serverspec 1.4.2 → 1.5.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: d724a709a1a634aba2973ce6382809eb74164456
-  data.tar.gz: 9ee68261df8a027c7967531889d355d184b15917
+  metadata.gz: 2485850c66b67c0974175f1ddcfa7ed640a3cfd9
+  data.tar.gz: 574e7de2afd5ee8da989672fb16e8395be9ed98d
 SHA512:
-  metadata.gz: 7f5124741074c03f7ec15ae2df01a6fe9f93fa755778cae4812261c8f7508d5f7426199684fdb46c3045a840a2d2fc38e521ed54717778755b7dda689224cb8a
-  data.tar.gz: 147ff0c0746c0ae0cb8fe8ebe0930b0e1d1c6af060e9349e8de4ee9508518397c07c060b0eb62b244eb20c08827273d8682f5c96ac860134cf2d568e3dbec7c7
+  metadata.gz: 84f3caa4e2e4854d7dc641350c68148e68f3ef4c4fae831bf89d1e3eca3e8255dae866a3b14769f7e1888e721f59a45609444905ec38422ce5d453f09ed8d795
+  data.tar.gz: 35e9a8aa6c47a99cc712dc6727da8aff0db7fa245be235006a9ea23f1cef6304cb8e95bc8bdc045cae5680c8fb8cc99936da4a881b558b23e40ef31ca9a5eb92

data/README.md

@@ -132,6 +132,7 @@ You can select from:
 
 * SpecInfra::Helper::RedHat
 * SpecInfra::Helper::Debian
+* SpecInfra::Helper::Fedora
 * SpecInfra::Helper::Gentoo
 * SpecInfra::Helper::Solaris
 * SpecInfra::Helper::Darwin

data/Rakefile

@@ -5,7 +5,7 @@ require "octorelease"
 task :spec => 'spec:all'
 
 namespace :spec do
-  oses = %w( darwin debian gentoo plamo redhat aix solaris solaris10 solaris11 smartos windows freebsd freebsd10 arch)
+  oses = %w( darwin debian gentoo plamo redhat redhat7 aix solaris solaris10 solaris11 smartos windows freebsd freebsd10 arch fedora)
   backends = %w( exec ssh cmd winrm powershell )
 
   task :all => [ oses.map {|os| "spec:#{os}" }, backends, :helper, :unit ].flatten

data/lib/serverspec/helper/os.rb

@@ -6,11 +6,13 @@ module Serverspec
       'Arch',
       'Darwin',
       'Debian',
+      'Fedora',
       'FreeBSD',
       'FreeBSD10',
       'Gentoo',
       'Plamo',
       'RedHat',
+      'RedHat7',
       'SmartOS',
       'Solaris',
       'Solaris10',

data/lib/serverspec/setup.rb

@@ -14,11 +14,11 @@ module Serverspec
       end
 
       if @backend_type == 'Ssh'
-        print "Vagrant instance y/n: "
+        print 'Vagrant instance y/n: '
         @vagrant = $stdin.gets.chomp
         if @vagrant =~ (/(true|t|yes|y|1)$/i)
           @vagrant = true
-          print "Auto-configure Vagrant from Vagrantfile? y/n: "
+          print 'Auto-configure Vagrant from Vagrantfile? y/n: '
           auto_config = $stdin.gets.chomp
           if auto_config =~ (/(true|t|yes|y|1)$/i)
             auto_vagrant_configuration
@@ -35,7 +35,7 @@ module Serverspec
         @hostname = 'localhost'
       end
 
-      [ 'spec', "spec/#{@hostname}" ].each { |dir| safe_mkdir(dir) }
+      ['spec', "spec/#{@hostname}"].each { |dir| safe_mkdir(dir) }
       safe_create_spec
       safe_create_spec_helper
       safe_create_rakefile
@@ -55,7 +55,7 @@ EOF
       num = $stdin.gets.to_i - 1
       puts
 
