From c16a077feb0a0006895b86527cf13a0a1dfbf5e3 Mon Sep 17 00:00:00 2001
From: Evans Mungai <evans@replicated.com>
Date: Fri, 29 Sep 2023 16:44:51 +0100
Subject: [PATCH] Update selinux analyser and remove duplicate collector

---
 host/default.yaml | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/host/default.yaml b/host/default.yaml
index ae5b8da..e04ae75 100644
--- a/host/default.yaml
+++ b/host/default.yaml
@@ -87,6 +87,7 @@ spec:
         collectorName: "iostat"
         command: "iostat"
         args: ["-x"]
+    # SELinux status
     - run:
         collectorName: "sestatus"
         command: "sestatus"
@@ -151,9 +152,6 @@ spec:
         collectorName: "sysctl"
         command: "sysctl"
         args: ["-a"]
-    - copy:
-        collectorName: selinux-config
-        path: /etc/selinux/config
     # Systemctl service statuses for CRI, Kubelet, and Firewall
     - run:
         collectorName: "systemctl-firewalld-status"
@@ -744,8 +742,8 @@ spec:
               message: "'localhost' resolves to 127.0.0.1 ip address"
     - textAnalyze:
         checkName: Check if SELinux is enabled
-        fileName: host-collectors/selinux-config/config
-        regex: '(?m)^SELINUX=enforcing'
+        fileName: host-collectors/run-host/sestatus.txt
+        regex: '(?m)^Current mode:\s+enforcing'
         ignoreIfNoFiles: true
         outcomes:
           - fail: