From f41a9c330d16c546407d91e8a549e48154d967f7 Mon Sep 17 00:00:00 2001
From: Richard Maw <richard.maw@codethink.co.uk>
Date: Mon, 23 Mar 2015 21:06:52 +0000
Subject: WIP: Add OpenStack initial configuration

TODO: Split this out into:

1.  initial config (openstack/etc) default values
2+. as many individual changes to initial config as possible to extract,
    including support scripts and configuration extensions
---
 openstack/etc/nova/rootwrap.d/baremetal-compute-ipmi.filters | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 openstack/etc/nova/rootwrap.d/baremetal-compute-ipmi.filters

(limited to 'openstack/etc/nova/rootwrap.d/baremetal-compute-ipmi.filters')

diff --git a/openstack/etc/nova/rootwrap.d/baremetal-compute-ipmi.filters b/openstack/etc/nova/rootwrap.d/baremetal-compute-ipmi.filters
new file mode 100644
index 00000000..4132a999
--- /dev/null
+++ b/openstack/etc/nova/rootwrap.d/baremetal-compute-ipmi.filters
@@ -0,0 +1,9 @@
+# nova-rootwrap command filters for compute nodes
+# This file should be owned by (and only-writeable by) the root user
+
+[Filters]
+# nova/virt/baremetal/ipmi.py: 'ipmitool', ..
+ipmitool: CommandFilter, ipmitool, root
+
+# nova/virt/baremetal/ipmi.py: 'kill', '-TERM', str(console_pid)
+kill_shellinaboxd: KillFilter, root, /usr/local/bin/shellinaboxd, -15, -TERM
-- 
cgit v1.2.1