git.apps.os.sepia.ceph.com Git - ceph-ansible.git/commit

author	Sébastien Han <seb@redhat.com>
	Tue, 7 Feb 2017 21:00:53 +0000 (22:00 +0100)
committer	Sébastien Han <seb@redhat.com>
	Tue, 21 Feb 2017 20:54:36 +0000 (15:54 -0500)
commit	73cf0378c20f52a6e408e5be84c2826627e570fd
tree	c922a40d08d00cdd1156d37e73db51fcc910a6c7	tree \| snapshot
parent	a002508a915c310a9a0b7afd0b26c3410acf2471	commit \| diff

docker: osd, do not use priviledged container anymore

Oh yeah! This patch adds more fine grained control on how we run the
activation osd container. We now use --device to give a read, write and
mknodaccess to a specific device to be consumed by Ceph. We also use
SYS_ADMIN cap to allow mount operations, ceph-disk needs to temporary
mount the osd data directory during the activation sequence.

This patch also enables the support of dedicated journal devices when
deploying ceph-docker with ceph-ansible.

Depends on https://github.com/ceph/ceph-docker/pull/478

Signed-off-by: Sébastien Han <seb@redhat.com>

group_vars/osds.yml.sample		diff \| blob \| history
roles/ceph-osd/defaults/main.yml		diff \| blob \| history
roles/ceph-osd/tasks/docker/start_docker_osd.yml		diff \| blob \| history
roles/ceph-osd/templates/ceph-osd-run.sh.j2	[new file with mode: 0644]	blob
roles/ceph-osd/templates/ceph-osd.service.j2		diff \| blob \| history