-      @os_type = [ 'UN*X', 'Windows' ][num] || 'UN*X'
+      @os_type = ['UN*X', 'Windows'][num] || 'UN*X'
     end
 
     def self.ask_unix_backend
@@ -71,7 +71,7 @@ EOF
       num = $stdin.gets.to_i - 1
       puts
 
-      @backend_type = [ 'Ssh', 'Exec' ][num] || 'Exec'
+      @backend_type = ['Ssh', 'Exec'][num] || 'Exec'
     end
 
     def self.ask_windows_backend
@@ -87,7 +87,7 @@ EOF
       num = $stdin.gets.to_i - 1
       puts
 
-      @backend_type = [ 'WinRM', 'Cmd' ][num] || 'Exec'
+      @backend_type = ['WinRM', 'Cmd'][num] || 'Exec'
     end
 
     def self.safe_create_spec
@@ -138,7 +138,6 @@ EOF
     end
 
     def self.safe_create_spec_helper
-      requirements = []
       content = ERB.new(spec_helper_template, nil, '-').result(binding)
       if File.exists? 'spec/spec_helper.rb'
         old_content = File.read('spec/spec_helper.rb')
@@ -167,7 +166,7 @@ task :default => :spec
       if File.exists? 'Rakefile'
         old_content = File.read('Rakefile')
         if old_content != content
-          $stderr.puts "!! Rakefile already exists and differs from template"
+          $stderr.puts '!! Rakefile already exists and differs from template'
         end
       else
         File.open('Rakefile', 'w') do |f|
@@ -179,7 +178,7 @@ task :default => :spec
 
     def self.find_vagrantfile
       Pathname.new(Dir.pwd).ascend do |dir|
-        path = File.expand_path("Vagrantfile", dir)
+        path = File.expand_path('Vagrantfile', dir)
         return path if File.exists?(path)
       end
       nil
@@ -199,16 +198,16 @@ task :default => :spec
             @hostname = list_of_vms[0]
           else
             list_of_vms.each_with_index { |vm, index | puts "#{index}) #{vm}\n" }
-            print "Choose a VM from the Vagrantfile: "
+            print 'Choose a VM from the Vagrantfile: '
             chosen_vm = $stdin.gets.chomp
             @hostname = list_of_vms[chosen_vm.to_i]
           end
         else
-          $stderr.puts "Vagrant status error - Check your Vagrantfile or .vagrant"
+          $stderr.puts 'Vagrant status error - Check your Vagrantfile or .vagrant'
           exit 1
         end
       else
-        $stderr.puts "Vagrantfile not found in directory!"
+        $stderr.puts 'Vagrantfile not found in directory!'
         exit 1
       end
     end

data/lib/serverspec/version.rb

@@ -1,3 +1,3 @@
 module Serverspec
-  VERSION = "1.4.2"
+  VERSION = "1.5.0"
 end

data/serverspec.gemspec

@@ -21,7 +21,7 @@ Gem::Specification.new do |spec|
   spec.add_runtime_dependency "net-ssh"
   spec.add_runtime_dependency "rspec", "~> 2.13"
   spec.add_runtime_dependency "highline"
-  spec.add_runtime_dependency "specinfra", "~> 1.5"
+  spec.add_runtime_dependency "specinfra", "~> 1.10"
   spec.add_development_dependency "bundler", "~> 1.3"
   spec.add_development_dependency "rake", "~> 10.1.1"
   spec.add_development_dependency "octokit", "~> 2.7.2"

data/spec/fedora/cgroup_spec.rb

@@ -0,0 +1,14 @@
+require 'spec_helper'
+
+include SpecInfra::Helper::Fedora
+
+describe cgroup('group1') do
+  let(:stdout) { "1\r\n" }
+  its('cpuset.cpus') { should eq 1 }
+  its(:command) { should eq "cgget -n -r cpuset.cpus group1 | awk '{print $2}'" }
+end
+
+describe cgroup('group1') do
+  let(:stdout) { "1\r\n" }
+  its('cpuset.cpus') { should_not eq 0 }
+end

data/spec/fedora/command_spec.rb

@@ -0,0 +1,67 @@
+require 'spec_helper'
+
+include SpecInfra::Helper::Fedora
+
+=begin
+describe command('cat /etc/resolv.conf') do
+  let(:stdout) { "nameserver 127.0.0.1\r\n" }
+  it { should return_stdout("nameserver 127.0.0.1") }
+  its(:command) { should eq 'cat /etc/resolv.conf' }
+end
+
+describe 'complete matching of stdout' do
+  context command('cat /etc/resolv.conf') do
+    let(:stdout) { "foocontent-should-be-includedbar\r\n" }
+    it { should_not return_stdout('content-should-be-included') }
+  end
+end
+
+describe 'regexp matching of stdout' do
+  context command('cat /etc/resolv.conf') do
+    let(:stdout) { "nameserver 127.0.0.1\r\n" }
+    it { should return_stdout(/127\.0\.0\.1/) }
+  end
+end
+
+describe command('cat /etc/resolv.conf') do
+  let(:stdout) { "No such file or directory\r\n" }
+  it { should return_stderr("No such file or directory") }
+  its(:command) { should eq 'cat /etc/resolv.conf' }
+end
+
+describe 'complete matching of stderr' do
+  context command('cat /etc/resolv.conf') do
+    let(:stdout) { "No such file or directory\r\n" }
+    it { should_not return_stdout('file') }
+  end
+end
+
+describe 'regexp matching of stderr' do
+  context command('cat /etc/resolv.conf') do
+    let(:stdout) { "No such file or directory\r\n" }
+    it { should return_stderr(/file/) }
+  end
+end
+
+describe command('cat /etc/resolv.conf') do
+  it { should return_exit_status 0 }
+  its(:command) { should eq 'cat /etc/resolv.conf' }
+end
+=end
+
+describe command('ls -al /') do
+ let(:stdout) { <<EOF
+total 88
+drwxr-xr-x  23 root root  4096 Oct 10 17:19 .
+drwxr-xr-x  23 root root  4096 Oct 10 17:19 ..
+drwxr-xr-x   2 root root  4096 Sep 11 16:43 bin
+drwxr-xr-x   3 root root  4096 Sep 23 18:14 boot
+drwxr-xr-x  14 root root  4260 Oct 14 16:14 dev
+drwxr-xr-x 104 root root  4096 Oct 14 17:34 etc
+drwxr-xr-x   8 root root  4096 Oct  1 15:09 home
+EOF
+    }
+
+  its(:stdout) { should match /bin/ }
+  its(:stdout) { should eq stdout }
+end

data/spec/fedora/cron_spec.rb

@@ -0,0 +1,21 @@
+require 'spec_helper'
+
+include SpecInfra::Helper::Fedora
+
+describe cron do
+  it { should have_entry '* * * * * /usr/local/bin/batch.sh' }
+  its(:command) { should eq 'crontab -l | grep -v "#" -- | grep -- \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ /usr/local/bin/batch.sh' }
+end
+
+describe cron do
+  it { should_not have_entry 'invalid entry' }
+end
+
+describe cron do
+  it { should have_entry('* * * * * /usr/local/bin/batch.sh').with_user('root') }
+  its(:command) { should eq 'crontab -u root -l | grep -v "#" | grep -- \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ \\\\\\*\\ /usr/local/bin/batch.sh' }
+end
+
+describe cron do
+  it { should_not have_entry('* * * * * /usr/local/bin/batch.sh').with_user('invalid-user') }
+end

data/spec/fedora/default_gateway_spec.rb

@@ -0,0 +1,16 @@
+require 'spec_helper'
+
+include SpecInfra::Helper::Fedora
+
+describe default_gateway do
+  let(:stdout) { "default via 192.168.1.1 dev eth1 \r\n" }
+
+  its(:ipaddress) { should eq '192.168.1.1' }
+  its(:command) { should eq "ip route | grep -E '^default |^default '" }
+
+  its(:interface) { should eq 'eth1' }
+  its(:command) { should eq "ip route | grep -E '^default |^default '" }
+
+  its(:ipaddress) { should_not eq '192.168.1.2' }
+  its(:interface) { should_not eq 'eth0'        }
+end

