diff --git a/deployment/aodh/aodh-api-container-puppet.yaml b/deployment/aodh/aodh-api-container-puppet.yaml index ff64156bca..6ed6e89f02 100644 --- a/deployment/aodh/aodh-api-container-puppet.yaml +++ b/deployment/aodh/aodh-api-container-puppet.yaml @@ -245,6 +245,7 @@ outputs: path: "{{ item.path }}" setype: "{{ item.setype }}" state: directory + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/aodh, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/aodh-api, setype: svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/aodh/aodh-evaluator-container-puppet.yaml b/deployment/aodh/aodh-evaluator-container-puppet.yaml index 18ae084be2..1b57137625 100644 --- a/deployment/aodh/aodh-evaluator-container-puppet.yaml +++ b/deployment/aodh/aodh-evaluator-container-puppet.yaml @@ -113,6 +113,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/aodh, 'setype': svirt_sandbox_file_t, 'mode': '0750' } external_upgrade_tasks: diff --git a/deployment/aodh/aodh-listener-container-puppet.yaml b/deployment/aodh/aodh-listener-container-puppet.yaml index b0eee1aeec..a592fcc445 100644 --- a/deployment/aodh/aodh-listener-container-puppet.yaml +++ b/deployment/aodh/aodh-listener-container-puppet.yaml @@ -113,6 +113,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/aodh, 'setype': svirt_sandbox_file_t, 'mode': '0750' } external_upgrade_tasks: diff --git a/deployment/aodh/aodh-notifier-container-puppet.yaml b/deployment/aodh/aodh-notifier-container-puppet.yaml index bce1a74885..945cbb7eed 100644 --- a/deployment/aodh/aodh-notifier-container-puppet.yaml +++ b/deployment/aodh/aodh-notifier-container-puppet.yaml @@ -113,6 +113,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/aodh, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/aodh, 'setype': svirt_sandbox_file_t } diff --git a/deployment/ceilometer/ceilometer-agent-central-container-puppet.yaml b/deployment/ceilometer/ceilometer-agent-central-container-puppet.yaml index 984a38f02a..c2342c96f3 100644 --- a/deployment/ceilometer/ceilometer-agent-central-container-puppet.yaml +++ b/deployment/ceilometer/ceilometer-agent-central-container-puppet.yaml @@ -169,6 +169,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/ceilometer, 'setype': svirt_sandbox_file_t, 'mode': '0750' } external_upgrade_tasks: diff --git a/deployment/ceilometer/ceilometer-agent-compute-container-puppet.yaml b/deployment/ceilometer/ceilometer-agent-compute-container-puppet.yaml index 7a143ea75b..ecb94dca8a 100644 --- a/deployment/ceilometer/ceilometer-agent-compute-container-puppet.yaml +++ b/deployment/ceilometer/ceilometer-agent-compute-container-puppet.yaml @@ -118,6 +118,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/ceilometer, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: enable virt_sandbox_use_netlink for healthcheck diff --git a/deployment/ceilometer/ceilometer-agent-ipmi-container-puppet.yaml b/deployment/ceilometer/ceilometer-agent-ipmi-container-puppet.yaml index 5e221e4411..c0de9f2904 100644 --- a/deployment/ceilometer/ceilometer-agent-ipmi-container-puppet.yaml +++ b/deployment/ceilometer/ceilometer-agent-ipmi-container-puppet.yaml @@ -136,6 +136,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/ceilometer, 'setype': svirt_sandbox_file_t, 'mode': '0750' } fast_forward_upgrade_tasks: diff --git a/deployment/ceilometer/ceilometer-agent-notification-container-puppet.yaml b/deployment/ceilometer/ceilometer-agent-notification-container-puppet.yaml index 38ce5e37a8..5819c8038f 100644 --- a/deployment/ceilometer/ceilometer-agent-notification-container-puppet.yaml +++ b/deployment/ceilometer/ceilometer-agent-notification-container-puppet.yaml @@ -227,6 +227,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/ceilometer, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: enable virt_sandbox_use_netlink for healthcheck diff --git a/deployment/cinder/cinder-api-container-puppet.yaml b/deployment/cinder/cinder-api-container-puppet.yaml index 05b8a82a85..f954e09762 100644 --- a/deployment/cinder/cinder-api-container-puppet.yaml +++ b/deployment/cinder/cinder-api-container-puppet.yaml @@ -413,6 +413,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/cinder, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/cinder-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/cinder/cinder-common-container-puppet.yaml b/deployment/cinder/cinder-common-container-puppet.yaml index 7d98e5f052..95a069ed3e 