Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Error configuring opensearch.yml - Read-only file system #31854

Open
FelipeAFV opened this issue Feb 10, 2025 · 1 comment
Open

Error configuring opensearch.yml - Read-only file system #31854

FelipeAFV opened this issue Feb 10, 2025 · 1 comment
Assignees
@carrodher
Labels
opensearch tech-issues The user has a technical issue about an application triage Triage is needed

Comments

@FelipeAFV
Copy link

FelipeAFV commented Feb 10, 2025
edited by carrodher
Loading

Name and Version

bitnami/opensearch 1.2.9

What architecture are you using?

None

What steps will reproduce the bug?

In chart version 1.2.9. And opensearch version2.15.0.

I tried to apply the following config to enable the security plugin.

opensearch:
  config:
    plugins:
      security:
        disabled: "false"

Then when I install or do a reconfigure I get the following error:

Defaulted container "opensearch" out of: opensearch, sysctl (init), copy-default-plugins (init), k8tz (init)
opensearch 14:56:06.96 INFO  ==>
opensearch 14:56:06.96 INFO  ==> Welcome to the Bitnami opensearch container
opensearch 14:56:06.96 INFO  ==> Subscribe to project updates by watching https://github.com/bitnami/containers
opensearch 14:56:06.96 INFO  ==> Submit issues and feature requests at https://github.com/bitnami/containers/issues
opensearch 14:56:06.97 INFO  ==> Upgrade to Tanzu Application Catalog for production environments to access custom-configured and pre-packaged software components. Gain enhanced features, including Software Bill of Materials (SBOM), CVE scan result reports, and VEX documents. To learn more, visit https://bitnami.com/enterprise
opensearch 14:56:06.97 INFO  ==>
opensearch 14:56:07.06 INFO  ==> ** Starting Opensearch setup **
opensearch 14:56:07.12 INFO  ==> Configuring/Initializing Opensearch...
opensearch 14:56:07.17 INFO  ==> Custom configuration file detected, using it...
cp: cannot create regular file '/opt/bitnami/opensearch/config/opensearch.yml': Read-only file system

What is the expected behavior?

I expect to opensearch.yml be modified in the pods, resulting in the security plugin being enabled
@FelipeAFV FelipeAFV added the tech-issues The user has a technical issue about an application label Feb 10, 2025
@github-actions github-actions bot added the triage Triage is needed label Feb 10, 2025
@carrodher
Copy link
Member

Could you please check the permissions of the directory (in the host) where the volume is mounted?

Bitnami containers are designed to operate as non-root by default. Consequently, any files or directories used by the application should be owned by the root group, as the random user (1001 by default) is a member of this root group. To ensure proper permissions, you'll need to adjust the ownership of your local directory accordingly.

For more comprehensive information about non-root containers and their significance for security, you can explore the following resources:

These references provide valuable insights into the best practices and considerations when working with non-root containers in Bitnami applications.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@carrodher carrodher

Labels
opensearch tech-issues The user has a technical issue about an application triage Triage is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@carrodher @FelipeAFV