github/kata-containers
1
0
Fork 2
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-09-20 00:07:55 +00:00
Code Issues Projects Releases Wiki Activity

genpolicy: support readonly hostpath

Browse Source 
Set hostpath access based on volume mount readOnly value

Signed-off-by: Saul Paredes <saulparedes@microsoft.com>
This commit is contained in:
Saul Paredes
2024-04-14 15:47:22 -07:00
parent c2774b09dd
commit 36a4104753
2 changed files with 20 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
tests/integration/kubernetes/runtimeclass_workloads/k8s-policy-rc.yaml
View File

@@ -27,6 +27,17 @@ spec:
volumeMounts:
- name: host-empty-vol
mountPath: "/host/cache"
- mountPath: /tmp/results
name: hostpath-vol
- mountPath: /tmp/results-read-only
name: hostpath-vol-read-only
readOnly: true
volumes:
- name: host-empty-vol
emptyDir: {}
- name: hostpath-vol
hostPath:
path: /tmp/results
- name: hostpath-vol-read-only
hostPath:
path: /tmp/results-read-only