OpenStack-Ansible

  1. Bug #1616281
  2. Comment #9

Comment 9 for bug 1616281

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to openstack-ansible-security (liberty)

Reviewed: https://review.openstack.org/362828
Committed: https://git.openstack.org/cgit/openstack/openstack-ansible-security/commit/?id=6c9eb50fd64cb791a73ef778315f9a52b8c434c8
Submitter: Jenkins
Branch: liberty

commit 6c9eb50fd64cb791a73ef778315f9a52b8c434c8
Author: Major Hayden <email address hidden>
Date: Mon Aug 29 11:11:09 2016 -0500

    Ensure AIDE initializes on subsequent runs

    If a deployer installs AIDE the first time they apply the role
    without initializing AIDE and they want to initialize it later,
    the handler that does the initialization never fires.

    This patch does a few things:

      - Ensures AIDE initialization if the initialize_aide bool is True
      - Doesn't intialize the AIDE db if it already exists
      - Moves the new db into place on Red Hat systems
      - Moves the AIDE tasks into its own file with tags
      - Prevents AIDE from trawling through /var

    Manual backport of two reviews:
      * https://review.openstack.org/#/c/359554/
      * https://review.openstack.org/#/c/361460/

    Closes-Bug: 1616281
    Backport-of: I170eb3898b4336333b1fbe663ec4f069823898e0
    Change-Id: Iaedcce1d6416f2224f44376336c23702e6152a00