git.proxmox.com Git - mirror_ovs.git/commit

author	aaron conole <aconole@redhat.com>
	Fri, 4 Aug 2017 17:00:57 +0000 (13:00 -0400)
committer	Russell Bryant <russell@ovn.org>
	Tue, 8 Aug 2017 17:41:01 +0000 (13:41 -0400)
commit	e3e738a3d0580a9a7178adfc9300a193b8df4ae5
tree	a8494627ce91aa18129321ee15e2db73c3743185	tree
parent	491a9d3b6b2298f741d01d4398f80f388f1588a7	commit \| diff

redhat: allow dpdk to also run as non-root user

After this commit, users may start a dpdk-enabled ovs setup as a
non-root user.  This is accomplished by exporting the $HOME directory,
which dpdk uses to fill in it's semi-persistent RTE configuration.

This change may be a bit controversial since it modifies /dev/hugepages
as part of starting the ovs-vswitchd to set a hugetlbfs group
ownership.  This is used to enable writing to /dev/hugepages so that the
dpdk_init will successfully complete.  There is an alternate way of
accomplishing this - namely to initialize DPDK before dropping
privileges.  However, this would mean that if DPDK ever grows an uninit
/ reinit function, non-root ovs likely could never use it.

This does not change OvS+DPDK's SELinux requirements.  It still must be
disabled.

Signed-off-by: Aaron Conole <aconole@redhat.com>
Signed-off-by: Russell Bryant <russell@ovn.org>

Documentation/intro/install/dpdk.rst		diff \| blob \| blame \| history
NEWS		diff \| blob \| blame \| history
rhel/README.RHEL.rst		diff \| blob \| blame \| history
rhel/openvswitch-fedora.spec.in		diff \| blob \| blame \| history
rhel/usr_lib_systemd_system_ovs-vswitchd.service.in		diff \| blob \| blame \| history