Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add run as group test #282

Merged
merged 2 commits into from
Apr 2, 2018
Merged

Add run as group test #282

merged 2 commits into from
Apr 2, 2018

Conversation

Random-Liu
Copy link
Contributor

@Random-Liu Random-Liu commented Mar 31, 2018
edited
Loading

Fixes #280.

This PR:

  1. Update Kubernetes to v1.10.0 version.
  2. Add CRI test for RunAsGroup.
  3. Cleanup the code a little bit:
    a) Replace several []byte with string, because we are using string in most of the time.
    b) Unify the AfterEach in security_context.go.
    c) Simplify verifyLogContents.
    1. Accept output and stream directly.
    2. Find output in container log instead of matching each line.

@Random-Liu
Update Kubernetes to v1.10.0
c212104 
Signed-off-by: Lantao Liu <lantaol@google.com>
@Random-Liu
Add RunAsGroup test and also cleanup the code.
ef52269 
Signed-off-by: Lantao Liu <lantaol@google.com>
@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Mar 31, 2018
@k8s-ci-robot k8s-ci-robot added the size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. label Mar 31, 2018
This was referenced Mar 31, 2018
Merged
Merged
@Random-Liu
Copy link
Contributor Author

The test failure is caused by a bug in dockershim kubernetes/kubernetes#61965.

k8s-github-robot pushed a commit to kubernetes/kubernetes that referenced this pull request Mar 31, 2018
Merge pull request #61965 from Random-Liu/fix-error-handling
cfcf9d8 
Automatic merge from submit-queue (batch tested with PRs 61929, 61965). If you want to cherry-pick this change to another branch, please follow the instructions <a href="https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md">here</a>.

Fix dockershim CreateContainer error handling.

Found this bug in CRI validation test kubernetes-sigs/cri-tools#282.

In #52077, we expect container creation to return error if `RunAsGroup` is specified without `RunAsUser` or `RunAsUsername`. However, the error returned is not handled.

@krmayankk This is only a corner case. Does this worth cherry-pick into 1.10?
@kubernetes/sig-node-bugs 

Signed-off-by: Lantao Liu <lantaol@google.com>

**Release note**:

```release-note
none
```
@feiskyer
Copy link
Member

feiskyer commented Apr 2, 2018

/lgtm

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Apr 2, 2018
@feiskyer feiskyer merged commit f6ed14e into kubernetes-sigs:master Apr 2, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@feiskyer feiskyer

Labels
cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Random-Liu @feiskyer @k8s-ci-robot