Upstream
/
k3s-ansible
mirror of https://github.com/k3s-io/k3s-ansible.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Add apparmor-parser support for SUSE 

Signed-off-by: Derek Nola <derek.nola@suse.com>
This commit is contained in:
Derek Nola 2023-11-10 09:34:49 -08:00
parent e9a283b48c
commit bfd030290d
1 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
roles/prereq/tasks/main.yml
View File

@ -118,6 +118,25 @@
- net.bridge.bridge-nf-call-iptables
- net.bridge.bridge-nf-call-ip6tables
- name: Check for Apparmor existence
ansible.builtin.stat:
path: /sys/module/apparmor/parameters/enabled
register: apparmor_enabled
- name: Check if Apparmor is enabled
when: apparmor_enabled.stat.exists
ansible.builtin.command: cat /sys/module/apparmor/parameters/enabled
register: apparmor_status
changed_when: false
- name: Install Apparmor Parser
when:
- apparmor_status.stdout == "Y"
- ansible_os_family == 'Suse'
ansible.builtin.package:
name: apparmor-parser
state: present
- name: Add /usr/local/bin to sudo secure_path
ansible.builtin.lineinfile:
line: 'Defaults secure_path = /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin'