Test for built-in security measures in YUM [PKGS-7386]

2025-07-31 01:34:23 +02:00 · 2014-10-13 20:36:09 +02:00 · 2014-10-13 20:36:09 +02:00 · 5e840367ca
commit 5e840367ca
parent 34b177547f
1 changed files with 31 additions and 14 deletions
--- a/include/tests_ports_packages
+++ b/include/tests_ports_packages
@ -590,22 +590,39 @@
        DO_TEST=0
        logtext "Test: Determining if yum-security package installed"
-        FileExists /etc/yum/pluginconf.d/security.conf
+        # Check for built-in --security option
-        if [ ${FILE_FOUND} -eq 1 ]; then
+        if [ ${DO_TEST} -eq 0 ]; then
-           SearchItem "^enabled=1$" "/etc/yum/pluginconf.d/security.conf"
+            FileExists /usr/share/yum-cli/cly.py
-           if [ ${ITEM_FOUND} -eq 1 ]; then
+            if [ ${FILE_FOUND} -eq 1 ]; then
-               DO_TEST=1
+               SearchItem "--security" "/usr/share/yum-cli/cly.py"
-           fi
+               if [ ${ITEM_FOUND} -eq 1 ]; then
-         else
+                   DO_TEST=1
-           # Check if it's installed as package (this is old style)
+                   logtext "Result: found built-in security in yum"
-           FIND=`rpm -q yum-security yum-plugin-security | grep -v "not installed"`
+               fi
-           if [ ! "${FIND}" = "" ]; then
+            fi
               logtext "Result: found yum-plugin-security package"
               DO_TEST=1
           fi
        fi
-        # If we have the module of yum active, continue.
+        if [ ${DO_TEST} -eq 0 ]; then
            FileExists /etc/yum/pluginconf.d/security.conf
            if [ ${FILE_FOUND} -eq 1 ]; then
               SearchItem "^enabled=1$" "/etc/yum/pluginconf.d/security.conf"
               if [ ${ITEM_FOUND} -eq 1 ]; then
                   DO_TEST=1
                   logtext "Result: Found enabled plugin"
               fi
            fi
        fi
        # Check if it's installed as package (this is old style)
        if [ ${DO_TEST} -eq 0 ]; then
            FIND=`rpm -q yum-security yum-plugin-security | grep -v "not installed"`
            if [ ! "${FIND}" = "" ]; then
                logtext "Result: found yum-plugin-security package"
                DO_TEST=1
            fi
        fi
        # If we have the module of yum active, continue testing
        if [ ${DO_TEST} -eq 1 ]; then
            PKG_AUDIT_TOOL_FOUND=1
            PKG_AUDIT_TOOL="yum-security"