This patch enables the appropriate Linux Security Module (LSM) for the system
rather than simply checking it. This brings the role more in line with the
STIG requirements and allows it to be used as a more generic role in other
non-OpenStack-Ansible deployments.
It shouldn't affect OpenStack-Ansible deployments since AppArmor is expected
to be running in those deployments.
Documentation and release notes are included.
Change-Id: Ia017f12be0d60ea74b54396bc8278e4db92295ba
31424a42af