data/spec/fedora/file_spec.rb

@@ -0,0 +1,413 @@
+require 'spec_helper'
+
+include SpecInfra::Helper::Fedora
+
+describe file('/etc/ssh/sshd_config') do
+  it { should be_file }
+  its(:command) { should eq "test -f /etc/ssh/sshd_config" }
+end
+
+describe file('/etc/invalid_file') do
+  it { should_not be_file }
+end
+
+describe file('/etc/ssh') do
+  it { should be_directory }
+  its(:command) { should eq "test -d /etc/ssh" }
+end
+
+describe file('/etc/invalid_directory') do
+  it { should_not be_directory }
+end
+
+describe file('/var/run/unicorn.sock') do
+  it { should be_socket }
+  its(:command) { should eq "test -S /var/run/unicorn.sock" }
+end
+
+describe file('/etc/invalid_socket') do
+  it { should_not be_socket }
+end
+
+describe file('/etc/ssh/sshd_config') do
+  it { should contain 'This is the sshd server system-wide configuration file' }
+  its(:command) { should eq "grep -q -- This\\ is\\ the\\ sshd\\ server\\ system-wide\\ configuration\\ file /etc/ssh/sshd_config || grep -qF -- This\\ is\\ the\\ sshd\\ server\\ system-wide\\ configuration\\ file /etc/ssh/sshd_config" }
+end
+
+describe file('/etc/ssh/sshd_config') do
+  it { should contain /^This is the sshd server system-wide configuration file/ }
+  its(:command) { should eq "grep -q -- \\^This\\ is\\ the\\ sshd\\ server\\ system-wide\\ configuration\\ file /etc/ssh/sshd_config || grep -qF -- \\^This\\ is\\ the\\ sshd\\ server\\ system-wide\\ configuration\\ file /etc/ssh/sshd_config" }
+end
+
+describe file('/etc/ssh/sshd_config') do
+  it { should_not contain 'This is invalid text!!' }
+end
+
+describe file('Gemfile') do
+  it { should contain('rspec').from(/^group :test do/).to(/^end/) }
+  its(:command) { should eq "sed -n /\\^group\\ :test\\ do/,/\\^end/p Gemfile | grep -q -- rspec - || sed -n /\\^group\\ :test\\ do/,/\\^end/p Gemfile | grep -qF -- rspec -" }
+end
+
+describe file('/etc/ssh/sshd_config') do
+  it { should_not contain('This is invalid text!!').from(/^group :test do/).to(/^end/) }
+end
+
+describe file('Gemfile') do
+  it { should contain('rspec').after(/^group :test do/) }
+  its(:command) { should eq "sed -n /\\^group\\ :test\\ do/,\\$p Gemfile | grep -q -- rspec - || sed -n /\\^group\\ :test\\ do/,\\$p Gemfile | grep -qF -- rspec -" }
+end
+
+describe file('/etc/ssh/sshd_config') do
+  it { should_not contain('This is invalid text!!').after(/^group :test do/) }
+end
+
+describe file('Gemfile') do
+  it { should contain('rspec').before(/^end/) }
+  its(:command) { should eq "sed -n 1,/\\^end/p Gemfile | grep -q -- rspec - || sed -n 1,/\\^end/p Gemfile | grep -qF -- rspec -" }
+end
+
+describe file('/etc/ssh/sshd_config') do
+  it { should_not contain('This is invalid text!!').before(/^end/) }
+end
+
+describe file('/etc/passwd') do
+  it { should be_mode 644 }
+  its(:command) { should eq "stat -c %a /etc/passwd | grep -- \\^644\\$" }
+end
+
+describe file('/etc/passwd') do
+  it { should_not be_mode 'invalid' }
+end
+
+describe file('/etc/passwd') do
+  it { should be_owned_by 'root' }
+  its(:command) { should eq "stat -c %U /etc/passwd | grep -- \\^root\\$" }
+end
+
+describe file('/etc/passwd') do
+  it { should_not be_owned_by 'invalid-owner' }
+end
+
+describe file('/etc/passwd') do
+  it { should be_grouped_into 'root' }
+  its(:command) { should eq "stat -c %G /etc/passwd | grep -- \\^root\\$" }
+end
+
+describe file('/etc/passwd') do
+  it { should_not be_grouped_into 'invalid-group' }
+end
+
+describe file('/etc/pam.d/system-auth') do
+  it { should be_linked_to '/etc/pam.d/system-auth-ac' }
+  its(:command) { should eq "stat -c %N /etc/pam.d/system-auth | egrep -e \"-> ./etc/pam.d/system-auth-ac.\"" }
+end
+
+describe file('dummy-link') do
