From 8cea9f7e5f669da337ffbb0d02e0d849a3f8cacf Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Thu, 24 Sep 2020 18:37:40 +0000
Subject: [PATCH] clamav: Initial version of role

---
 roles/clamav/handlers/main.yml |  6 ++++++
 roles/clamav/meta/main.yml     |  4 ++++
 roles/clamav/tasks/main.yml    | 35 ++++++++++++++++++++++++++++++++++
 3 files changed, 45 insertions(+)
 create mode 100644 roles/clamav/handlers/main.yml
 create mode 100644 roles/clamav/meta/main.yml
 create mode 100644 roles/clamav/tasks/main.yml

diff --git a/roles/clamav/handlers/main.yml b/roles/clamav/handlers/main.yml
new file mode 100644
index 0000000..52ae1df
--- /dev/null
+++ b/roles/clamav/handlers/main.yml
@@ -0,0 +1,6 @@
+---
+
+- name: restart clamd
+  service:
+    name: clamd@scan
+    state: restarted
diff --git a/roles/clamav/meta/main.yml b/roles/clamav/meta/main.yml
new file mode 100644
index 0000000..ffbd9de
--- /dev/null
+++ b/roles/clamav/meta/main.yml
@@ -0,0 +1,4 @@
+---
+
+dependencies:
+  - {role: epel-repo}
diff --git a/roles/clamav/tasks/main.yml b/roles/clamav/tasks/main.yml
new file mode 100644
index 0000000..8957c7d
--- /dev/null
+++ b/roles/clamav/tasks/main.yml
@@ -0,0 +1,35 @@
+---
+
+- name: install packages
+  package:
+    name: "{{ item }}"
+    state: installed
+  with_items:
+    - clamav
+    - clamav-update
+    - clamd
+
+- name: enable clamd local socket
+  lineinfile:
+    path: /etc/clamd.d/scan.conf
+    regexp: "^#LocalSocket .*"
+    line: "LocalSocket /run/clamd.scan/clamd.sock"
+  notify: restart clamd
+
+- name: link clamd service
+  file:
+    dest: /etc/systemd/system/clamd@scan.service
+    src: /lib/systemd/system/clamd@.service
+    state: link
+    owner: root
+    group: "{{ ansible_wheel }}"
+    follow: false
+
+- name: enable services
+  service:
+    name: "{{ item }}"
+    enabled: true
+    state: started
+  with_items:
+    - clamav-freshclam
+    - clamd@scan