-
end
|
77
|
-
|
78
|
-
describe file('/etc/passwd') do
|
79
|
-
it { should_not be_mode 'invalid' }
|
80
|
-
end
|
81
|
-
|
82
|
-
describe file('/etc/passwd') do
|
83
|
-
it { should be_owned_by 'root' }
|
84
|
-
its(:command) { should eq "stat -f %Su /etc/passwd | grep -- \\^root\\$" }
|
85
|
-
end
|
86
|
-
|
87
|
-
describe file('/etc/passwd') do
|
88
|
-
it { should_not be_owned_by 'invalid-owner' }
|
89
|
-
end
|
90
|
-
|
91
|
-
describe file('/etc/passwd') do
|
92
|
-
it { should be_grouped_into 'root' }
|
93
|
-
its(:command) { should eq "stat -f %Sg /etc/passwd | grep -- \\^root\\$" }
|
94
|
-
end
|
95
|
-
|
96
|
-
describe file('/etc/passwd') do
|
97
|
-
it { should_not be_grouped_into 'invalid-group' }
|
98
|
-
end
|
99
|
-
|
100
|
-
describe file('/etc/pam.d/system-auth') do
|
101
|
-
it { should be_linked_to '/etc/pam.d/system-auth-ac' }
|
102
|
-
its(:command) { should eq "stat -f %Y /etc/pam.d/system-auth | grep -- /etc/pam.d/system-auth-ac" }
|
103
|
-
end
|
104
|
-
|
105
|
-
describe file('dummy-link') do
|
106
|
-
it { should_not be_linked_to '/invalid/target' }
|
107
|
-
end
|
108
|
-
|
109
|
-
describe file('/dev') do
|
110
|
-
let(:stdout) { "755\r\n" }
|
111
|
-
it { should be_readable }
|
112
|
-
its(:command) { should eq "stat -f%Lp /dev" }
|
113
|
-
end
|
114
|
-
|
115
|
-
describe file('/dev') do
|
116
|
-
let(:stdout) { "333\r\n" }
|
117
|
-
it { should_not be_readable }
|
118
|
-
end
|
119
|
-
|
120
|
-
describe file('/dev') do
|
121
|
-
let(:stdout) { "400\r\n" }
|
122
|
-
it { should be_readable.by('owner') }
|
123
|
-
end
|
124
|
-
|
125
|
-
describe file('/dev') do
|
126
|
-
let(:stdout) { "044\r\n" }
|
127
|
-
it { should_not be_readable.by('owner') }
|
128
|
-
end
|
129
|
-
|
130
|
-
describe file('/dev') do
|
131
|
-
let(:stdout) { "040\r\n" }
|
132
|
-
it { should be_readable.by('group') }
|
133
|
-
end
|
134
|
-
|
135
|
-
describe file('/dev') do
|
136
|
-
let(:stdout) { "404\r\n" }
|
137
|
-
it { should_not be_readable.by('group') }
|
138
|
-
end
|
139
|
-
|
140
|
-
describe file('/dev') do
|
141
|
-
let(:stdout) { "044\r\n" }
|
142
|
-
it { should be_readable.by('others') }
|
143
|
-
end
|
144
|
-
|
145
|
-
describe file('/dev') do
|
146
|
-
let(:stdout) { "443\r\n" }
|
147
|
-
it { should_not be_readable.by('others') }
|
148
|
-
end
|
149
|
-
|
150
|
-
describe file('/tmp') do
|
151
|
-
it { should be_readable.by_user('mail') }
|
152
|
-
its(:command) { should eq "sudo -u mail -s /bin/test -r /tmp" }
|
153
|
-
end
|
154
|
-
|
155
|
-
describe file('/tmp') do
|
156
|
-
it { should_not be_readable.by_user('invalid-user') }
|
157
|
-
end
|
158
|
-
|
159
|
-
describe file('/dev') do
|
160
|
-
let(:stdout) { "755\r\n" }
|
161
|
-
it { should be_writable }
|
162
|
-
its(:command) { should eq "stat -f%Lp /dev" }
|
163
|
-
end
|
164
|
-
|
165
|
-
describe file('/dev') do
|
166
|
-
let(:stdout) { "555\r\n" }
|
167
|
-
it { should_not be_writable }
|
168
|
-
end
|
169
|
-
|
170
|
-
describe file('/dev') do
|
171
|
-
let(:stdout) { "200\r\n" }
|
172
|
-
it { should be_writable.by('owner') }
|
173
|
-
end
|
174
|
-
|
175
|
-
describe file('/dev') do
|
176
|
-
let(:stdout) { "555\r\n" }
|
177
|
-
it { should_not be_writable.by('owner') }
|
178
|
-
end
|
179
|
-
|
180
|
-
describe file('/dev') do
|
181
|
-
let(:stdout) { "030\r\n" }
|
182
|
-
it { should be_writable.by('group') }
|
183
|
-
end
|
184
|
-
|
185
|
-
describe file('/dev') do
|
186
|
-
let(:stdout) { "555\r\n" }
|
187
|
-
it { should_not be_writable.by('group') }
|
188
|
-
end
|
189
|
-
|
190
|
-
describe file('/dev') do
|
191
|
-
let(:stdout) { "666\r\n" }
|
192
|
-
it { should be_writable.by('others') }
|
193
|
-
end
|
194
|
-
|
195
|
-
describe file('/dev') do
|
196
|
-
let(:stdout) { "555\r\n" }
|
197
|
-
it { should_not be_writable.by('others') }
|
198
|
-
end
|
199
|
-
|
200
|
-
describe file('/tmp') do
|
201
|
-
it { should be_writable.by_user('mail') }
|
202
|
-
its(:command) { should eq "sudo -u mail -s /bin/test -w /tmp" }
|
203
|
-
end
|
204
|
-
|
205
|
-
describe file('/tmp') do
|
206
|
-
it { should_not be_writable.by_user('invalid-user') }
|
207
|
-
end
|
208
|
-
|
209
|
-
describe file('/dev') do
|
210
|
-
let(:stdout) { "755\r\n" }
|
211
|
-
it { should be_executable }
|
212
|
-
its(:command) { should eq "stat -f%Lp /dev" }
|
213
|
-
end
|
214
|
-
|
215
|
-
describe file('/dev') do
|
216
|
-
let(:stdout) { "666\r\n" }
|
217
|
-
it { should_not be_executable }
|
218
|
-
end
|
219
|
-
|
220
|
-
describe file('/dev') do
|
221
|
-
let(:stdout) { "100\r\n" }
|
222
|
-
it { should be_executable.by('owner') }
|
223
|
-
end
|
224
|
-
|
225
|
-
describe file('/dev') do
|
226
|
-
let(:stdout) { "666\r\n" }
|
227
|
-
it { should_not be_executable.by('owner') }
|
228
|
-
end
|
229
|
-
|
230
|
-
describe file('/dev') do
|
231
|
-
let(:stdout) { "070\r\n" }
|
232
|
-
it { should be_executable.by('group') }
|
233
|
-
end
|
234
|
-
|
235
|
-
describe file('/dev') do
|
236
|
-
let(:stdout) { "666\r\n" }
|
237
|
-
it { should_not be_executable.by('group') }
|
238
|
-
end
|
239
|
-
|
240
|
-
describe file('/dev') do
|
241
|
-
let(:stdout) { "001\r\n" }
|
242
|
-
it { should be_executable.by('others') }
|
243
|
-
end
|
244
|
-
|
245
|
-
describe file('/dev') do
|
246
|
-
let(:stdout) { "666\r\n" }
|
247
|
-
it { should_not be_executable.by('others') }
|
248
|
-
end
|
249
|
-
|
250
|
-
describe file('/tmp') do
|
251
|
-
it { should be_executable.by_user('mail') }
|
252
|
-
its(:command) { should eq "sudo -u mail -s /bin/test -x /tmp" }
|
253
|
-
end
|
254
|
-
|
255
|
-
describe file('/tmp') do
|
256
|
-
it { should_not be_executable.by_user('invalid-user') }
|
257
|
-
end
|
258
|
-
|
259
|
-
describe file('/') do
|
260
|
-
it { should be_mounted }
|
261
|
-
its(:command) { should eq "mount | grep -w -- on\\ /" }
|
262
|
-
end
|
263
|
-
|
264
|
-
describe file('/etc/invalid-mount') do
|
265
|
-
it { should_not be_mounted }
|
266
|
-
end
|
267
|
-
|
268
|
-
describe file('/') do
|
269
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
270
|
-
it { should be_mounted.with( :type => 'ext4' ) }
|
271
|
-
end
|
272
|
-
|
273
|
-
describe file('/') do
|
274
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
275
|
-
it { should be_mounted.with( :type => 'ext4', :options => { :rw => true } ) }
|
276
|
-
end
|
277
|
-
|
278
|
-
describe file('/') do
|
279
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
280
|
-
it { should be_mounted.with( :type => 'ext4', :options => { :mode => 620 } ) }
|
281
|
-
end
|
282
|
-
|
283
|
-
describe file('/') do
|
284
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
285
|
-
it { should be_mounted.with( :type => 'ext4', :device => '/dev/mapper/VolGroup-lv_root' ) }
|
286
|
-
end
|
287
|
-
|
288
|
-
describe file('/') do
|
289
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
290
|
-
it { should_not be_mounted.with( :type => 'xfs' ) }
|
291
|
-
end
|
292
|
-
|
293
|
-
describe file('/') do
|
294
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
295
|
-
it { should_not be_mounted.with( :type => 'ext4', :options => { :rw => false } ) }
|
296
|
-
end
|
297
|
-
|
298
|
-
describe file('/') do
|
299
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
300
|
-
it { should_not be_mounted.with( :type => 'ext4', :options => { :mode => 600 } ) }
|
301
|
-
end
|
302
|
-
|
303
|
-
describe file('/') do
|
304
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
305
|
-
it { should_not be_mounted.with( :type => 'xfs', :device => '/dev/mapper/VolGroup-lv_root' ) }
