-# Cookbook Name:: sysctl
+# Cookbook:: sysctl
# Recipe:: default
-# Copyright 2010, Tom Hughes
+# Copyright:: 2010, Tom Hughes
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
-# http://www.apache.org/licenses/LICENSE-2.0
+# https://www.apache.org/licenses/LICENSE-2.0
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# limitations under the License.
-package "procps"
-directory "/etc/sysctl.d" do
- owner "root"
- group "root"
- mode 0o755
+file "/etc/sysctl.d/60-chef.conf" do
+ action :delete
-execute "sysctl" do
- action :nothing
- command "/sbin/sysctl -p /etc/sysctl.d/60-chef.conf"
+if node[:virtualization][:role] != "guest" ||
+ (node[:virtualization][:system] != "lxc" &&
+ node[:virtualization][:system] != "lxd")
+ keys = []
-template "/etc/sysctl.d/60-chef.conf" do
- source "chef.conf.erb"
- owner "root"
- group "root"
- mode 0o644
- notifies :run, "execute[sysctl]"
+ Dir.new("/etc/sysctl.d").each_entry do |file|
+ next unless file =~ /^99-chef-(.*)\.conf$/
+ keys.push(Regexp.last_match(1))
+ end
+ node[:sysctl].each_value do |group|
+ group[:parameters].each do |key, value|
+ sysctl key do
+ value value
+ # comment group[:comment]
+ end
-node[:sysctl].each_value do |group|
- group[:parameters].each do |key, value|
- sysctl_file = "/proc/sys/#{key.tr('.', '/')}"
+ keys.delete(key)
+ end
+ end
- file sysctl_file do
- content "#{value}\n"
- atomic_update false
- only_if { File.exist?(sysctl_file) }
+ keys.each do |key|
+ sysctl key do
+ action :remove