[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Unable to get hostPath r/w without privileged: true



> chcon -u system_u -r object_r -t svirt_sandbox_file_t -l s0 /some/path

That worked perfectly.  Thanks!

________________________________________
From: users-bounces lists openshift redhat com <users-bounces lists openshift redhat com> on behalf of Tobias Florek <openshift ibotty net>
Sent: Sunday, December 17, 2017 11:17 PM
To: users lists openshift redhat com
Subject: Re: Unable to get hostPath r/w without privileged: true

Hi!

>> [...] I cannot get anything inside a container to write to the
>> hostPath without setting 'privileged: true' for the container.
>>
> SELinux is probably preventing you from writing to the host path.
> Privileged completely bypasses those protections.  Marking the hostpath
> you want to expose as visible to containers should be sufficient (exact
> selinux chcon-fu escaping me at the minute).

chcon -u system_u -r object_r -t svirt_sandbox_file_t -l s0 /some/path

Greetings,
 Tobi(as Florek)

_______________________________________________
users mailing list
users lists openshift redhat com
http://lists.openshift.redhat.com/openshiftmm/listinfo/users


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]