Ensure os_keepalived_dac_override is enabled

According to [1], the dac override options may be disabled in a future
release.

[1] https://bugzilla.redhat.com/show_bug.cgi?id=2000945

Change-Id: I3779072f9213fee03f350cc9a8786072c318037d

manifests/init.pp

@@ -4,7 +4,7 @@ class openstack_integration {
 
   if $facts['os']['family'] == 'RedHat' {
     package { 'openstack-selinux':
-        ensure => 'latest'
+      ensure => 'present'
     }
   }
 }

manifests/neutron.pp

@@ -72,12 +72,22 @@ class openstack_integration::neutron (
     selboolean { 'os_neutron_dac_override':
       persistent => true,
       value      => on,
+      require    => Package['openstack-selinux'],
+      before     => Anchor['neutron::service::begin'],
     }
 
     if $driver == 'openvswitch' or $driver == 'linuxbridge' {
       selboolean { 'os_dnsmasq_dac_override':
         persistent => true,
         value      => on,
+        require    => Package['openstack-selinux'],
+        before     => Anchor['neutron::service::begin'],
+      }
+      selboolean { 'os_keepalived_dac_override':
+        persistent => true,
+        value      => on,
+        require    => Package['openstack-selinux'],
+        before     => Anchor['neutron::service::begin'],
       }
     }
   }