OS harden will not enable SELinux if SELinux is disabled

**Describe the bug**
In the OS Hardening role SELinux will not be enabled if SELinux is already disabled

**Expected behavior**
Expect SELinux to be enabled and configured.
**Actual behavior**



```paste below
TASK [devsec.hardening.os_hardening : Configure selinux | selinux-01] ********** 
skipping: [SELinux-Disabled]
ok: [SELinux-Enabled]
```

**Example Playbook**



```paste below
---
- hosts: all
  collections:
    - devsec_hardening
  roles:
    - os_hardening
```

**OS / Environment**


Both targets running CentOS 7

**Ansible Version**

```paste below
AWX 0.20.0 on k3s.
quay.io/ansible/awx-ee:latest as execution eniroment. No modifications
```

**Role Version**



```paste below
7.14.1
```

**Additional context**
This conditional will return false if SELinux is not enabled

https://github.com/dev-sec/ansible-collection-hardening/blob/1d3ea50de629eb3e54291d2a59fe378991b0037a/roles/os_hardening/tasks/hardening.yml#L96

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

OS harden will not enable SELinux if SELinux is disabled #537

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

OS harden will not enable SELinux if SELinux is disabled #537

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions