diff options
| author | Valerij Fredriksen <valerijf@yahooinc.com> | 2021-10-18 09:03:30 +0200 |
|---|---|---|
| committer | Valerij Fredriksen <valerijf@yahooinc.com> | 2021-10-18 09:04:24 +0200 |
| commit | e2f2829b389cd2f9b5a8665af0f9314125ea67bc (patch) | |
| tree | 71de3b7b0235e64b2d9214bfb5655887428c6243 /flags | |
| parent | a0de877aed8c7303ebf835e889db7314dd9fbb4e (diff) | |
Add flags for mapped UID roll out
Diffstat (limited to 'flags')
| -rw-r--r-- | flags/src/main/java/com/yahoo/vespa/flags/Flags.java | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/flags/src/main/java/com/yahoo/vespa/flags/Flags.java b/flags/src/main/java/com/yahoo/vespa/flags/Flags.java index 37b6f3481fc..b119b6f34ed 100644 --- a/flags/src/main/java/com/yahoo/vespa/flags/Flags.java +++ b/flags/src/main/java/com/yahoo/vespa/flags/Flags.java @@ -15,6 +15,7 @@ import java.util.TreeMap; import static com.yahoo.vespa.flags.FetchVector.Dimension.APPLICATION_ID; import static com.yahoo.vespa.flags.FetchVector.Dimension.CONSOLE_USER_EMAIL; import static com.yahoo.vespa.flags.FetchVector.Dimension.HOSTNAME; +import static com.yahoo.vespa.flags.FetchVector.Dimension.NODE_TYPE; import static com.yahoo.vespa.flags.FetchVector.Dimension.TENANT_ID; import static com.yahoo.vespa.flags.FetchVector.Dimension.VESPA_VERSION; import static com.yahoo.vespa.flags.FetchVector.Dimension.ZONE_ID; @@ -50,6 +51,19 @@ public class Flags { "Enable new conditions for when to encrypt disk.", "Takes effect on next host admin tick."); + public static final UnboundBooleanFlag MAP_USER_NAMESPACE = defineFeatureFlag( + "map-user-namespace", false, + List.of("freva"), "2021-10-18", "2021-12-01", + "Whether host-admin should start containers with mapped UID/GID, will also chown all files under container storage.", + "Takes effect on next container restart.", + APPLICATION_ID, NODE_TYPE, HOSTNAME); + + public static final UnboundBooleanFlag FAIL_ON_UNKNOWN_IDS = defineFeatureFlag( + "fail-on-unknown-ids", true, + List.of("freva"), "2021-10-18", "2021-12-01", + "Whether host-admin should fail if it finds UID/GIDs outside of the mapped range inside the container storage.", + "Takes effect on next container restart."); + public static final UnboundDoubleFlag DEFAULT_TERM_WISE_LIMIT = defineDoubleFlag( "default-term-wise-limit", 1.0, List.of("baldersheim"), "2020-12-02", "2022-01-01", |