--- # Copyright 2017, SUSE LINUX GmbH. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. - name: Install zypper packages zypper: name: "{{ lxc_hosts_distro_packages }}" state: "{{ lxc_hosts_package_state }}" register: install_packages until: install_packages|success retries: 5 delay: 2 tags: - lxc-packages - name: Drop lxc-openstack apparmor profile template: src: "lxc-openstack.apparmor.j2" dest: "/etc/apparmor.d/lxc/lxc-openstack" owner: "root" group: "root" mode: "0644" notify: - Start apparmor - Reload apparmor tags: - lxc-files - lxc-apparmor - lxc_hosts-config - name: Drop post up script copy: content: | #!/usr/bin/env bash if [ "${1}" == "{{ lxc_net_bridge }}" ];then if [ "{{ lxc_net_nat }}" == "True" ];then /usr/local/bin/lxc-system-manage iptables-create /usr/local/bin/lxc-system-manage dnsmasq-start || true fi fi dest: "/etc/sysconfig/network/scripts/ifup-post-{{ lxc_net_bridge }}" owner: "root" group: "root" mode: "0755" tags: - lxc-post-up - lxc_hosts-config - name: Drop post down script copy: content: | #!/usr/bin/env bash if [ "${1}" == "{{ lxc_net_bridge }}" ];then if [ "{{ lxc_net_nat }}" == "True" ];then /usr/local/bin/lxc-system-manage dnsmasq-stop /usr/local/bin/lxc-system-manage iptables-remove fi fi dest: "/etc/sysconfig/network/scripts/ifdown-post-{{ lxc_net_bridge }}" owner: "root" group: "root" mode: "0755" tags: - lxc-post-down - lxc_hosts-config - name: Flush handler to reload apparmor profiles meta: flush_handlers - name: Enable lxc service service: name: lxc enabled: "yes" tags: - lxc_hosts-config