X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/19aeb7bfffb852ab8be005c004b1ef8e555a5b77..8cdbdc0855c67a85aeafbfa1b6d6a6bc3a5ed497:/cookbooks/sysctl/recipes/default.rb?ds=sidebyside diff --git a/cookbooks/sysctl/recipes/default.rb b/cookbooks/sysctl/recipes/default.rb index de6cdcbf5..f16537c51 100644 --- a/cookbooks/sysctl/recipes/default.rb +++ b/cookbooks/sysctl/recipes/default.rb @@ -1,14 +1,14 @@ # -# Cookbook Name:: sysctl +# Cookbook:: sysctl # Recipe:: default # -# Copyright 2010, Tom Hughes +# Copyright:: 2010, Tom Hughes # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # -# http://www.apache.org/licenses/LICENSE-2.0 +# https://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, @@ -17,35 +17,36 @@ # limitations under the License. # -package "procps" - -directory "/etc/sysctl.d" do - owner "root" - group "root" - mode 0o755 +file "/etc/sysctl.d/60-chef.conf" do + action :delete end -execute "sysctl" do - action :nothing - command "/sbin/sysctl -p /etc/sysctl.d/60-chef.conf" -end +if node[:virtualization][:role] != "guest" || + (node[:virtualization][:system] != "lxc" && + node[:virtualization][:system] != "lxd" && + node[:virtualization][:system] != "openvz") + keys = [] -template "/etc/sysctl.d/60-chef.conf" do - source "chef.conf.erb" - owner "root" - group "root" - mode 0o644 - notifies :run, "execute[sysctl]" -end + Dir.new("/etc/sysctl.d").each_entry do |file| + next unless file =~ /^99-chef-(.*)\.conf$/ + + keys.push(Regexp.last_match(1)) + end + + node[:sysctl].each_value do |group| + group[:parameters].each do |key, value| + sysctl key do + value value + # comment group[:comment] + end -node[:sysctl].each_value do |group| - group[:parameters].each do |key, value| - sysctl_file = "/proc/sys/#{key.tr('.', '/')}" + keys.delete(key) + end + end - file sysctl_file do - content "#{value}\n" - atomic_update false - only_if { File.exist?(sysctl_file) } + keys.each do |key| + sysctl key do + action :remove end end end