100644 --- a/deployment/cinder/cinder-common-container-puppet.yaml +++ b/deployment/cinder/cinder-common-container-puppet.yaml @@ -93,6 +93,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/cinder, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/cinder, 'setype': svirt_sandbox_file_t } diff --git a/deployment/cinder/cinder-scheduler-container-puppet.yaml b/deployment/cinder/cinder-scheduler-container-puppet.yaml index 0067e685fd..c9d618efe2 100644 --- a/deployment/cinder/cinder-scheduler-container-puppet.yaml +++ b/deployment/cinder/cinder-scheduler-container-puppet.yaml @@ -135,6 +135,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/cinder, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: enable virt_sandbox_use_netlink for healthcheck diff --git a/deployment/database/mysql-container-puppet.yaml b/deployment/database/mysql-container-puppet.yaml index dc16bba30e..7ccd728ba7 100644 --- a/deployment/database/mysql-container-puppet.yaml +++ b/deployment/database/mysql-container-puppet.yaml @@ -270,6 +270,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - {'path': /var/log/containers/mysql, 'setype': 'svirt_sandbox_file_t', 'mode': '0750'} - {'path': /var/lib/mysql, 'setype': 'svirt_sandbox_file_t'} diff --git a/deployment/database/mysql-pacemaker-puppet.yaml b/deployment/database/mysql-pacemaker-puppet.yaml index 48c21bdf0b..96dc0a498f 100644 --- a/deployment/database/mysql-pacemaker-puppet.yaml +++ b/deployment/database/mysql-pacemaker-puppet.yaml @@ -313,6 +313,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - {'path': /var/log/containers/mysql, 'setype': 'svirt_sandbox_file_t', 'mode': '0750'} - {'path': /var/lib/mysql, 'setype': 'svirt_sandbox_file_t'} diff --git a/deployment/database/redis-container-puppet.yaml b/deployment/database/redis-container-puppet.yaml index ad7bff3f6d..22e43b05e3 100644 --- a/deployment/database/redis-container-puppet.yaml +++ b/deployment/database/redis-container-puppet.yaml @@ -218,6 +218,8 @@ outputs: file: path: "{{ item.path }}" state: directory + setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/redis, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/run/redis, 'setype': svirt_sandbox_file_t } diff --git a/deployment/database/redis-pacemaker-puppet.yaml b/deployment/database/redis-pacemaker-puppet.yaml index 95a486b3c9..38d4c3a326 100644 --- a/deployment/database/redis-pacemaker-puppet.yaml +++ b/deployment/database/redis-pacemaker-puppet.yaml @@ -288,6 +288,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/lib/redis, 'setype': svirt_sandbox_file_t } - { 'path': /var/log/containers/redis, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/experimental/designate/designate-api-container-puppet.yaml b/deployment/experimental/designate/designate-api-container-puppet.yaml index 1875a1b625..7f23354a59 100644 --- a/deployment/experimental/designate/designate-api-container-puppet.yaml +++ b/deployment/experimental/designate/designate-api-container-puppet.yaml @@ -163,5 +163,6 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/designate, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/experimental/designate/designate-central-container-puppet.yaml b/deployment/experimental/designate/designate-central-container-puppet.yaml index 8b5421fd2b..99a15f1e43 100644 --- a/deployment/experimental/designate/designate-central-container-puppet.yaml +++ b/deployment/experimental/designate/designate-central-container-puppet.yaml @@ -201,5 +201,6 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/designate, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/experimental/designate/designate-mdns-container-puppet.yaml b/deployment/experimental/designate/designate-mdns-container-puppet.yaml index 9a32e4cd52..02d22cb9cf 100644 --- a/deployment/experimental/designate/designate-mdns-container-puppet.yaml +++ b/deployment/experimental/designate/designate-mdns-container-puppet.yaml @@ -159,6 +159,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/designate, 'setype': svirt_sandbox_file_t } - { 'path': /var/log/containers/designate, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/experimental/designate/designate-producer-container-puppet.yaml b/deployment/experimental/designate/designate-producer-container-puppet.yaml index d8d0cbe19e..658ddc60f1 100644 --- a/deployment/experimental/designate/designate-producer-container-puppet.yaml +++ b/deployment/experimental/designate/designate-producer-container-puppet.yaml @@ -132,5 +132,6 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/designate, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/experimental/designate/designate-sink-container-puppet.yaml b/deployment/experimental/designate/designate-sink-container-puppet.yaml index c046e310ef..b3e1404e1e 100644 --- a/deployment/experimental/designate/designate-sink-container-puppet.yaml +++ b/deployment/experimental/designate/designate-sink-container-puppet.yaml @@ -124,5 +124,6 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/designate, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/experimental/designate/designate-worker-container-puppet.yaml b/deployment/experimental/designate/designate-worker-container-puppet.yaml index 835d31e2c6..2f80c319b5 100644 --- a/deployment/experimental/designate/designate-worker-container-puppet.yaml +++ b/deployment/experimental/designate/designate-worker-container-puppet.yaml @@ -225,6 +225,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/designate, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: create persistent named directory diff --git a/deployment/glance/glance-api-logging-file-container.yaml b/deployment/glance/glance-api-logging-file-container.yaml index b8a1dd2aaf..dc555e3f20 100644 --- a/deployment/glance/glance-api-logging-file-container.yaml +++ b/deployment/glance/glance-api-logging-file-container.yaml @@ -37,6 +37,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/glance, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/glance, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/gnocchi/gnocchi-api-container-puppet.yaml b/deployment/gnocchi/gnocchi-api-container-puppet.yaml index e9f6d56b44..2979cd03b6 100644 --- a/deployment/gnocchi/gnocchi-api-container-puppet.yaml +++ b/deployment/gnocchi/gnocchi-api-container-puppet.yaml @@ -357,6 +357,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/gnocchi, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/gnocchi-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/gnocchi/gnocchi-metricd-container-puppet.yaml b/deployment/gnocchi/gnocchi-metricd-container-puppet.yaml index eb5c019593..950d00824e 100644 --- a/deployment/gnocchi/gnocchi-metricd-container-puppet.yaml +++ b/deployment/gnocchi/gnocchi-metricd-container-puppet.yaml @@ -158,6 +158,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/gnocchi, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: create persistent data directory diff --git a/deployment/gnocchi/gnocchi-statsd-container-puppet.yaml b/deployment/gnocchi/gnocchi-statsd-container-puppet.yaml index 74ff395f3b..eb2930aa08 100644 --- a/deployment/gnocchi/gnocchi-statsd-container-puppet.yaml +++ b/deployment/gnocchi/gnocchi-statsd-container-puppet.yaml @@ -152,6 +152,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/gnocchi, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: create persistent data directory diff --git a/deployment/haproxy/haproxy-container-puppet.yaml b/deployment/haproxy/haproxy-container-puppet.yaml index a1c6220d59..249aebffe0 100644 --- a/deployment/haproxy/haproxy-container-puppet.yaml +++ b/deployment/haproxy/haproxy-container-puppet.yaml @@ -372,6 +372,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/haproxy, 'setype': var_log_t, 'mode': '0750' } - { 'path': /var/lib/haproxy, 'setype': svirt_sandbox_file_t } diff --git a/deployment/haproxy/haproxy-pacemaker-puppet.yaml b/deployment/haproxy/haproxy-pacemaker-puppet.yaml index f179d049b9..24027cf102 100644 --- a/deployment/haproxy/haproxy-pacemaker-puppet.yaml +++ b/deployment/haproxy/haproxy-pacemaker-puppet.yaml @@ -304,6 +304,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/haproxy, 'setype': var_log_t, 'mode': '0750' } - { 'path': /var/lib/haproxy, 'setype': svirt_sandbox_file_t } diff --git a/deployment/horizon/horizon-container-puppet.yaml b/deployment/horizon/horizon-container-puppet.yaml index fce0371a93..c441028350 100644 --- a/deployment/horizon/horizon-container-puppet.yaml +++ b/deployment/horizon/horizon-container-puppet.yaml @@ -317,6 +317,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/horizon, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/horizon, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/ironic/ironic-api-container-puppet.yaml b/deployment/ironic/ironic-api-container-puppet.yaml index 44dead5421..e58ef8aa73 100644 --- a/deployment/ironic/ironic-api-container-puppet.yaml +++ b/deployment/ironic/ironic-api-container-puppet.yaml @@ -309,6 +309,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/ironic, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/ironic-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/ironic/ironic-conductor-container-puppet.yaml b/deployment/ironic/ironic-conductor-container-puppet.yaml index 62ce45b01b..2f0f22817c 100644 --- a/deployment/ironic/ironic-conductor-container-puppet.yaml +++ b/deployment/ironic/ironic-conductor-container-puppet.yaml @@ -564,6 +564,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/ironic, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/ironic, 'setype': svirt_sandbox_file_t } diff --git a/deployment/ironic/ironic-inspector-container-puppet.yaml b/deployment/ironic/ironic-inspector-container-puppet.yaml index 3e2809164e..a9ef098608 100644 --- a/deployment/ironic/ironic-inspector-container-puppet.yaml +++ b/deployment/ironic/ironic-inspector-container-puppet.yaml @@ -494,8 +494,10 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - - { 'path': /var/log/containers/ironic-inspector, 'setype': svirt_sandbox_file_t, 'mode': '0750' } + - { 'path': /var/log/containers/ironic-inspector, 'setype': container_file_t, 'mode': '0750' } + - { 'path': /var/lib/ironic-inspector/dhcp-hostsdir, 'setype': container_file_t } - name: create persistent ironic-inspector dnsmasq dhcp hostsdir file: path: /var/lib/ironic-inspector/dhcp-hostsdir diff --git a/deployment/ironic/ironic-pxe-container-puppet.yaml b/deployment/ironic/ironic-pxe-container-puppet.yaml index deb34f0688..91ccf4a2de 100644 --- a/deployment/ironic/ironic-pxe-container-puppet.yaml +++ b/deployment/ironic/ironic-pxe-container-puppet.yaml @@ -152,6 +152,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/lib/ironic, 'setype': svirt_sandbox_file_t } - { 'path': /var/log/containers/ironic, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/keepalived/keepalived-container-puppet.yaml b/deployment/keepalived/keepalived-container-puppet.yaml index a32adb153f..3d732d5361 100644 --- a/deployment/keepalived/keepalived-container-puppet.yaml +++ b/deployment/keepalived/keepalived-container-puppet.yaml @@ -148,5 +148,6 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/keepalived, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/barbican-api.yaml b/deployment/logging/files/barbican-api.yaml index 4d49694cd4..e4dd065882 100644 --- a/deployment/logging/files/barbican-api.yaml +++ b/deployment/logging/files/barbican-api.yaml @@ -38,6 +38,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/barbican, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/barbican-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/heat-api-cfn.yaml b/deployment/logging/files/heat-api-cfn.yaml index cbd36c8183..5e10f94953 100644 --- a/deployment/logging/files/heat-api-cfn.yaml +++ b/deployment/logging/files/heat-api-cfn.yaml @@ -24,6 +24,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/heat, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/heat-api-cfn, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/heat-api.yaml b/deployment/logging/files/heat-api.yaml index 82258212c4..3917a95820 100644 --- a/deployment/logging/files/heat-api.yaml +++ b/deployment/logging/files/heat-api.yaml @@ -24,6 +24,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/heat, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/heat-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/heat-engine.yaml b/deployment/logging/files/heat-engine.yaml index 93b3704083..06cbd86438 100644 --- a/deployment/logging/files/heat-engine.yaml +++ b/deployment/logging/files/heat-engine.yaml @@ -39,5 +39,6 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/heat, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/keystone.yaml b/deployment/logging/files/keystone.yaml index 952c40af76..2f20bcff44 100644 --- a/deployment/logging/files/keystone.yaml +++ b/deployment/logging/files/keystone.yaml @@ -39,6 +39,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/keystone, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/keystone, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/neutron-api.yaml b/deployment/logging/files/neutron-api.yaml index 424513bb6c..a8453be0af 100644 --- a/deployment/logging/files/neutron-api.yaml +++ b/deployment/logging/files/neutron-api.yaml @@ -47,6 +47,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/neutron, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/neutron-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/neutron-common.yaml b/deployment/logging/files/neutron-common.yaml index 3f2989c1bb..2a0e8b6cbb 100644 --- a/deployment/logging/files/neutron-common.yaml +++ b/deployment/logging/files/neutron-common.yaml @@ -35,5 +35,6 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/neutron, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/nova-api.yaml b/deployment/logging/files/nova-api.yaml index dddd391e44..954776a4e8 100644 --- a/deployment/logging/files/nova-api.yaml +++ b/deployment/logging/files/nova-api.yaml @@ -47,6 +47,7 @@ outputs: path: "{{ item.path }}" setype: "{{ item.setype }}" state: directory + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/nova, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/nova-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/nova-common.yaml b/deployment/logging/files/nova-common.yaml index 43d3c5435e..d12286eedd 100644 --- a/deployment/logging/files/nova-common.yaml +++ b/deployment/logging/files/nova-common.yaml @@ -67,5 +67,6 @@ outputs: path: "{{ item.path }}" setype: "{{ item.setype }}" state: directory + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/nova, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/nova-libvirt.yaml b/deployment/logging/files/nova-libvirt.yaml index dc9cff9216..58c2f8436c 100644 --- a/deployment/logging/files/nova-libvirt.yaml +++ b/deployment/logging/files/nova-libvirt.yaml @@ -37,5 +37,6 @@ outputs: path: "{{ item.path }}" setype: "{{ item.setype }}" state: directory + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/libvirt, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/nova-metadata.yaml b/deployment/logging/files/nova-metadata.yaml index 1df5e8e578..5ddd4c3e30 100644 --- a/deployment/logging/files/nova-metadata.yaml +++ b/deployment/logging/files/nova-metadata.yaml @@ -36,6 +36,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/nova, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/nova-metadata, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/logging/files/placement-api.yaml b/deployment/logging/files/placement-api.yaml index a730640775..2da8355f8a 100644 --- a/deployment/logging/files/placement-api.yaml +++ b/deployment/logging/files/placement-api.yaml @@ -36,6 +36,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/placement, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/placement, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/manila/manila-api-container-puppet.yaml b/deployment/manila/manila-api-container-puppet.yaml index 8fa5febec6..a625ce30d1 100644 --- a/deployment/manila/manila-api-container-puppet.yaml +++ b/deployment/manila/manila-api-container-puppet.yaml @@ -249,6 +249,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/manila, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/manila-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/manila/manila-scheduler-container-puppet.yaml b/deployment/manila/manila-scheduler-container-puppet.yaml index 95e2f61b04..71160eb341 100644 --- a/deployment/manila/manila-scheduler-container-puppet.yaml +++ b/deployment/manila/manila-scheduler-container-puppet.yaml @@ -108,6 +108,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/manila, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: enable virt_sandbox_use_netlink for healthcheck diff --git a/deployment/manila/manila-share-container-puppet.yaml b/deployment/manila/manila-share-container-puppet.yaml index 1b2f2bd7bf..841fc8bc32 100644 --- a/deployment/manila/manila-share-container-puppet.yaml +++ b/deployment/manila/manila-share-container-puppet.yaml @@ -163,6 +163,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/manila, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/manila, 'setype': svirt_sandbox_file_t } diff --git a/deployment/manila/manila-share-pacemaker-puppet.yaml b/deployment/manila/manila-share-pacemaker-puppet.yaml index 8435441952..010bdeb138 100644 --- a/deployment/manila/manila-share-pacemaker-puppet.yaml +++ b/deployment/manila/manila-share-pacemaker-puppet.yaml @@ -200,6 +200,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/manila, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/manila, 'setype': svirt_sandbox_file_t } diff --git a/deployment/messaging/rpc-qdrouterd-container-puppet.yaml