Vh+|ddlmZmZmZeZdZdZddlZddl Z ddl Z ddl m Z ddl mZd dZdZed k(reyy) )absolute_importdivisionprint_functiona module: pam_limits author: - "Sebastien Rohaut (@usawa)" short_description: Modify Linux PAM limits description: - The M(community.general.pam_limits) module modifies PAM limits. - The default file is V(/etc/security/limits.conf). - For the full documentation, see C(man 5 limits.conf). extends_documentation_fragment: - community.general.attributes attributes: check_mode: support: full version_added: 2.0.0 diff_mode: support: full version_added: 2.0.0 options: domain: type: str description: - A username, @groupname, wildcard, UID/GID range. required: true limit_type: type: str description: - Limit type, see C(man 5 limits.conf) for an explanation. required: true choices: ["hard", "soft", "-"] limit_item: type: str description: - The limit to be set. required: true choices: - "core" - "data" - "fsize" - "memlock" - "nofile" - "rss" - "stack" - "cpu" - "nproc" - "as" - "maxlogins" - "maxsyslogins" - "priority" - "locks" - "sigpending" - "msgqueue" - "nice" - "rtprio" - "chroot" value: type: str description: - The value of the limit. - Value must either be V(unlimited), V(infinity) or V(-1), all of which indicate no limit, or a limit of 0 or larger. - Value must be a number in the range -20 to 19 inclusive, if O(limit_item) is set to V(nice) or V(priority). - Refer to the C(man 5 limits.conf) manual pages for more details. required: true backup: description: - Create a backup file including the timestamp information so you can get the original file back if you somehow clobbered it incorrectly. required: false type: bool default: false use_min: description: - If set to V(true), the minimal value will be used or conserved. - If the specified value is inferior to the value in the file, file content is replaced with the new value, else content is not modified. required: false type: bool default: false use_max: description: - If set to V(true), the maximal value will be used or conserved. - If the specified value is superior to the value in the file, file content is replaced with the new value, else content is not modified. required: false type: bool default: false dest: type: str description: - Modify the limits.conf path. required: false default: "/etc/security/limits.conf" comment: type: str description: - Comment associated with the limit. required: false default: '' notes: - If O(dest) file does not exist, it is created. a- - name: Add or modify nofile soft limit for the user joe community.general.pam_limits: domain: joe limit_type: soft limit_item: nofile value: 64000 - name: Add or modify fsize hard limit for the user smith. Keep or set the maximal value community.general.pam_limits: domain: smith limit_type: hard limit_item: fsize value: 1000000 use_max: true - name: Add or modify memlock, both soft and hard, limit for the user james with a comment community.general.pam_limits: domain: james limit_type: '-' limit_item: memlock value: unlimited comment: unlimited memory lock for james - name: Add or modify hard nofile limits for wildcard domain community.general.pam_limits: domain: '*' limit_type: hard limit_item: nofile value: 39693561 