Bug 1466500

Summary: [DOC] Need to recommend setting mount-time context on SELINUX clusters
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Mike Hackett <mhackett>
Component: DocumentationAssignee: Aron Gunn <agunn>
Status: CLOSED CURRENTRELEASE QA Contact: ceph-qe-bugs <ceph-qe-bugs>
Severity: low Docs Contact:
Priority: low    
Version: 2.3CC: agunn, asriram, hnallurv, kdreyer
Target Milestone: rc   
Target Release: 3.0   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-12-26 03:41:31 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1496210    

Description Mike Hackett 2017-06-29 20:07:47 UTC
Description of problem:
We should strongly encourage any customer running with SELinux enforcing to add a static SELinux context to the OSD mount options in the install guide.

https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/2/html-single/installation_guide_for_red_hat_enterprise_linux/

[osd]
osd_mount_options_xfs=rw,noatime,inode64,context="system_u:object_r:ceph_var_lib_t:s0"

We see in environments with a large number of objects per PG, the directory enumeration speed is negatively impacted by the addition of xattr queries which accompany SELinux context verification.  Setting the context at the mount option removes the xattr lookups for context and helps overall disk performance, especially on slower disks.

Version-Release number of selected component (if applicable):
2.x