2017-06-22 11:48 GMT+02:00 John Spray <jspray@xxxxxxxxxx>:
On Thu, Jun 22, 2017 at 10:25 AM, Stéphane Klein
<contact@xxxxxxxxxxxxxxxxxxx> wrote:
> Hi,
>
> Does CephFS support SELinux?
>
> I have this issue with OpenShift (with SELinux) + CephFS:
> http://lists.openshift.redhat.com/openshift-archives/users/ 2017-June/msg00116.html
We do test running CephFS server and client bits on machines where
selinux is enabled, but we don't test doing selinux stuff inside the
filesystem (setting labels etc). As far as I know, the comments in
http://tracker.ceph.com/issues/13231 are still relevant.
# mount -t ceph ceph-test-1:6789:/ /mnt/mycephfs -o name=admin,secretfile=/etc/ceph/admin.secret
# touch /mnt/mycephfs/foo
# ls /mnt/mycephfs/ -lZ
-rw-r--r-- root root ? foo
# chcon system_u:object_r:admin_home_t:s0 /mnt/mycephfs/foo
chcon: failed to change context of ‘/mnt/mycephfs/foo’ to ‘system_u:object_r:admin_home_t:s0’: Operation not supported
Then SELinux isn't supported with CephFS volume :(
_______________________________________________ ceph-users mailing list ceph-users@xxxxxxxxxxxxxx http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
