Skip to content

Commit

Permalink
Merge pull request #64283 from jessfraz/ProcMountType
Browse files Browse the repository at this point in the history 
Automatic merge from submit-queue (batch tested with PRs 64283, 67910, 67803, 68100). If you want to cherry-pick this change to another branch, please follow the instructions here: https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md.

Add a ProcMount option to the SecurityContext & AllowedProcMountTypes to PodSecurityPolicy

So there is a bit of a chicken and egg problem here in that the CRI runtimes will need to implement this for there to be any sort of e2e testing.

**What this PR does / why we need it**: This PR implements design proposal kubernetes/community#1934. This adds a ProcMount option to the SecurityContext and AllowedProcMountTypes to PodSecurityPolicy

Relies on google/cadvisor#1967

**Release note**:

```release-note
ProcMount added to SecurityContext and AllowedProcMounts added to PodSecurityPolicy to allow paths in the container's /proc to not be masked.
```

cc @Random-Liu @mrunalp

Kubernetes-commit: 39004e852bb523d0497343705ee2bf42b4e9c3e3
  • Loading branch information
@k8s-publishing-bot
k8s-publishing-bot committed Sep 1, 2018
2 parents 0e7eb02 + a7cb7d1 commit b080aef
Show file tree
Hide file tree
Showing 25 changed files with 465 additions and 513 deletions.
258 changes: 101 additions & 157 deletions Godeps/Godeps.json
View file

Large diffs are not rendered by default.

4 changes: 2 additions & 2 deletions vendor/github.com/Azure/go-ansiterm/csi_entry_state.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 2 additions & 2 deletions vendor/github.com/Azure/go-ansiterm/csi_param_state.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 2 additions & 2 deletions vendor/github.com/Azure/go-ansiterm/escape_intermediate_state.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 2 additions & 2 deletions vendor/github.com/Azure/go-ansiterm/escape_state.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion vendor/github.com/Azure/go-ansiterm/osc_string_state.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

99 changes: 57 additions & 42 deletions vendor/github.com/Azure/go-ansiterm/parser.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 0 additions & 4 deletions vendor/github.com/Azure/go-ansiterm/parser_action_helpers.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

17 changes: 7 additions & 10 deletions vendor/github.com/Azure/go-ansiterm/parser_actions.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion vendor/github.com/Azure/go-ansiterm/winterm/ansi.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

27 changes: 16 additions & 11 deletions vendor/github.com/Azure/go-ansiterm/winterm/api.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion vendor/github.com/Azure/go-ansiterm/winterm/cursor_helpers.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 2 additions & 2 deletions vendor/github.com/Azure/go-ansiterm/winterm/scroll_helper.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

Loading

0 comments on commit b080aef

Please sign in to comment.