]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 59df66b) | patch
cephadm/smb: Add NET_RAW capability to deploy ctdbd 60238/head
authorAnoop C S <anoopcs@cryptolab.net>
Thu, 10 Oct 2024 05:30:03 +0000 (11:00 +0530)
committerAnoop C S <anoopcs@cryptolab.net>
Thu, 10 Oct 2024 09:24:55 +0000 (14:54 +0530)
commit6c419323584103aefed847d8af0a261eda938c29
tree74d0b7b584556e8c34374b4091038c76f7251e28tree | snapshot
parent59df66bee915c9873a5517585a296b8797df1e39commit | diff
cephadm/smb: Add NET_RAW capability to deploy ctdbd

CTDB heavily depends on raw sockets to send gratuitous ARPs[1](see the
second point from the list of reasons to use gratuitous ARPs). As per
the current design it is also inevitable while sending tickle ACKs[2]
in the event of an IP failover. man capabilities(7)[3] further mandates
CAP_NET_RAW to use raw sockets. Therefore append NET_RAW to the list of
capabilties while deploying ctdbd containers.

[1] https://wiki.wireshark.org/Gratuitous_ARP
[2] https://ctdb.samba.org/manpages/ctdb.1.html
[3] https://www.man7.org/linux/man-pages/man7/capabilities.7.html

Signed-off-by: Anoop C S <anoopcs@cryptolab.net>
src/cephadm/cephadmlib/daemons/smb.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.