Update the capabilities needed for client.csi-cephfs-node in case of encryption

# Describe the bug #

Currently the standard capabilities set in the [capabilities.md ](https://github.com/ceph/ceph-csi/blob/devel/docs/capabilities.md) is not enough to acquire a lock in rados that is needed when running. This can be seen when the LockExclusive is called rados returns the following error code

`Failed to lock volume ID 0001-0009-rook-ceph-0000000000000001-489ccf33-13a5-40fc-8460-7dd866bc44de: rados: ret=-1, Operation not permitted`

Some discussion and a naive solution how to circumvent this can be found, in this [PR discussion ](https://github.com/ceph/ceph-csi/pull/4697#discussion_r1689605829)

# The Solution #

It needs to be figured out what to add to the OSD caps to give only the necessary permission to do the lock operation. Further this should then be documented in the `capabilities.md `.



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update the capabilities needed for client.csi-cephfs-node in case of encryption #4728

Describe the bug

The Solution

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Update the capabilities needed for client.csi-cephfs-node in case of encryption #4728

Description

Describe the bug

The Solution

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions