mirror of
				https://github.com/ansible-collections/community.general.git
				synced 2025-10-26 05:50:36 -07:00 
			
		
		
		
	* fixed validation-modules for aix_devices.py * fixed validation-modules for aix_filesystem.py * fixed validation-modules for aix_inittab.py * fixed validation-modules for aix_lvg.py * fixed validation-modules for aix_lvol.py * fixed validation-modules for awall.py * fixed validation-modules for dconf.py * fixed validation-modules for gconftool2.py * fixed validation-modules for interfaces_file.py * fixed validation-modules for java_keystore.py * fixed validation-modules for kernel_blacklist.py * fixed validation-modules for plugins/modules/system/lbu.py * fixed validation-modules for plugins/modules/system/locale_gen.py * fixed validation-modules for plugins/modules/system/lvg.py * fixed validation-modules for plugins/modules/system/lvol.py * fixed validation-modules for plugins/modules/system/mksysb.py * fixed validation-modules for plugins/modules/system/modprobe.py * fixed validation-modules for plugins/modules/system/nosh.py * fixed validation-modules for plugins/modules/system/open_iscsi.py * fixed validation-modules for plugins/modules/system/openwrt_init.py * fixed validation-modules for plugins/modules/system/osx_defaults.py * fixed validation-modules for plugins/modules/system/pamd.py * fixed validation-modules for plugins/modules/system/pam_limits.py * fixed validation-modules for plugins/modules/system/parted.py * fixed validation-modules for plugins/modules/system/puppet.py * fixed validation-modules for plugins/modules/system/python_requirements_info.py * fixed validation-modules for plugins/modules/system/runit.py the parameter "dist" is not used anywhere in the module * fixed validation-modules for plugins/modules/system/sefcontext.py * fixed validation-modules for plugins/modules/system/selogin.py * fixed validation-modules for plugins/modules/system/seport.py * fixed validation-modules for plugins/modules/system/solaris_zone.py * fixed validation-modules for plugins/modules/system/syspatch.py * fixed validation-modules for plugins/modules/system/vdo.py * fixed validation-modules for plugins/modules/system/xfconf.py * removed ignore almost all validate-modules lines in system * removed unnecessary validations, per shippable test * kernel_blacklist: keeping blacklist_file as str instead of path * mksysb: keeping storage_path as str instead of path * pam_limits: keeping dest as str instead of path * rollback on adding doc for puppet.py legacy param * rolledback param seuser required in selogin module * rolledback changes in runit * rolledback changes in osx_defaults * rolledback changes in aix_defaults
		
			
				
	
	
		
			153 lines
		
	
	
	
		
			3.8 KiB
		
	
	
	
		
			Python
		
	
	
	
	
	
			
		
		
	
	
			153 lines
		
	
	
	
		
			3.8 KiB
		
	
	
	
		
			Python
		
	
	
	
	
