github/kata-containers
1
0
Fork 2
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-09-23 09:47:25 +00:00
Code Issues Projects Releases Wiki Activity

Merge pull request #11022 from microsoft/danmihai1/polist-test-volume-path

Browse Source 
tests: k8s-policy-pod: safer host path volume source
This commit is contained in:
Steve Horsman
2025-03-13 20:26:06 +00:00
committed by GitHub
parent 1c406e9c1d 0e26dd4ce8
commit 199b16f053
1 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
tests/integration/kubernetes/k8s-policy-pod.bats
View File

@@ -154,13 +154,13 @@ test_pod_policy_error() {
@test "Policy failure: unexpected hostPath volume mount" {
# Changing the pod spec after generating its policy will cause CreateContainer to be denied.
yq -i \
'.spec.containers[0].volumeMounts += [{"name": "mountpoint-dir", "mountPath": "/var/lib/kubelet/pods"}]' \
"${incorrect_pod_yaml}"
yq -i \
'.spec.containers[0].volumeMounts += [{"name": "mountpoint-dir", "mountPath": "/hostpath-volume"}]' \
"${incorrect_pod_yaml}"
yq -i \
'.spec.volumes += [{"hostPath": {"path": "/var/lib/kubelet/pods", "type": "DirectoryOrCreate"}, "name": "mountpoint-dir"}]' \
"${incorrect_pod_yaml}"
yq -i \
'.spec.volumes += [{"hostPath": {"path": "/tmp/k8s-policy-pod-test", "type": "DirectoryOrCreate"}, "name": "mountpoint-dir"}]' \
"${incorrect_pod_yaml}"
test_pod_policy_error
}