b/deployment/messaging/rpc-qdrouterd-container-puppet.yaml index 0328a4b1b6..938471756a 100644 --- a/deployment/messaging/rpc-qdrouterd-container-puppet.yaml +++ b/deployment/messaging/rpc-qdrouterd-container-puppet.yaml @@ -149,6 +149,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/qdrouterd, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/qdrouterd, 'setype': svirt_sandbox_file_t } diff --git a/deployment/metrics/collectd-container-puppet.yaml b/deployment/metrics/collectd-container-puppet.yaml index 34ce41442c..afd66d8c7f 100644 --- a/deployment/metrics/collectd-container-puppet.yaml +++ b/deployment/metrics/collectd-container-puppet.yaml @@ -703,6 +703,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/collectd, 'setype': svirt_sandbox_file_t, 'mode': '0750' } fast_forward_upgrade_tasks: diff --git a/deployment/metrics/qdr-container-puppet.yaml b/deployment/metrics/qdr-container-puppet.yaml index 0e62beef13..c2612c1b2e 100644 --- a/deployment/metrics/qdr-container-puppet.yaml +++ b/deployment/metrics/qdr-container-puppet.yaml @@ -346,6 +346,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/metrics-qdr, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/metrics-qdr, 'setype': svirt_sandbox_file_t } diff --git a/deployment/mistral/mistral-api-container-puppet.yaml b/deployment/mistral/mistral-api-container-puppet.yaml index ba2096a5df..7c54e59bed 100644 --- a/deployment/mistral/mistral-api-container-puppet.yaml +++ b/deployment/mistral/mistral-api-container-puppet.yaml @@ -277,6 +277,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/mistral, 'setype': svirt_sandbox_file_t, 'mode': '0750' } deploy_steps_tasks: diff --git a/deployment/mistral/mistral-engine-container-puppet.yaml b/deployment/mistral/mistral-engine-container-puppet.yaml index cf6b5d22a7..9b3688e944 100644 --- a/deployment/mistral/mistral-engine-container-puppet.yaml +++ b/deployment/mistral/mistral-engine-container-puppet.yaml @@ -137,6 +137,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/mistral, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: enable virt_sandbox_use_netlink for healthcheck diff --git a/deployment/mistral/mistral-event-engine-container-puppet.yaml b/deployment/mistral/mistral-event-engine-container-puppet.yaml index 338487d52b..42132b3daf 100644 --- a/deployment/mistral/mistral-event-engine-container-puppet.yaml +++ b/deployment/mistral/mistral-event-engine-container-puppet.yaml @@ -112,6 +112,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/mistral, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: enable virt_sandbox_use_netlink for healthcheck diff --git a/deployment/mistral/mistral-executor-container-puppet.yaml b/deployment/mistral/mistral-executor-container-puppet.yaml index d9f1e62e58..8387317136 100644 --- a/deployment/mistral/mistral-executor-container-puppet.yaml +++ b/deployment/mistral/mistral-executor-container-puppet.yaml @@ -218,6 +218,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/mistral, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/mistral, 'setype': svirt_sandbox_file_t } diff --git a/deployment/nova/nova-ironic-container-puppet.yaml b/deployment/nova/nova-ironic-container-puppet.yaml index 8576815a00..a75d1f44a2 100644 --- a/deployment/nova/nova-ironic-container-puppet.yaml +++ b/deployment/nova/nova-ironic-container-puppet.yaml @@ -208,6 +208,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/nova, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/nova, 'setype': svirt_sandbox_file_t } diff --git a/deployment/nova/novajoin-container-puppet.yaml b/deployment/nova/novajoin-container-puppet.yaml index d5191dad69..5bf7462a87 100644 --- a/deployment/nova/novajoin-container-puppet.yaml +++ b/deployment/nova/novajoin-container-puppet.yaml @@ -239,6 +239,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/novajoin, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - name: Enroll to FreeIPA diff --git a/deployment/octavia/octavia-api-container-puppet.yaml b/deployment/octavia/octavia-api-container-puppet.yaml index bb9526f814..41fa2cd586 100644 --- a/deployment/octavia/octavia-api-container-puppet.yaml +++ b/deployment/octavia/octavia-api-container-puppet.yaml @@ -378,6 +378,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/octavia, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/octavia-api, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/octavia/octavia-health-manager-container-puppet.yaml