ceph
/
ceph-ansible
mirror of https://github.com/ceph/ceph-ansible.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Apparmor on Ubuntu Xenial will not permit containers to mount devices, even with CAP SYS_ADMIN.

pull/1456/head
John McEleney 2017-04-19 10:12:04 +01:00
parent e8e4245e43
commit f1388dc2c2
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
roles/ceph-osd/templates/ceph-osd-run.sh.j2
View File

@ -24,6 +24,9 @@ fi
--rm \ --rm \
--net=host \ --net=host \
--cap-add SYS_ADMIN \ --cap-add SYS_ADMIN \
{% if ansible_distribution == 'Ubuntu' -%}
--security-opt apparmor:unconfined \
{% endif -%}
--pid=host \ --pid=host \
{% if not osd_containerized_deployment_with_kv -%} {% if not osd_containerized_deployment_with_kv -%}
-v /var/lib/ceph:/var/lib/ceph \ -v /var/lib/ceph:/var/lib/ceph \