openstack/openstack-helm-infra
Code Issues Proposed changes

Ceph OSD log-runner container should run as ceph user

Browse Source 
This PS changes the log-runner user ID to run as the ceph user
so that it has the appropriate permissions to write to /var/log/ceph
files.

Change-Id: I4dfd956130eb3a19ca49a21145b67faf88750d6f
This commit is contained in:
Parsons, Cliff (cp769u) 2021-08-27 20:53:52 +00:00
parent 797658b730
commit b704b9ad02
3 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ceph-osd/Chart.yaml
View File

@ -15,6 +15,6 @@ apiVersion: v1
appVersion: v1.0.0 appVersion: v1.0.0
description: OpenStack-Helm Ceph OSD description: OpenStack-Helm Ceph OSD
name: ceph-osd name: ceph-osd
version: 0.1.29 version: 0.1.30
home: https://github.com/ceph/ceph home: https://github.com/ceph/ceph
... ...

3
ceph-osd/values.yaml
View File

@ -71,7 +71,8 @@ pod:
privileged: true privileged: true
readOnlyRootFilesystem: true readOnlyRootFilesystem: true
log_runner: log_runner:
runAsUser: 65534 # run as "ceph" user
runAsUser: 64045
allowPrivilegeEscalation: false allowPrivilegeEscalation: false
readOnlyRootFilesystem: true readOnlyRootFilesystem: true
bootstrap: bootstrap:

1
releasenotes/notes/ceph-osd.yaml
View File

@ -30,4 +30,5 @@ ceph-osd:
- 0.1.27 Limit Ceph OSD Container Security Contexts - 0.1.27 Limit Ceph OSD Container Security Contexts
- 0.1.28 Change var crash mount propagation to HostToContainer - 0.1.28 Change var crash mount propagation to HostToContainer
- 0.1.29 Fix Ceph checkDNS script - 0.1.29 Fix Ceph checkDNS script
- 0.1.30 Ceph OSD log-runner container should run as ceph user
... ...