We should explicitly install ceph-selinux when using Ceph Hammer
Bug #1626926 reported by
Giulio Fidente
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| tripleo |
Invalid
|
Undecided
|
Unassigned | ||
| Mitaka |
Fix Released
|
Medium
|
Giulio Fidente | ||
Bug Description
The Ceph Jewel packages pull in ceph-selinux as a dependency but the Ceph Hammer packages do not.
Yet from 0.94.3 Ceph Hammer can run in enforcing mode as well, so we should explicitly add ceph-selinux to the overcloud image packages for Mitaka (Newton works with Jewel)
| Changed in tripleo: | |
| status: | New → Invalid |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix merged to tripleo-puppet-elements (stable/mitaka) | #1 |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix included in openstack/tripleo-puppet-elements 3.2.0 | #2 |
To post a comment you must log in.
Reviewed: https:/
Committed: https:/
Submitter: Jenkins
Branch: stable/mitaka
commit caed41ba989fb0b
Author: Giulio Fidente <email address hidden>
Date: Tue Sep 20 21:53:16 2016 +0200
Install ceph-selinux in overcloud-
Latest versions of Ceph/Hammer can work with SELinux in 'enforcing'
mode so we do not default to 'permissive' from change [1]. This
will only work if the 'ceph-selinux' package is installed and while
Ceph/Jewel packages pull it in as a dependency, Ceph/Hammer will
not so we need to list it explicitly.
1. I469f2bd429eba2
Closes-Bug: 1626926
Change-Id: I5ad512bc3a948b