From 4e23d73129ccdfa2ac276813a4066539b036018e Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Wed, 1 Feb 2023 10:36:37 -0800
Subject: [PATCH] bkernel: set pesign perms with acl instead of user/group

We have to use acls here because the mock chroot has it's own user/group
files and it dynamically adds users, but if we use acls it will look up
the user and do the right thing because the name is the same.
(Hopefully)

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
---
 roles/bkernel/tasks/main.yml | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/roles/bkernel/tasks/main.yml b/roles/bkernel/tasks/main.yml
index f2c72bc7e3..05482e103e 100644
--- a/roles/bkernel/tasks/main.yml
+++ b/roles/bkernel/tasks/main.yml
@@ -35,12 +35,7 @@
   - bkernel
 
 - name: /var/run/pesign directory perms
-  file: state=directory path=/var/run/pesign owner=pesign group=kojibuilder mode=0770
-  tags:
-  - bkernel
-
-- name: /var/run/pesign socket perms
-  file: path=/var/run/pesign/socket owner=pesign group=kojibuilder mode=0660
+  acl: path=/var/run/pesign default=true entity=kojibuilder etype=group permissions=rwx recursive=true state=present
   tags:
   - bkernel