dpkshetty
commented
8 years ago @leseb Can you assign this to me. I am working on this.
Closed dpkshetty closed 8 years ago
dpkshetty
commented
8 years ago @leseb Can you assign this to me. I am working on this.
dpkshetty
commented
8 years ago @leseb I sent a patch, but just got this late thought... Do we disable selinux just for OSDs or for MONs and RGW nodes too ? IIUC, we don't support selinux enforcing for all 3, not just OSDs. Let me know.
dpkshetty
commented
8 years ago dpkshetty
commented
8 years ago @leseb 'guess I forgot to add Closes tag to the patch, so this issue is still in open state, altho' patch is merged. Can you pls close this issue ?
Currently I don't see ceph-ansible disabling selinux as part of OSD tasks. Since we don't yet support running OSDs with selinux enabled, we should explicitly disable selinux as part of OSD install/nodes.
This can cause issue in hyperconverged setups, where compute nodes (eg: Nova in openstack) enabled selinux but OSD on the same node doesn't disable it (Currently since ceph-ansible doesn't do it, higher level orchestrator like Heat needs to do it).