Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix
additional_gids_size
on process_user_dup
The size needs to be set as well otherwise we may break `additional_gids`. Found in critest, like: https://github.com/cri-o/cri-o/actions/runs/10680190170/job/29601173374 ``` Summarizing 3 Failures: [FAIL] [k8s.io] Security Context SupplementalGroupsPolicy when SupplementalGroupsPolicy=Strict [It] even if the container's primary UID belongs to some groups in the image, runtime should not add SupplementalGroups to them sigs.k8s.io/cri-tools/pkg/validate/security_context_linux.go:737 [FAIL] [k8s.io] Security Context bucket [It] runtime should support SupplementalGroups sigs.k8s.io/cri-tools/pkg/validate/security_context_linux.go:309 [FAIL] [k8s.io] Security Context SupplementalGroupsPolicy when SupplementalGroupsPolicy=Merge (Default) [It] if the container's primary UID belongs to some groups in the image, runtime should add SupplementalGroups to them sigs.k8s.io/cri-tools/pkg/validate/security_context_linux.go:669 ``` Signed-off-by: Sascha Grunert <[email protected]>
- Loading branch information