use lgetfilecon_raw instead of lgetfilecon to not depend on local level translation

If SELinux is enabled and mcstrans is running, daemons are restarted on each run. After further debugging, it turn out that ansible compare the untranslated level 's0' with the translated level 'SystemLow' due to mcstrans being running, which trigger a handler since this is considered as a change.

use lgetfilecon_raw instead of lgetfilecon to not depend on local level translation
If SELinux is enabled and mcstrans is running, daemons are restarted on each run. After further debugging, it turn out that ansible compare the untranslated level 's0' with the translated level 'SystemLow' due to mcstrans being running, which trigger a handler since this is considered as a change.
3fb2da63 · Michael Scherer · 56a00e06 · 3fb2da63
Commit 3fb2da63 authored Aug 05, 2013 by Michael Scherer
Hide whitespace changes
Inline Side-by-side

Showing with 1 additions and 1 deletions

lib/ansible/module_common.py
+1 -1

No files found.
--- a/lib/ansible/module_common.py
+++ b/lib/ansible/module_common.py
@@ -315,7 +315,7 @@ class AnsibleModule(object):
        if not HAVE_SELINUX or not self.selinux_enabled():
            return context
        try:
-            ret = selinux.lgetfilecon(self._to_filesystem_str(path))
+            ret = selinux.lgetfilecon_raw(self._to_filesystem_str(path))
        except OSError, e:
            if e.errno == errno.ENOENT:
                self.fail_json(path=path, msg='path %s does not exist' % path)