From 46804650951bf46154eaac8c982630a3c9d843d9 Mon Sep 17 00:00:00 2001
From: Thibault Ayanides <thibault.ayanides@ovhcloud.com>
Date: Tue, 27 Oct 2020 15:12:09 +0100
Subject: [PATCH] IMP(1.4.1,1.4.2,1.4.3): skip on docker

---
 tests/hardening/1.4.1_bootloader_ownership.sh | 16 ++++++++++------
 tests/hardening/1.4.2_bootloader_password.sh  | 16 ++++++++++------
 tests/hardening/1.4.3_root_password.sh        | 16 ++++++++++------
 3 files changed, 30 insertions(+), 18 deletions(-)

diff --git a/tests/hardening/1.4.1_bootloader_ownership.sh b/tests/hardening/1.4.1_bootloader_ownership.sh
index b333419..b0ebe2a 100644
--- a/tests/hardening/1.4.1_bootloader_ownership.sh
+++ b/tests/hardening/1.4.1_bootloader_ownership.sh
@@ -1,10 +1,14 @@
 # run-shellcheck
 test_audit() {
-    describe Running on blank host
-    register_test retvalshouldbe 0
-    dismiss_count_for_test
-    # shellcheck disable=2154
-    run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
+    if [ -f "/.dockerenv" ]; then
+        skip "SKIPPED on docker"
+    else
+        describe Running on blank host
+        register_test retvalshouldbe 0
+        dismiss_count_for_test
+        # shellcheck disable=2154
+        run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
 
-    # TODO fill comprehensive tests
+        # TODO fill comprehensive tests
+    fi
 }
diff --git a/tests/hardening/1.4.2_bootloader_password.sh b/tests/hardening/1.4.2_bootloader_password.sh
index b333419..b0ebe2a 100644
--- a/tests/hardening/1.4.2_bootloader_password.sh
+++ b/tests/hardening/1.4.2_bootloader_password.sh
@@ -1,10 +1,14 @@
 # run-shellcheck
 test_audit() {
-    describe Running on blank host
-    register_test retvalshouldbe 0
-    dismiss_count_for_test
-    # shellcheck disable=2154
-    run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
+    if [ -f "/.dockerenv" ]; then
+        skip "SKIPPED on docker"
+    else
+        describe Running on blank host
+        register_test retvalshouldbe 0
+        dismiss_count_for_test
+        # shellcheck disable=2154
+        run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
 
-    # TODO fill comprehensive tests
+        # TODO fill comprehensive tests
+    fi
 }
diff --git a/tests/hardening/1.4.3_root_password.sh b/tests/hardening/1.4.3_root_password.sh
index b333419..b0ebe2a 100644
--- a/tests/hardening/1.4.3_root_password.sh
+++ b/tests/hardening/1.4.3_root_password.sh
@@ -1,10 +1,14 @@
 # run-shellcheck
 test_audit() {
-    describe Running on blank host
-    register_test retvalshouldbe 0
-    dismiss_count_for_test
-    # shellcheck disable=2154
-    run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
+    if [ -f "/.dockerenv" ]; then
+        skip "SKIPPED on docker"
+    else
+        describe Running on blank host
+        register_test retvalshouldbe 0
+        dismiss_count_for_test
+        # shellcheck disable=2154
+        run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
 
-    # TODO fill comprehensive tests
+        # TODO fill comprehensive tests
+    fi
 }