b/deployment/octavia/octavia-health-manager-container-puppet.yaml index f7c79a7d12..c0f35ed713 100644 --- a/deployment/octavia/octavia-health-manager-container-puppet.yaml +++ b/deployment/octavia/octavia-health-manager-container-puppet.yaml @@ -154,5 +154,6 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/octavia, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/octavia/octavia-housekeeping-container-puppet.yaml b/deployment/octavia/octavia-housekeeping-container-puppet.yaml index a50c9e182a..2ad7492214 100644 --- a/deployment/octavia/octavia-housekeeping-container-puppet.yaml +++ b/deployment/octavia/octavia-housekeeping-container-puppet.yaml @@ -153,6 +153,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/octavia, 'setype': svirt_sandbox_file_t, 'mode': '0750' } upgrade_tasks: [] diff --git a/deployment/octavia/octavia-worker-container-puppet.yaml b/deployment/octavia/octavia-worker-container-puppet.yaml index e840baed88..479e3b48f5 100644 --- a/deployment/octavia/octavia-worker-container-puppet.yaml +++ b/deployment/octavia/octavia-worker-container-puppet.yaml @@ -140,6 +140,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/octavia, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - block: diff --git a/deployment/ovn/ovn-controller-container-puppet.yaml b/deployment/ovn/ovn-controller-container-puppet.yaml index 86660464e1..50edba7867 100644 --- a/deployment/ovn/ovn-controller-container-puppet.yaml +++ b/deployment/ovn/ovn-controller-container-puppet.yaml @@ -285,6 +285,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/openvswitch, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/openvswitch/ovn, 'setype': svirt_sandbox_file_t } diff --git a/deployment/ovn/ovn-dbs-container-puppet.yaml b/deployment/ovn/ovn-dbs-container-puppet.yaml index 9d8f4a854e..1923b5a9f5 100644 --- a/deployment/ovn/ovn-dbs-container-puppet.yaml +++ b/deployment/ovn/ovn-dbs-container-puppet.yaml @@ -201,6 +201,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/openvswitch, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/openvswitch/ovn, 'setype': svirt_sandbox_file_t } diff --git a/deployment/ovn/ovn-dbs-pacemaker-puppet.yaml b/deployment/ovn/ovn-dbs-pacemaker-puppet.yaml index 6ea7e29553..1beb18a281 100644 --- a/deployment/ovn/ovn-dbs-pacemaker-puppet.yaml +++ b/deployment/ovn/ovn-dbs-pacemaker-puppet.yaml @@ -265,6 +265,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/openvswitch, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/openvswitch/ovn, 'setype': svirt_sandbox_file_t } diff --git a/deployment/qdr/qdrouterd-container-puppet.yaml b/deployment/qdr/qdrouterd-container-puppet.yaml index 7b1ee152a3..a01736334c 100644 --- a/deployment/qdr/qdrouterd-container-puppet.yaml +++ b/deployment/qdr/qdrouterd-container-puppet.yaml @@ -138,6 +138,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/qdrouterd, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/qdrouterd, 'setype': svirt_sandbox_file_t } diff --git a/deployment/rabbitmq/rabbitmq-container-puppet.yaml b/deployment/rabbitmq/rabbitmq-container-puppet.yaml index 577c63679d..874d853f89 100644 --- a/deployment/rabbitmq/rabbitmq-container-puppet.yaml +++ b/deployment/rabbitmq/rabbitmq-container-puppet.yaml @@ -343,6 +343,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/rabbitmq, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/rabbitmq, 'setype': svirt_sandbox_file_t } diff --git a/deployment/rabbitmq/rabbitmq-messaging-notify-container-puppet.yaml b/deployment/rabbitmq/rabbitmq-messaging-notify-container-puppet.yaml index 93ba5f77d6..926f770551 100644 --- a/deployment/rabbitmq/rabbitmq-messaging-notify-container-puppet.yaml +++ b/deployment/rabbitmq/rabbitmq-messaging-notify-container-puppet.yaml @@ -285,6 +285,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/rabbitmq, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/rabbitmq, 'setype': svirt_sandbox_file_t } diff --git a/deployment/rabbitmq/rabbitmq-messaging-notify-pacemaker-puppet.yaml b/deployment/rabbitmq/rabbitmq-messaging-notify-pacemaker-puppet.yaml index 82549b35d4..2be35135f0 100644 --- a/deployment/rabbitmq/rabbitmq-messaging-notify-pacemaker-puppet.yaml +++ b/deployment/rabbitmq/rabbitmq-messaging-notify-pacemaker-puppet.yaml @@ -245,6 +245,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/lib/rabbitmq, 'setype': svirt_sandbox_file_t } - { 