VhX)\ddlmZmZmZeZdZdZddlZddl Z dZ ddl Z dZ dZ ddlZdZddlmZmZddlmZdd lmZmZdd Zd Zd Zd ZdZdZddZ dZ!dZ"dZ#dZ$e%dk(re$yy#e $re jZ dZ YjwxYw#e $re jZdZYwxYw))absolute_importdivisionprint_functiona" --- module: seboolean short_description: Toggles SELinux booleans description: - Toggles SELinux booleans. version_added: "1.0.0" options: name: description: - Name of the boolean to configure. required: true type: str persistent: description: - Set to V(true) if the boolean setting should survive a reboot. type: bool default: false state: description: - Desired boolean value. type: bool required: true ignore_selinux_state: description: - Useful for scenarios (chrooted environment) that you can't get the real SELinux state. type: bool default: false notes: - Not tested on any Debian based system. requirements: - libselinux-python - libsemanage-python - python3-libsemanage author: - Stephen Fromm (@sfromm) z - name: Set httpd_can_network_connect flag on and keep it persistent across reboots ansible.posix.seboolean: name: httpd_can_network_connect state: true persistent: true NTF) AnsibleModulemissing_required_lib)to_text)respawn_moduleHAS_RESPAWN_UTILc6|durdStjS)NT)selinuxis_selinux_enabled)ignore_selinux_states k/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/ansible/posix/plugins/modules/seboolean.pyget_runtime_statusrPs'4/4QW5O5O5QQcd} tj|}|dk(ryy#t$r|jd|zY'wxYw)Nrz0Failed to determine current state for boolean %smsgTF)r security_get_boolean_activeOSError fail_json)modulenamestates rget_boolean_valuerTsW EX33D9 z XORVVWXs AActj}|s|jdtj|}|dkrtj||dkr|jd|dk(rJB Av((0KL $$VU3**67FCaG((0IJ  & & (11&'6JQN((0MN ##G, $ 'rctj|\}}|dkr'tj||jdtj|||dkr'tj||jdtj ||\}}|dkr'tj||jdtj ||\}}|dkr'tj||jd|s*tj||jd|ztj||\}}|dkr'tj||jdtj|}tj|tj|tj||S) Nrr+rr,r-r.r/r0) rr1r!rr2r3r4r5semanage_bool_get_valuer9r:) rr%rr<r=r>r?r@r;s rsemanage_get_boolean_valuerDs++F3GB Av((0GH&&vsD9A=((0IJ44VSAKB Av((0JK..vw?JB Av((0DE ((0UX\\]--fg>JB Av((0KL  , ,V 4E ##G, $ ' Lrctj||tj|dkr(tj||j dyy)Nrz$Failed to commit changes to semanager)rsemanage_set_reloadsemanage_commitr!r)rr%loads rrGrGsJ   .'!+((0CD,rctj|}tj||dkr|jdyy)Nrz"Failed to disconnect from semanager)rsemanage_disconnectr!r)rr%r<s rsemanage_destroy_handlerKs>  % %f -B $$V, AvABrc Bd}d}|rd} t|}t||t|||}||k7r(d}|jst ||||t ||t |||S#t$r,}|jd|dt|Yd}~|Sd}~wwxYw)NrFrTz$Failed to manage policy for boolean z: r) r'r)rD check_moderArGrK Exceptionrr)rrrr;changedr% cur_valuees rsemanage_boolean_valuerRs EG  a$V,"662.vvtD  G$$*664G// N adT[\]T^_`` NasAA)) B2!BBcd}d}|rd} tj||}|dk(ryy#t$r|jd|d|Y*wxYw)NrrFailed to set boolean  to rTF)r security_set_booleanrr)rrrr<r;s rset_boolean_valuerWsd B E O  ) )$ 6 Qw OuMNOs'!A  A c tttddtddtddtddd}tststr t d ts |j td t ts |j td t |jd }t|s|j d|jd}|jd}|jd}t|||}d}ttdrtj|}|rt|||}notj r[t#||}||k7rJd}|j$sr{s A@ $ L  L M K.lR .E +(\"JEC( =@ zFI*i**,OL+y++-Ms"A2B2B  B B+*B+