Add selinux modules for tor relays and update fingerprint list

5 files changed, 2 insertions, 3 deletions

diff --git a/roles/torrelay/files/tor-bind-pop_port-fedora-32.pp b/roles/torrelay/files/tor-bind-pop_port-fedora-32.pp
new file mode 100644
index 0000000..999a3af
--- /dev/null
+++ b/roles/torrelay/files/tor-bind-pop_port-fedora-32.pp
diff --git a/roles/torrelay/files/tor-dac-capabilities-fedora-32.pp b/roles/torrelay/files/tor-dac-capabilities-fedora-32.pp
new file mode 100644
index 0000000..ddbcb61
--- /dev/null
+++ b/roles/torrelay/files/tor-dac-capabilities-fedora-32.pp
diff --git a/roles/torrelay/files/tor-set-capabilities-fedora-32.pp b/roles/torrelay/files/tor-set-capabilities-fedora-32.pp
new file mode 100644
index 0000000..8afd01b
--- /dev/null
+++ b/roles/torrelay/files/tor-set-capabilities-fedora-32.pp
diff --git a/roles/torrelay/tasks/selinux.yml b/roles/torrelay/tasks/selinux.yml
index f946b0b..27139db 100644
--- a/roles/torrelay/tasks/selinux.yml
+++ b/roles/torrelay/tasks/selinux.yml
@@ -17,7 +17,7 @@
     - tor-bind-pop_port
     - tor-dac-capabilities
     - tor-set-capabilities
-  when: ansible_distribution == "Fedora" and ansible_distribution_version|int <= 30
+  when: ansible_distribution == "Fedora" and ansible_distribution_version|int <= vermodule|int
 
 - name: Vérification des modules sur Centos
   shell: semodule -l | grep '{{ item }}'
diff --git a/roles/torrelay/vars/main.yml b/roles/torrelay/vars/main.yml
index a2fe33a..222de46 100644
--- a/roles/torrelay/vars/main.yml
+++ b/roles/torrelay/vars/main.yml
@@ -1,9 +1,8 @@
 fingerprints:
-  - 6BBA8C2C6171D33734DB8452B2F0A1C4EB816312
-  - 07CD476D9CC136C2076464B839BF1768D16EDC15
   - BB60F5BA113A0B8B44B7B37DE3567FE561E92F78
   - 36045C1900EC3FDF1DDA9BEC72DDF7DE50DAF021
 httpport: 80
 httpsport: 443
 pop3port: 110
 pop3sport: 995
+vermodule: "32"