infrastructure/ansible
1
0
Fork 0
Code Pull requests 7 Activity Actions
ansible/roles/selinux/module/tasks/main.yml
Ryan Lerch 462176464b ansiblelint fixes-- fqcn[action-core] - command to ansible.builtin.command 
Replaces many references to  command: with ansible.builtin.command

Signed-off-by: Ryan Lerch <rlerch@redhat.com>
2025-01-15 11:26:47 +10:00

40 lines
1.3 KiB
YAML
Raw Blame History

---
# Builds and install a custom SELinux policy module.
#
# The policy file (.te) should be in the source of the
#
# Required parameters:
#
# - policy_file (str): the file containing custom SELinux policy to build and
# install.
# - policy_name (str): the name of the custom SELinux policy to build and
# install.
- name: Copy over our custom selinux module for {{ policy_name }}
ansible.builtin.copy: src="{{ policy_file }}" dest="/usr/local/share/{{ policy_name }}.te"
register: selinux_module
tags:
- selinux
- selinux/module
- name: Build our custom selinux module
ansible.builtin.command: checkmodule -M -m -o /usr/local/share/{{ policy_name }}.mod /usr/local/share/{{ policy_name }}.te
when: selinux_module is changed
tags:
- selinux
- selinux/module
- name: Compile our custom selinux module
ansible.builtin.command: semodule_package -o /usr/local/share/{{ policy_name }}.pp -m /usr/local/share/{{ policy_name }}.mod
when: selinux_module is changed
tags:
- selinux
- selinux/module
- name: Install our custom selinux module
ansible.builtin.command: semodule -i /usr/local/share/{{ policy_name }}.pp
when: selinux_module is changed
tags:
- selinux
- selinux/module
View git blame Copy permalink