Reviewed: https://review.openstack.org/494468 Committed: https://git.openstack.org/cgit/openstack/openstack-ansible/commit/?id=2bf2d65c4dcd17219187fd12014ae87e346199b7 Submitter: Jenkins Branch: master commit 2bf2d65c4dcd17219187fd12014ae87e346199b7 Author: Jean-Philippe Evrard <jean-philippe.evrard at rackspace.co.uk> Date: Thu Aug 17 10:08:01 2017 +0000 Allow Keepalived to read haproxy pid file Keepalived, luckily for us, currently ship an example file of a SELinux rule to read haproxy pid. We could simply use this available file to compile the selinux rules. Change-Id: I8e6d811bca7553d82591a6c96f4316377d0d1829 Fixes-Bug: #1702123 ** Changed in: openstack-ansible Status: In Progress => Fix Released -- You received this bug notification because you are a member of OpenStack Security, which is subscribed to OpenStack. https://bugs.launchpad.net/bugs/1702123 Title: SELinux error: keepalived reading haproxy pid file Status in openstack-ansible: Fix Released Bug description: When keepalived tries to read the haproxy PID file, SELinux denies the access. This should be added into the haproxy role. To manage notifications about this bug go to: https://bugs.launchpad.net/openstack-ansible/+bug/1702123/+subscriptions