github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-20 02:11:09 +00:00
Code Issues Projects Releases Wiki Activity

Set all sources so node+agent in the same process doesn't get restricted

Browse Source
This commit is contained in:
Darren Shepherd 2019-02-07 20:52:26 -07:00 committed by Rafael Breno
parent 5df9ae2d7a
commit cc89f95642
1 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
pkg/capabilities/capabilities.go
View File

@ -18,6 +18,8 @@ package capabilities
import ( import (
"sync" "sync"
"k8s.io/kubernetes/pkg/kubelet/types"
) )
// Capabilities defines the set of capabilities available within the system. // Capabilities defines the set of capabilities available within the system.
@ -62,8 +64,16 @@ func Initialize(c Capabilities) {
// Setup the capability set. It wraps Initialize for improving usability. // Setup the capability set. It wraps Initialize for improving usability.
func Setup(allowPrivileged bool, perConnectionBytesPerSec int64) { func Setup(allowPrivileged bool, perConnectionBytesPerSec int64) {
all, _ := types.GetValidatedSources([]string{types.AllSource})
Initialize(Capabilities{ Initialize(Capabilities{
AllowPrivileged: allowPrivileged, AllowPrivileged: allowPrivileged,
// TODO(vmarmol): Implement support for HostNetworkSources.
PrivilegedSources: PrivilegedSources{
HostNetworkSources: all,
HostPIDSources: all,
HostIPCSources: all,
},
PerConnectionBandwidthLimitBytesPerSec: perConnectionBytesPerSec, PerConnectionBandwidthLimitBytesPerSec: perConnectionBytesPerSec,
}) })
} }