Seccomp and Synology DSM 7.2.2

Hi!

I’m trying to use Graylog in a docker-compose project on a Synology NAS with DSM Version 7.2.2.

Graylog Datanode reports an error because SECCOMP doesn’t seem to be installed on Synology DSM. I think I understand the problem, but there is nothing I can do about the Synology system.

Is there a docker-compose config option to disable SECCOMP check? I tried to add bootstrap.system_call_filter: false to the opensearch.yml file in the mounted volume, but as soon as I restart the container this option is removed.

And in addition it seems this option is anyways removed from the current opensearch version. So there seems to be no way to get opensearch running on the Synology system right now.

Is there someone who got this running?

Greetings!

Hey @fleckingerre,

When using Data Node the opensearch.yml is built and managed by the datanode service, options are passed via the datanode.conf file.

Could you please try the below within datanode.conf file (ref for possilbe solution)

opensearch.bootstrap.system_call_filter = false

Thanks for the reply, @Wine_Merchant!

I can’t find a datanode.conf file in any of the volumes.
I tried to add an evironment variable to the docker compose yml, but that didn’t work:
OPENSEARCH_BOOTSTRAP_SYSTEM_CALL_FILTER: false

Greetings!

It seems I got ahead of myself.

Could you please try the passing the below as an env variable

opensearch.bootstrap.system_call_filter = false

Thanks! That worked!
I didn’t think it would, so I never tried.

But I had to change the format:
opensearch.bootstrap.system_call_filter: false

Greetings!

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.