From 6fec976422050662593620a5fc566554ffc0157f Mon Sep 17 00:00:00 2001
From: Kevin Olbrich <ko@sv01.de>
Date: Mon, 25 Nov 2019 19:54:27 +0100
Subject: [PATCH] disable AppArmor by default

---
 bootstrapvz/common/task_groups.py |  1 +
 bootstrapvz/common/tasks/grub.py  | 10 ++++++++++
 2 files changed, 11 insertions(+)

diff --git a/bootstrapvz/common/task_groups.py b/bootstrapvz/common/task_groups.py
index 009e59c..dcf66ea 100644
--- a/bootstrapvz/common/task_groups.py
+++ b/bootstrapvz/common/task_groups.py
@@ -166,6 +166,7 @@ def get_bootloader_group(manifest):
                       grub.InitGrubConfig,
                       grub.SetGrubTerminalToConsole,
                       grub.DisableConsoleBlanking,
+                      grub.DisableAppArmor,
                       grub.SetIoScheduler,
                       grub.MakeLinuxFastAgain,
                       grub.SetGrubConsolOutputDeviceToSerial,
diff --git a/bootstrapvz/common/tasks/grub.py b/bootstrapvz/common/tasks/grub.py
index 3550e5b..2bfe0e5 100644
--- a/bootstrapvz/common/tasks/grub.py
+++ b/bootstrapvz/common/tasks/grub.py
@@ -254,6 +254,16 @@ class SetIoScheduler(Task):
         info.grub_config['GRUB_CMDLINE_LINUX'].append('elevator=noop')
 
 
+class DisableAppArmor(Task):
+    description = 'Disable AppArmor'
+    phase = phases.system_modification
+    successors = [WriteGrubConfig]
+
+    @classmethod
+    def run(cls, info):
+        info.grub_config['GRUB_CMDLINE_LINUX'].append('apparmor=0')
+
+
 class MakeLinuxFastAgain(Task):
     description = 'make-linux-fast-again.com'
     phase = phases.system_modification