'path': /var/log/containers/rabbitmq, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/rabbitmq/rabbitmq-messaging-pacemaker-puppet.yaml b/deployment/rabbitmq/rabbitmq-messaging-pacemaker-puppet.yaml index 040a9111bb..983c208a53 100644 --- a/deployment/rabbitmq/rabbitmq-messaging-pacemaker-puppet.yaml +++ b/deployment/rabbitmq/rabbitmq-messaging-pacemaker-puppet.yaml @@ -245,6 +245,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/lib/rabbitmq, 'setype': svirt_sandbox_file_t } - { 'path': /var/log/containers/rabbitmq, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/rabbitmq/rabbitmq-messaging-rpc-container-puppet.yaml b/deployment/rabbitmq/rabbitmq-messaging-rpc-container-puppet.yaml index dba46682df..da23c17a5f 100644 --- a/deployment/rabbitmq/rabbitmq-messaging-rpc-container-puppet.yaml +++ b/deployment/rabbitmq/rabbitmq-messaging-rpc-container-puppet.yaml @@ -285,6 +285,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/rabbitmq, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/rabbitmq, 'setype': svirt_sandbox_file_t } diff --git a/deployment/rabbitmq/rabbitmq-messaging-rpc-pacemaker-puppet.yaml b/deployment/rabbitmq/rabbitmq-messaging-rpc-pacemaker-puppet.yaml index 0426f5035f..78d14701fe 100644 --- a/deployment/rabbitmq/rabbitmq-messaging-rpc-pacemaker-puppet.yaml +++ b/deployment/rabbitmq/rabbitmq-messaging-rpc-pacemaker-puppet.yaml @@ -253,6 +253,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/lib/rabbitmq, 'setype': svirt_sandbox_file_t } - { 'path': /var/log/containers/rabbitmq, 'setype': svirt_sandbox_file_t, 'mode': '0750' } diff --git a/deployment/sahara/sahara-api-container-puppet.yaml b/deployment/sahara/sahara-api-container-puppet.yaml index c64c1e94cd..ccc0cc35bb 100644 --- a/deployment/sahara/sahara-api-container-puppet.yaml +++ b/deployment/sahara/sahara-api-container-puppet.yaml @@ -209,6 +209,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/sahara, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/sahara, 'setype': svirt_sandbox_file_t } diff --git a/deployment/sahara/sahara-engine-container-puppet.yaml b/deployment/sahara/sahara-engine-container-puppet.yaml index 7f952a67b1..98aefd3703 100644 --- a/deployment/sahara/sahara-engine-container-puppet.yaml +++ b/deployment/sahara/sahara-engine-container-puppet.yaml @@ -126,6 +126,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/sahara, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/sahara, 'setype': svirt_sandbox_file_t } diff --git a/deployment/swift/swift-proxy-container-puppet.yaml b/deployment/swift/swift-proxy-container-puppet.yaml index c8bbdb4586..d43bbc48a9 100644 --- a/deployment/swift/swift-proxy-container-puppet.yaml +++ b/deployment/swift/swift-proxy-container-puppet.yaml @@ -432,6 +432,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /srv/node, 'setype': svirt_sandbox_file_t } - { 'path': /var/log/swift, 'setype': svirt_sandbox_file_t } diff --git a/deployment/swift/swift-storage-container-puppet.yaml b/deployment/swift/swift-storage-container-puppet.yaml index e983f017af..eee0bb7e6e 100644 --- a/deployment/swift/swift-storage-container-puppet.yaml +++ b/deployment/swift/swift-storage-container-puppet.yaml @@ -596,6 +596,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /srv/node, 'setype': svirt_sandbox_file_t } - { 'path': /var/cache/swift, 'setype': svirt_sandbox_file_t } diff --git a/deployment/undercloud/tempest-container-puppet.yaml b/deployment/undercloud/tempest-container-puppet.yaml index f285ec896e..134a19027c 100644 --- a/deployment/undercloud/tempest-container-puppet.yaml +++ b/deployment/undercloud/tempest-container-puppet.yaml @@ -58,6 +58,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode|default(omit) }}" with_items: - { 'path': /var/log/containers/tempest, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/lib/tempestdata, 'setype': svirt_sandbox_file_t } diff --git a/deployment/zaqar/zaqar-container-puppet.yaml b/deployment/zaqar/zaqar-container-puppet.yaml index 61faa2fd4c..5f791c5c83 100644 --- a/deployment/zaqar/zaqar-container-puppet.yaml +++ b/deployment/zaqar/zaqar-container-puppet.yaml @@ -372,6 +372,7 @@ outputs: path: "{{ item.path }}" state: directory setype: "{{ item.setype }}" + mode: "{{ item.mode }}" with_items: - { 'path': /var/log/containers/zaqar, 'setype': svirt_sandbox_file_t, 'mode': '0750' } - { 'path': /var/log/containers/httpd/zaqar, 'setype': svirt_sandbox_file_t, 'mode': '0750' }