	
| #!/usr/bin/python
 | |
| # encoding: utf-8 -*-
 | |
| 
 | |
| # Copyright: (c) 2013, Matthias Vogelgesang <matthias.vogelgesang@gmail.com>
 | |
| # GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
 | |
| 
 | |
| from __future__ import absolute_import, division, print_function
 | |
| __metaclass__ = type
 | |
| 
 | |
| DOCUMENTATION = '''
 | |
| ---
 | |
| module: kernel_blacklist
 | |
| author:
 | |
| - Matthias Vogelgesang (@matze)
 | |
| short_description: Blacklist kernel modules
 | |
| description:
 | |
|     - Add or remove kernel modules from blacklist.
 | |
| options:
 | |
|     name:
 | |
|         type: str
 | |
|         description:
 | |
|             - Name of kernel module to black- or whitelist.
 | |
|         required: true
 | |
|     state:
 | |
|         type: str
 | |
|         description:
 | |
|             - Whether the module should be present in the blacklist or absent.
 | |
|         choices: [ absent, present ]
 | |
|         default: present
 | |
|     blacklist_file:
 | |
|         type: str
 | |
|         description:
 | |
|             - If specified, use this blacklist file instead of
 | |
|               C(/etc/modprobe.d/blacklist-ansible.conf).
 | |
| '''
 | |
| 
 | |
| EXAMPLES = '''
 | |
| - name: Blacklist the nouveau driver module
 | |
|   community.general.kernel_blacklist:
 | |
|     name: nouveau
 | |
|     state: present
 | |
| '''
 | |
| 
 | |
| import os
 | |
| import re
 | |
| 
 | |
| from ansible.module_utils.basic import AnsibleModule
 | |
| 
 | |
| 
 | |
| class Blacklist(object):
 | |
|     def __init__(self, module, filename, checkmode):
 | |
|         self.filename = filename
 | |
|         self.module = module
 | |
|         self.checkmode = checkmode
 | |
| 
 | |
|     def create_file(self):
 | |
|         if not self.checkmode and not os.path.exists(self.filename):
 | |
|             open(self.filename, 'a').close()
 | |
|             return True
 | |
|         elif self.checkmode and not os.path.exists(self.filename):
 | |
|             self.filename = os.devnull
 | |
|             return True
 | |
|         else:
 | |
|             return False
 | |
| 
 | |
|     def get_pattern(self):
 | |
|         return r'^blacklist\s*' + self.module + '$'
 | |
| 
 | |
|     def readlines(self):
 | |
|         f = open(self.filename, 'r')
 | |
|         lines = f.readlines()
 | |
|         f.close()
 | |
|         return lines
 | |
| 
 | |
|     def module_listed(self):
 | |
|         lines = self.readlines()
 | |
|         pattern = self.get_pattern()
 | |
| 
 | |
|         for line in lines:
 | |
|             stripped = line.strip()
 | |
|             if stripped.startswith('#'):
 | |
|                 continue
 | |
| 
 | |
|             if re.match(pattern, stripped):
 | |
|                 return True
 | |
| 
 | |
|         return False
 | |
| 
 | |
|     def remove_module(self):
 | |
|         lines = self.readlines()
 | |
|         pattern = self.get_pattern()
 | |
| 
 | |
|         if self.checkmode:
 | |
|             f = open(os.devnull, 'w')
 | |
|         else:
 | |
|             f = open(self.filename, 'w')
 | |
| 
 | |
|         for line in lines:
 | |
|             if not re.match(pattern, line.strip()):
 | |
|                 f.write(line)
 | |
| 
 | |
|         f.close()
 | |
| 
 | |
|     def add_module(self):
 | |
|         if self.checkmode:
 | |
|             f = open(os.devnull, 'a')
 | |
|         else:
 | |
|             f = open(self.filename, 'a')
 | |
| 
 | |
|         f.write('blacklist %s\n' % self.module)
 | |
| 
 | |
|         f.close()
 | |
| 
 | |
| 
 | |
| def main():
 | |
|     module = AnsibleModule(
 | |
|         argument_spec=dict(
 | |
|             name=dict(type='str', required=True),
 | |
|             state=dict(type='str', default='present', choices=['absent', 'present']),
 | |
|             blacklist_file=dict(type='str')
 | |
|         ),
 | |
|         supports_check_mode=True,
 | |
|     )
 | |
| 
 | |
|     args = dict(changed=False, failed=False,
 | |
|                 name=module.params['name'], state=module.params['state'])
 | |
| 
 | |
|     filename = '/etc/modprobe.d/blacklist-ansible.conf'
 | |
| 
 | |
|     if module.params['blacklist_file']:
 | |
|         filename = module.params['blacklist_file']
 | |
| 
 | |
|     blacklist = Blacklist(args['name'], filename, module.check_mode)
 | |
| 
 | |
|     if blacklist.create_file():
 | |
|         args['changed'] = True
 | |
|     else:
 | |
|         args['changed'] = False
 | |
| 
 | |
|     if blacklist.module_listed():
 | |
|         if args['state'] == 'absent':
 | |
|             blacklist.remove_module()
 | |
|             args['changed'] = True
 | |
|     else:
 | |
|         if args['state'] == 'present':
 | |
|             blacklist.add_module()
 | |
|             args['changed'] = True
 | |
| 
 | |
|     module.exit_json(**args)
 | |
| 
 | |
| 
 | |
| if __name__ == '__main__':
 | |
|     main()
 |