From c11c4e74822b1cf30a8958680ea33c26e09b471f Mon Sep 17 00:00:00 2001
From: Menno van Leeuwen <menno@vleeuwen.me>
Date: Wed, 15 Jan 2025 11:43:11 +0100
Subject: [PATCH] add SELinux check and adjust mode in setup script for
 non-NixOS systems

---
 setup.sh | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/setup.sh b/setup.sh
index 1194fac..d0294b5 100755
--- a/setup.sh
+++ b/setup.sh
@@ -409,6 +409,23 @@ warning_prompt() {
     log_info "Starting setup..."
 }
 
+check_selinux() {
+    # Only on Non-NixOS based systems
+    if ! command -v nixos-version >/dev/null 2>&1; then
+        return 0
+    fi
+    
+    if [ -eq "$(getenforce)" "Enforcing" ]; then
+        log_warning "SELinux is enabled. Adjusting SELinux to permissive mode..."
+        sudo setenforce Permissive || die "Failed to disable SELinux"
+        tee /etc/selinux/config <<EOF
+SELINUX=permissive
+SELINUXTYPE=targeted
+EOF
+        log_success "SELinux disabled successfully."
+    fi
+}
+
 main() {
     # Check if setup has already been run
     if [ -f "$SETUP_MARKER" ]; then
@@ -428,6 +445,7 @@ main() {
     # Run setup steps
     warning_prompt
     prepare_hostname
+    check_selinux
     install_nix
     install_home_manager
     setup_symlinks