Merge pull request #1 from wgjohnson/get_selinux_facts
starting fresh, doing it 'right'
This commit is contained in:
commit
153df9885e
1 changed files with 24 additions and 0 deletions
|
@ -267,8 +267,32 @@ def get_public_ssh_host_keys(facts):
|
|||
else:
|
||||
facts['ssh_host_key_rsa_public'] = rsa.split()[1]
|
||||
|
||||
def get_selinux_facts(facts):
|
||||
if os.path.exists("/usr/sbin/sestatus"):
|
||||
cmd = subprocess.Popen("/usr/sbin/sestatus", shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
|
||||
out, err = cmd.communicate()
|
||||
if err == '':
|
||||
facts['selinux'] = {}
|
||||
list = out.split("\n")
|
||||
status = re.search("(enabled|disabled)", list[0])
|
||||
if status.group() == "enabled":
|
||||
mode = re.search("(enforcing|disabled|permissive)", list[2])
|
||||
config_mode = re.search("(enforcing|disabled|permissive)", list[3])
|
||||
policyvers = re.search("\d+", list[4])
|
||||
type = re.search("(targeted|strict|mls)", list[5])
|
||||
facts['selinux']['status'] = status.group()
|
||||
facts['selinux']['mode'] = mode.group()
|
||||
facts['selinux']['config_mode'] = config_mode.group()
|
||||
facts['selinux']['policyvers'] = policyvers.group()
|
||||
facts['selinux']['type'] = type.group()
|
||||
elif status.group() == "disabled":
|
||||
facts['selinux']['status'] = status.group()
|
||||
else:
|
||||
facts['selinux'] = False
|
||||
|
||||
def get_service_facts(facts):
|
||||
get_public_ssh_host_keys(facts)
|
||||
get_selinux_facts(facts)
|
||||
|
||||
def ansible_facts():
|
||||
facts = {}
|
||||
|
|
Loading…
Reference in a new issue