|
306
|
-
end
|
307
|
-
|
308
|
-
describe file('/') do
|
309
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
310
|
-
it { should_not be_mounted.with( :type => 'ext4', :device => '/dev/mapper/VolGroup-lv_r00t' ) }
|
311
|
-
end
|
312
|
-
|
313
|
-
describe file('/etc/invalid-mount') do
|
314
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
315
|
-
it { should_not be_mounted.with( :type => 'ext4' ) }
|
316
|
-
end
|
317
|
-
|
318
|
-
describe file('/') do
|
319
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
320
|
-
it do
|
321
|
-
should be_mounted.only_with(
|
322
|
-
:device => '/dev/mapper/VolGroup-lv_root',
|
323
|
-
:type => 'ext4',
|
324
|
-
:options => {
|
325
|
-
:rw => true,
|
326
|
-
:mode => 620,
|
327
|
-
}
|
328
|
-
)
|
329
|
-
end
|
330
|
-
end
|
331
|
-
|
332
|
-
describe file('/') do
|
333
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
334
|
-
it do
|
335
|
-
should_not be_mounted.only_with(
|
336
|
-
:device => '/dev/mapper/VolGroup-lv_root',
|
337
|
-
:type => 'ext4',
|
338
|
-
:options => {
|
339
|
-
:rw => true,
|
340
|
-
:mode => 620,
|
341
|
-
:bind => true,
|
342
|
-
}
|
343
|
-
)
|
344
|
-
end
|
345
|
-
end
|
346
|
-
|
347
|
-
describe file('/') do
|
348
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
349
|
-
it do
|
350
|
-
should_not be_mounted.only_with(
|
351
|
-
:device => '/dev/mapper/VolGroup-lv_root',
|
352
|
-
:type => 'ext4',
|
353
|
-
:options => {
|
354
|
-
:rw => true,
|
355
|
-
}
|
356
|
-
)
|
357
|
-
end
|
358
|
-
end
|
359
|
-
|
360
|
-
describe file('/') do
|
361
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
362
|
-
it do
|
363
|
-
should_not be_mounted.only_with(
|
364
|
-
:device => '/dev/mapper/VolGroup-lv_roooooooooot',
|
365
|
-
:type => 'ext4',
|
366
|
-
:options => {
|
367
|
-
:rw => true,
|
368
|
-
:mode => 620,
|
369
|
-
}
|
370
|
-
)
|
371
|
-
end
|
372
|
-
end
|
373
|
-
|
374
|
-
describe file('/etc/invalid-mount') do
|
375
|
-
let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
|
376
|
-
it { should_not be_mounted.only_with( :type => 'ext4' ) }
|
377
|
-
end
|
378
|
-
|
379
|
-
describe file('/etc/services') do
|
380
|
-
it { should match_md5checksum '35435ea447c19f0ea5ef971837ab9ced' }
|
381
|
-
its(:command) { should eq "openssl md5 /etc/services | cut -d'=' -f2 | cut -c 2- | grep -E ^35435ea447c19f0ea5ef971837ab9ced$" }
|
382
|
-
end
|
383
|
-
|
384
|
-
describe file('invalid-file') do
|
385
|
-
it { should_not match_md5checksum 'INVALIDMD5CHECKSUM' }
|
386
|
-
end
|
387
|
-
|
388
|
-
describe file('/etc/services') do
|
389
|
-
it { should match_sha256checksum '0c3feee1353a8459f8c7d84885e6bc602ef853751ffdbce3e3b6dfa1d345fc7a' }
|
390
|
-
its(:command) { should eq "openssl sha256 /etc/services | cut -d'=' -f2 | cut -c 2- | grep -E ^0c3feee1353a8459f8c7d84885e6bc602ef853751ffdbce3e3b6dfa1d345fc7a$" }
|
391
|
-
end
|
392
|
-
|
393
|
-
describe file('invalid-file') do
|
394
|
-
it { should_not match_sha256checksum 'INVALIDSHA256CHECKSUM' }
|
395
|
-
end
|
396
|
-
|
397
|
-
describe file('/etc/passwd') do
|
398
|
-
let(:stdout) {<<EOF
|
399
|
-
root:x:0:0:root:/root:/bin/bash
|
400
|
-
bin:x:1:1:bin:/bin:/sbin/nologin
|
401
|
-
daemon:x:2:2:daemon:/sbin:/sbin/nologin
|
402
|
-
sync:x:5:0:sync:/sbin:/bin/sync
|
403
|
-
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
|
404
|
-
halt:x:7:0:halt:/sbin:/sbin/halt
|
405
|
-
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
|
406
|
-
operator:x:11:0:operator:/root:/sbin/nologin
|
407
|
-
nobody:x:99:99:Nobody:/:/sbin/nologin
|
408
|
-
dbus:x:81:81:System message bus:/:/sbin/nologin
|
409
|
-
EOF
|
410
|
-
}
|
411
|
-
|
412
|
-
its(:content) { should match /root:x:0:0/ }
|
413
|
-
end
|