diff options
Diffstat (limited to 'lib/facter/selinux.rb')
| -rw-r--r-- | lib/facter/selinux.rb | 45 |
1 files changed, 45 insertions, 0 deletions
diff --git a/lib/facter/selinux.rb b/lib/facter/selinux.rb new file mode 100644 index 0000000..0e9637d --- /dev/null +++ b/lib/facter/selinux.rb @@ -0,0 +1,45 @@ +# Fact for SElinux +# Written by immerda admin team (admin(at)immerda.ch) + +Facter.add("selinux") do + confine :kernel => :linux + + setcode do + result = "false" + if FileTest.exists?("/selinux/enforce") + if FileTest.exists?("/proc/self/attr/current") + if (File.read("/proc/self/attr/current") != "kernel\0") + result = "true" + end + end + end + result + end +end + +Facter.add("selinux_enforced") do + confine :selinux => :true + + setcode do + result = "false" + if FileTest.exists?("/selinux/enforce") and File.read("/selinux/enforce") =~ /1/i + result = "true" + end + result + end +end + +Facter.add("selinux_policyversion") do + confine :selinux => :true + setcode do + File.read("/selinux/policyvers") + end +end + +Facter.add("selinux_mode") do + confine :selinux => :true + setcode do + %x{/usr/sbin/sestatus | /bin/grep "Policy from config file:" | awk '{print $5}'} + end +end + |