From 4bc587e4089b0658eb1826cbddc87deed75d006b Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Tue, 20 Dec 2022 15:19:46 -0600
Subject: [PATCH] r/dch-selinux: Install dch-selinux package

The *dch-selinux* package contains customized SELinux policy modules.
I haven't worked out exactly how to build an publish it through a
continuous integration pipeline yet, so for now it's just hosted in my
user `public_html` folder on the main file server.
---
 roles/dch-selinux/files/Fedora.repo |  6 ++++++
 roles/dch-selinux/tasks/main.yml    | 16 ++++++++++++++++
 2 files changed, 22 insertions(+)
 create mode 100644 roles/dch-selinux/files/Fedora.repo
 create mode 100644 roles/dch-selinux/tasks/main.yml

diff --git a/roles/dch-selinux/files/Fedora.repo b/roles/dch-selinux/files/Fedora.repo
new file mode 100644
index 0000000..2f1098a
--- /dev/null
+++ b/roles/dch-selinux/files/Fedora.repo
@@ -0,0 +1,6 @@
+[dch-selinux]
+name=dch-selinux
+baseurl=https://files.pyrocufflink.blue/~dustin/dch-selinux/fedora/$releasever/
+enabled=1
+gpgcheck=0
+skip_if_unavailable=True
diff --git a/roles/dch-selinux/tasks/main.yml b/roles/dch-selinux/tasks/main.yml
new file mode 100644
index 0000000..8bd8a5b
--- /dev/null
+++ b/roles/dch-selinux/tasks/main.yml
@@ -0,0 +1,16 @@
+- name: ensure dch-selinux repository is installed
+  copy:
+    src: >-
+      {{ ansible_distribution }}.repo
+    dest: /etc/yum.repos.d/dch-selinux.repo
+    mode: u=rw,go=r
+  tags:
+  - yum-repo
+  - install
+
+- name: ensure dch-selinux is installed
+  package:
+    name: dch-selinux
+    state: present
+  tags:
+  - install