---
- name: Enable selinux-ng repo for Amazon Linux for container-selinux
  command: amazon-linux-extras enable selinux-ng

- name: Enable EPEL repo for Amazon Linux
  yum_repository:
    name: epel
    file: epel
    description: Extra Packages for Enterprise Linux 7 - $basearch
    baseurl: http://download.fedoraproject.org/pub/epel/7/$basearch
    gpgcheck: true
    gpgkey: http://download.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-7
    skip_if_unavailable: true
    enabled: true
    repo_gpgcheck: false
  when: epel_enabled

# iproute is required for networking related facts gathering
# See https://docs.ansible.com/ansible/latest/playbook_guide/playbooks_vars_facts.html#package-requirements-for-fact-gathering
# Note: It is not recommended way, but since the tasks execution order, put it here is the simplest way so far. We can move it to a proper place later.
# TODO: move this to roles/kubernetes/preinstall/vars/main.yml -> pkgs variables
# Currently not possible because the collect the network facts before that step, needs reordering of the exec flow.
- name: Ensure iproute is installed
  package:
    name: iproute
    state: present
  become: true