N) AnsibleModule) to_nativec|dvr9 dt|cxkxrdknc}|s|j|d|d|dyy|d vs-|js|j|d|d|d yyy#t$rd}Y^wxYw) NnicepriorityiFz Value of z for item z is invalid. Value must be a number in the range -20 to 19 inclusive. Refer to the limits.conf(5) manual pages for more details.msg unlimitedinfinityz-1z is invalid. Value must either be 'unlimited', 'infinity' or -1, all of which indicate no limit, or a limit of 0 or larger. Refer to the limits.conf(5) manual pages for more details.)int ValueError fail_jsonisdigit)moduleitemvalueprefixvalids p/home/dcms/DCMS/lib/python3.12/site-packages/ansible_collections/community/general/plugins/modules/pam_limits.py_assert_is_valid_valuers ## 3u:++E   aginpt"v  w66%--/06tE F;J6  E sA00 A>=A>c4 gd}gd}d}tttddtdd|tdd|tddtdd tdd tdd t|d tdd d  d}|jd}|jd}|jd}|jd}|jd}|jd} |jd} |jd}|jd} d} d} tjj |r:tj |tjs|jd|zn|tjj|}tjj|r)tj |tjrd} d} n|jd|z|r| r|jdt|||| r|j|}tjd}| rg}n t|d5}t!|}dddd }t#j$d}d}|}D]}t'|d !}|j)d"r|j+|4tj,|d#|j/}|s|j+|m|j1d"d$d%} |j1d"d$d$}|j5}| s|} |j1d#}t7|d&k7r|j+||d%}|d$}|d'}|d(}t|||d)|z*||k(r||k(r||k(rd}||k(r|}|j+|.|d+vr |d,v}|d,v} ndx}} |r1|r|}n,| r|}n't9t;t=|t=|}| r8|r| r|}n1|r|}n,| r|}n't9t?t=|t=|}||k7r8d} | rd-| z} |d.z|zd.z|zd.z|z| zd/z}!|!}|j+|!|}|j+||j+||s6d} | rd-| z} |d.z|zd.z|zd.z|z| zd/z}!|!}|j+|!|jAt|jBd05}"|"jE}#ddd|jFsn| rt|d15 ddd|jItjjK|jBtjjK| |jMt| |td2jO|#34}$| r|$d5<|jPd6i|$y#1swY~xYw#t2$rd }YwxYw#1swYxYw#1swYxYw#t2$rYwxYw)7N)coredatafsizememlocknofilerssstackcpunprocas maxlogins maxsysloginsr locks sigpendingmsgqueuer rtpriochroot)softhard-z/etc/security/limits.confTstr)requiredtype)r3r4choicesFbool)defaultr4)r3r7r4) domain limit_type limit_itemruse_maxuse_minbackupdestcomment) argument_specsupports_check_moder9r:r;rr<r=r>r?r@z%s is not writable. Use sudor zFdirectory %s is not writable (check presence, access rights, use sudo)z0Cannot use use_min and use_max at the same time.z\s+rbzw+)modesurrogate_or_strict)errors# rz$Invalid configuration found in '%s'.)rr rz #  ra)beforeafter)changedrdiff backup_file))rdictparamsospathisfileaccessW_OKrdirnameisdirr backup_localrecompileopenlisttempfileNamedTemporaryFiler startswithwritesubstripsplit Exceptionrstriplenr2maxrminflushnameread check_mode atomic_moveabspathclosejoin exit_json)% pam_items pam_types limits_confrr9r:r;rr<r=r> new_commentrTdoes_not_existlimits_conf_dirrV space_patternlinesfmessagenffound new_valuelinenewline old_comment line_fields line_domain line_type line_item actual_valueactual_value_unlimitedvalue_unlimited new_limitcontent content_newres_argss% rmainrsGI&I-K E2TyITyI51V4V4F3k6%%@  ! F]]8 $F|,J|,J MM' "EmmI&GmmI&G ]]8 $F--'K-- *KGN ww~~k"yybgg.   !?+!M  N''//+6 77== )bii.Q!NG   !il{!{  |7OP6:u5))+6 JJv&M +t $ GE G  $ $$ /B EIQ&;< ??3  HHTN &&T288: HHTN --Q'* **S!,Q/K.."%KmmC( { q HHTN !!n N N "1~ vy,&L{&Z \ & Y*%<jAXE $ 44)59X)X&"'+J"J;@@&) ,I$ %I #CE C 4E$F GI)o ,I+ %I$ ,I #CE C 4E$F GIL("'+"5K"TMJ6= JTQT]]`kknrr ## HHTNcQf  +-KTMJ.5 BTIIUXccfjj  HHJ bggs %wlln %    k3'   277??2773RWW__[5QR     % <H "-F x A  2 K \%%       sH WW!.W3!W?X W! W0/W03W<?X XX__main__)r8) __future__rrrr4 __metaclass__ DOCUMENTATIONEXAMPLESrZrbrfansible.module_utils.basicr+ansible.module_utils.common.text.convertersrrr__name__rWrQrrsVA@ d L @ 4A F}!@ zFrQ