Actions
Feature #20851
opencephfs fuse support "secret" option
Status:
New
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
% Done:
0%
Source:
Tags:
Backport:
Reviewed:
Affected Versions:
Component(FS):
ceph-fuse
Labels (FS):
Pull request ID:
Description
we know that cephfs kernel state mount support shows the "secret",
example:
mount -t ceph ip:6789:/ /mnt/mycephfs -o name=admin,secret=xxxxxxxxxx
The advantage of displaying the specified "secret" in the command is that you can load it dynamically,So in "kubernetes" also support the cephfs kernel mount mode,driver link: https://github.com/kubernetes/kubernetes/pull/6649
but cephfs kernel mount mode the following shortcomings:
• Kernel client does not support client-enforced quotas. • Kernel CephFS doesn't support quota or capacity, capacity requested by PVC is not enforced or validated. • Kernel CephFS doesn't work with SELinux, setting SELinux label in Pod's security context will not work.
If we need quota management, and the current proposal to use ceph-fuse mount cephfs point of view, in the "kubernetes" increase cephfs fuse driver is very important to consider.and now kubernetes community on the "cephfs fuse" have a strong need, has raised the following several related issues:
https://github.com/kubernetes/kubernetes/issues/44486 https://github.com/kubernetes/kubernetes/issues/46636 https://github.com/HEP-SF/hep-sf.github.io/pull/123/files
But some of them mentioned that because cephfs fuse does not support "secret" option, so now does not support?
Can we consider support "secret" option in the cephfs fuse mount
No data to display
Actions