From 2d2a3fc10471edfdaacc18611b3471b2a27c643c Mon Sep 17 00:00:00 2001
From: Ivo van Doorn <ivovandoorn@samotics.com>
Date: Wed, 15 Nov 2023 12:49:41 +0100
Subject: [PATCH] fix: cis-dil-benchmark-2.2.1.3 read /etc/chrony.d

On AL2023, the folder /etc/chrony.d exists in which additional
chrony sources can be configured.

Signed-off-by: Ivo van Doorn <ivovandoorn@samotics.com>
---
 controls/2_2_special_purpose_services.rb | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/controls/2_2_special_purpose_services.rb b/controls/2_2_special_purpose_services.rb
index b6ddbd8..85ad3f2 100644
--- a/controls/2_2_special_purpose_services.rb
+++ b/controls/2_2_special_purpose_services.rb
@@ -107,9 +107,10 @@
     package('chrony').installed? || command('chronyd').exist?
   end
 
-  # Amazon Linux sources configuration from /run/chrony.d
+  # Amazon Linux sources configuration from /run/chrony.d and /etc/chrony.d
   chrony_conf_files = ['/etc/chrony/chrony.conf', '/etc/chrony.conf']
   chrony_conf_files += command('find /run/chrony.d -name \'*.sources\'').stdout.split
+  chrony_conf_files += command('find /etc/chrony.d -name \'*.sources\'').stdout.split
 
   describe.one do
     chrony_conf_files.each do |f|