github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
74,963 Commits 1 Branch 31 Tags 1,019 MiB
7e04eeab50
Commit Graph

7 Commits

Author SHA1 Message Date
Andrew Kim
2ea82cea20 replace pkg/util/nsenter with k8s.io/utils/nsenter 2019-01-24 13:49:04 -05:00
Jan Safranek
cfbf6aa925 Fix unit test to run with random UID 
User that runs the tests desn't need to be in /etc/passwd and thus
user.Current() can fail. Assume the user is not root in this case.
 2018-11-19 13:08:54 +01:00
linyouchong
708cff1a43 Fix unit test failure: TestNsenterExistsFile 2018-08-02 00:01:53 +08:00
Jan Safranek
cb5eb25ec1 Nsenter unit tests 2018-05-23 10:21:21 +02:00
Jan Safranek
9f80de3772 Split NsEnterMounter and Mounter implementation of doBindSubpath 
nsenter implementation needs to mount different thing in the end and do
different checks on the result.
 2018-05-23 10:21:21 +02:00
Jan Safranek
5110db5087 Lock subPath volumes 
Users must not be allowed to step outside the volume with subPath.
Therefore the final subPath directory must be "locked" somehow
and checked if it's inside volume.

On Windows, we lock the directories. On Linux, we bind-mount the final
subPath into /var/lib/kubelet/pods/<uid>/volume-subpaths/<container name>/<subPathName>,
it can't be changed to symlink user once it's bind-mounted.
 2018-03-05 09:14:44 +01:00
Jan Safranek
87551071a1 Fix findmnt parsing in containerized kubelet 
NsEnterMounter should not stop parsing findmnt output on the first space but
on the last one, just in case the mount point name itself contains a space.
 2017-07-18 13:35:44 +02:00