From 2d6585a97eb33859d0cc225e3a5c14578b8f0533 Mon Sep 17 00:00:00 2001 From: Reda DRISSI Date: Mon, 10 Feb 2025 14:10:08 +0100 Subject: [PATCH 1/2] fix 951: Add emptydir mount to config path for keystore initContainer --- opensearch-operator/pkg/builders/cluster.go | 14 ++++++++++++++ 1 file changed, 14 insertions(+) diff --git a/opensearch-operator/pkg/builders/cluster.go b/opensearch-operator/pkg/builders/cluster.go index 1fe9c615..db1e5859 100644 --- a/opensearch-operator/pkg/builders/cluster.go +++ b/opensearch-operator/pkg/builders/cluster.go @@ -372,6 +372,20 @@ func NewSTSForNodePool( SubPath: "opensearch.keystore", }) + // Add volume and volume mount for config, useful for readOnlyRootFilesystem + volumes = append(volumes, corev1.Volume{ + Name: "config-emptydir", + VolumeSource: corev1.VolumeSource{ + EmptyDir: &corev1.EmptyDirVolumeSource{}, + }, + }) + + volumeMounts = append(volumeMounts, corev1.VolumeMount{ + Name: "config-emptydir", + MountPath: "/usr/share/opensearch/config/", + }) + + initContainerVolumeMounts := []corev1.VolumeMount{ { Name: "keystore", From 73fd42f491c36bdf16518d96ee241c42063a59e7 Mon Sep 17 00:00:00 2001 From: Reda DRISSI Date: Fri, 14 Feb 2025 16:43:52 +0100 Subject: [PATCH 2/2] Changed volumeMounts to only init container Signed-off-by: Reda DRISSI --- opensearch-operator/pkg/builders/cluster.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/opensearch-operator/pkg/builders/cluster.go b/opensearch-operator/pkg/builders/cluster.go index db1e5859..f6e78ebc 100644 --- a/opensearch-operator/pkg/builders/cluster.go +++ b/opensearch-operator/pkg/builders/cluster.go @@ -380,7 +380,7 @@ func NewSTSForNodePool( }, }) - volumeMounts = append(volumeMounts, corev1.VolumeMount{ + initContainerVolumeMounts = append(volumeMounts, corev1.VolumeMount{ Name: "config-emptydir", MountPath: "/usr/share/opensearch/config/", })