Puppet Class: tpm::tboot::lock_kernel
- Defined in:
- manifests/tboot/lock_kernel.pp
Summary
Lock the kernel to avoid automatically invalidating the launch policyOverview
This class is controlled by ‘tpm::tboot`
5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
# File 'manifests/tboot/lock_kernel.pp', line 5
class tpm::tboot::lock_kernel {
assert_private()
$lock_kernel_packages = $tpm::tboot::lock_kernel_packages
$kernel_packages_to_lock = $tpm::tboot::kernel_packages_to_lock
$kernel_packages_to_lock.each |$kernel_package| {
$_ensure = $lock_kernel_packages ? {
true => present,
default => absent
}
yum::versionlock { "*:${kernel_package}-*-*.*":
ensure => $_ensure
}
}
}
|