From d60cb81f7fe43dd8dd7630464bce53cd83dfc997 Mon Sep 17 00:00:00 2001
From: Steve Kuznetsov <skuznets@redhat.com>
Date: Thu, 5 Jan 2017 17:24:09 -0500
Subject: [PATCH] Use privileged containers for host path e2e tests

Test containers need to run as spc_t in order to interact with the host
filesystem under /tmp, as the tests for HostPath are doing. Docker will
transition the container into this domain when running the container as
privileged.

Signed-off-by: Steve Kuznetsov <skuznets@redhat.com>
---
 test/e2e/common/host_path.go | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/test/e2e/common/host_path.go b/test/e2e/common/host_path.go
index 59942f6bd0f..dc374f45d2d 100644
--- a/test/e2e/common/host_path.go
+++ b/test/e2e/common/host_path.go
@@ -132,6 +132,7 @@ func mount(source *v1.HostPathVolumeSource) []v1.Volume {
 //TODO: To merge this with the emptyDir tests, we can make source a lambda.
 func testPodWithHostVol(path string, source *v1.HostPathVolumeSource) *v1.Pod {
 	podName := "pod-host-path-test"
+	privileged := true
 
 	return &v1.Pod{
 		TypeMeta: metav1.TypeMeta{
@@ -152,6 +153,9 @@ func testPodWithHostVol(path string, source *v1.HostPathVolumeSource) *v1.Pod {
 							MountPath: path,
 						},
 					},
+					SecurityContext: &v1.SecurityContext{
+						Privileged: &privileged,
+					},
 				},
 				{
 					Name:  containerName2,
@@ -162,6 +166,9 @@ func testPodWithHostVol(path string, source *v1.HostPathVolumeSource) *v1.Pod {
 							MountPath: path,
 						},
 					},
+					SecurityContext: &v1.SecurityContext{
+						Privileged: &privileged,
+					},
 				},
 			},
 			RestartPolicy: v1.RestartPolicyNever,