Details

    • Type: Task
    • Status: Resolved
    • Priority: Low
    • Resolution: Won't Do
    • Affects Version/s: None
    • Fix Version/s: None
    • Labels:
      None

      Description

      Since docker 1.7, two additional volume modes are supported on top of 'ro' and 'rw': 'z' and 'Z'. These set the SELinux mode of the volume to be accessible from every container or just this container, respectively.

      See http://www.projectatomic.io/blog/2015/06/using-volumes-with-docker-can-cause-problems-with-selinux/ for more info on this.

      Currently if you launch a container as follows:

       json
      "volumes": [{
            "hostPath": "/var/data/test",
            "containerPath": "/var/data/test",
            "mode": "Z"
          }]
      

      You get an error:

       json
      {"message":"Invalid JSON","details":[{"path":"/container/volumes(0)/mode","errors":["Z is not a valid mode"]}]}
      

      As mesos will also need to be changed for this to be possible, I've created MESOS-3776 to match this.

      Thanks!

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              GitHub_jfindley James Findley (Inactive)
              Team:
              ( DO NOT USE ) Orchestration Team
              Watchers:
              Jason Gilanfarr (Inactive)
            • Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: