module Chef::SELinux::CommonHelpers
Public Instance Methods
Source
# File lib/chef/resource/selinux/common_helpers.rb, line 40 def selinux_activate_required? return false unless platform_family?("debian") !File.read("/etc/default/grub").match?("security=selinux") end
Source
# File lib/chef/resource/selinux/common_helpers.rb, line 17 def selinux_disabled? selinux_state.eql?(:disabled) end
Source
# File lib/chef/resource/selinux/common_helpers.rb, line 21 def selinux_enforcing? selinux_state.eql?(:enforcing) end
Source
# File lib/chef/resource/selinux/common_helpers.rb, line 25 def selinux_permissive? selinux_state.eql?(:permissive) end
Source
# File lib/chef/resource/selinux/common_helpers.rb, line 33 def selinux_state state = shell_out!("getenforce").stdout.strip.downcase.to_sym raise "Got unknown SELinux state #{state}" unless %i{disabled enforcing permissive}.include?(state) state end
Source
# File lib/chef/resource/selinux/common_helpers.rb, line 29 def state_change_reboot_required? (selinux_disabled? && %i{enforcing permissive}.include?(action)) || ((selinux_enforcing? || selinux_permissive?) && action == :disabled) end