Allow to configure access mode of the host paths (#165)

* CentOS, Fedora and RHEL: allow to configure access mode of the host paths

* Add docs related to RHEL configuration

* bump new chart version

charts/cadvisor/Chart.yaml

@@ -1,7 +1,7 @@
 apiVersion: v1
 description: A chart for a Cadvisor deployment
 name: cadvisor
-version: 2.3.0
+version: 2.3.1
 appVersion: 0.47.0
 home: https://github.com/google/cadvisor
 sources:

charts/cadvisor/README.md

@@ -89,3 +89,6 @@ $ helm install --name my-release -f values.yaml ckotzbauer/cadvisor
 ```
 
 > **Tip**: You can use the default [values.yaml](values.yaml)
+
+## Centos, Fedora and RHEL
+You may need to run the container with additional configuration. Please see [this article](https://github.com/google/cadvisor/blob/master/docs/running.md#centos-fedora-and-rhel).

charts/cadvisor/templates/daemonset.yaml

@@ -53,7 +53,7 @@ spec:
         {{- range .Values.container.hostPaths }}
         - name: {{ .name }}
           mountPath: {{ default .path .mount }}
-          readOnly: true
+          readOnly: {{ list nil true | has .readOnly }}
         {{- end }}
         {{ if .Values.podSecurityContext.create }}
         securityContext:

charts/cadvisor/values.yaml

@@ -21,14 +21,19 @@ container:
     - name: rootfs
       path: "/"
       mount: "/rootfs"
+      readOnly: true
     - name: varrun
       path: "/var/run"
+      readOnly: true
     - name: sys
       path: "/sys"
+      readOnly: true
     - name: docker
       path: "/var/lib/docker"
+      readOnly: true
     - name: disk
       path: "/dev/disk"
+      readOnly: true
 
 resources: {}
   # We usually recommend not to specify default resources and to leave this as a conscious