+  it { should_not be_linked_to '/invalid/target' }
+end
+
+describe file('/dev') do
+  let(:stdout) { "755\r\n" }
+  it { should be_readable }
+  its(:command) { should eq "stat -c %a /dev" }
+end
+
+describe file('/dev') do
+  let(:stdout) { "333\r\n" }
+  it { should_not be_readable }
+end
+
+describe file('/dev') do
+  let(:stdout) { "400\r\n" }
+  it { should be_readable.by('owner') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "044\r\n" }
+  it { should_not be_readable.by('owner') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "040\r\n" }
+  it { should be_readable.by('group') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "404\r\n" }
+  it { should_not be_readable.by('group') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "044\r\n" }
+  it { should be_readable.by('others') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "443\r\n" }
+  it { should_not be_readable.by('others') }
+end
+
+describe file('/tmp') do
+  it { should be_readable.by_user('mail') }
+  its(:command) { should eq "runuser -s /bin/sh -c \"test -r /tmp\" mail" }
+end
+
+describe file('/tmp') do
+  it { should_not be_readable.by_user('invalid-user') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "755\r\n" }
+  it { should be_writable }
+  its(:command) { should eq "stat -c %a /dev" }
+end
+
+describe file('/dev') do
+  let(:stdout) { "555\r\n" }
+  it { should_not be_writable }
+end
+
+describe file('/dev') do
+  let(:stdout) { "200\r\n" }
+  it { should be_writable.by('owner') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "555\r\n" }
+  it { should_not be_writable.by('owner') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "030\r\n" }
+  it { should be_writable.by('group') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "555\r\n" }
+  it { should_not be_writable.by('group') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "666\r\n" }
+  it { should be_writable.by('others') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "555\r\n" }
+  it { should_not be_writable.by('others') }
+end
+
+describe file('/tmp') do
+  it { should be_writable.by_user('mail') }
+  its(:command) { should eq "runuser -s /bin/sh -c \"test -w /tmp\" mail" }
+end
+
+describe file('/tmp') do
+  it { should_not be_writable.by_user('invalid-user') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "755\r\n" }
+  it { should be_executable }
+  its(:command) { should eq "stat -c %a /dev" }
+end
+
+describe file('/dev') do
+  let(:stdout) { "666\r\n" }
+  it { should_not be_executable }
+end
+
+describe file('/dev') do
+  let(:stdout) { "100\r\n" }
+  it { should be_executable.by('owner') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "666\r\n" }
+  it { should_not be_executable.by('owner') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "070\r\n" }
+  it { should be_executable.by('group') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "666\r\n" }
+  it { should_not be_executable.by('group') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "001\r\n" }
+  it { should be_executable.by('others') }
+end
+
+describe file('/dev') do
+  let(:stdout) { "666\r\n" }
+  it { should_not be_executable.by('others') }
+end
+
+describe file('/tmp') do
+  it { should be_executable.by_user('mail') }
+  its(:command) { should eq "runuser -s /bin/sh -c \"test -x /tmp\" mail" }
+end
+
+describe file('/tmp') do
+  it { should_not be_executable.by_user('invalid-user') }
+end
+
+describe file('/') do
+  it { should be_mounted }
+  its(:command) { should eq "mount | grep -w -- on\\ /" }
+end
+
+describe file('/etc/invalid-mount') do
+  it { should_not be_mounted }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should be_mounted.with( :type => 'ext4' ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should be_mounted.with( :type => 'ext4', :options => { :rw => true } ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should be_mounted.with( :type => 'ext4', :options => { :mode => 620 } ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should be_mounted.with( :type => 'ext4', :device => '/dev/mapper/VolGroup-lv_root' ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should_not be_mounted.with( :type => 'xfs' ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should_not be_mounted.with( :type => 'ext4', :options => { :rw => false } ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should_not be_mounted.with( :type => 'ext4', :options => { :mode => 600 } ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should_not be_mounted.with( :type => 'xfs', :device => '/dev/mapper/VolGroup-lv_root' ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should_not be_mounted.with( :type => 'ext4', :device => '/dev/mapper/VolGroup-lv_r00t' ) }
+end
+
+describe file('/etc/invalid-mount') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should_not be_mounted.with( :type => 'ext4' ) }
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it do
+    should be_mounted.only_with(
+      :device  => '/dev/mapper/VolGroup-lv_root',
+      :type    => 'ext4',
+      :options => {
+        :rw   => true,
+        :mode => 620,
+      }
+    )
+  end
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it do
+    should_not be_mounted.only_with(
+      :device  => '/dev/mapper/VolGroup-lv_root',
+      :type    => 'ext4',
+      :options => {
+        :rw   => true,
+        :mode => 620,
+        :bind => true,
+      }
+    )
+  end
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it do
+    should_not be_mounted.only_with(
+      :device  => '/dev/mapper/VolGroup-lv_root',
+      :type    => 'ext4',
+      :options => {
+        :rw   => true,
+      }
+    )
+  end
+end
+
+describe file('/') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it do
+    should_not be_mounted.only_with(
+      :device  => '/dev/mapper/VolGroup-lv_roooooooooot',
+      :type    => 'ext4',
+      :options => {
+        :rw   => true,
+        :mode => 620,
+      }
+    )
+  end
+end
+
+describe file('/etc/invalid-mount') do
+  let(:stdout) { "/dev/mapper/VolGroup-lv_root on / type ext4 (rw,mode=620)\r\n" }
+  it { should_not be_mounted.only_with( :type => 'ext4' ) }
+end
+
+describe file('/etc/services') do
+  it { should match_md5checksum '35435ea447c19f0ea5ef971837ab9ced' }
+  its(:command) { should eq "md5sum /etc/services | grep -iw -- \\^35435ea447c19f0ea5ef971837ab9ced" }
+end
+
+describe file('invalid-file') do
+  it { should_not match_md5checksum 'INVALIDMD5CHECKSUM' }
+end
+
+describe file('/etc/services') do
+  it { should match_sha256checksum '0c3feee1353a8459f8c7d84885e6bc602ef853751ffdbce3e3b6dfa1d345fc7a' }
+  its(:command) { should eq "sha256sum /etc/services | grep -iw -- \\^0c3feee1353a8459f8c7d84885e6bc602ef853751ffdbce3e3b6dfa1d345fc7a" }
+end
+
+describe file('invalid-file') do
+  it { should_not match_sha256checksum 'INVALIDSHA256CHECKSUM' }
+end
+
+describe file('/etc/passwd') do
+  let(:stdout) {<<EOF
+root:x:0:0:root:/root:/bin/bash
+bin:x:1:1:bin:/bin:/sbin/nologin
+daemon:x:2:2:daemon:/sbin:/sbin/nologin
+sync:x:5:0:sync:/sbin:/bin/sync
+shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
+halt:x:7:0:halt:/sbin:/sbin/halt
+mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
+operator:x:11:0:operator:/root:/sbin/nologin
+nobody:x:99:99:Nobody:/:/sbin/nologin
+dbus:x:81:81:System message bus:/:/sbin/nologin
+EOF
+  }
+
+  its(:content) { should match /root:x:0:0/ }
+end