From a26a9ee14fbee42bd71779b7c5b38e494b6c9eb6 Mon Sep 17 00:00:00 2001
From: orange-llajeanne <71634751+orange-llajeanne@users.noreply.github.com>
Date: Thu, 19 May 2022 19:49:21 +0200
Subject: [PATCH] set apparmor_enabled in netchecker task (#8844)

---
 roles/kubernetes-apps/ansible/tasks/netchecker.yml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/roles/kubernetes-apps/ansible/tasks/netchecker.yml b/roles/kubernetes-apps/ansible/tasks/netchecker.yml
index d08a9ed28..b83fd3382 100644
--- a/roles/kubernetes-apps/ansible/tasks/netchecker.yml
+++ b/roles/kubernetes-apps/ansible/tasks/netchecker.yml
@@ -1,4 +1,17 @@
 ---
+- name: Kubernetes Apps | Check AppArmor status
+  command: which apparmor_parser
+  register: apparmor_status
+  when:
+    - inventory_hostname == groups['kube_control_plane'][0]
+  failed_when: false
+
+- name: Kubernetes Apps | Set apparmor_enabled
+  set_fact:
+    apparmor_enabled: "{{ apparmor_status.rc == 0 }}"
+  when:
+    - inventory_hostname == groups['kube_control_plane'][0]
+
 - name: Kubernetes Apps | Netchecker Templates list
   set_fact:
     netchecker_templates:
-- 
GitLab