From 1525441fc6de20c2a52f26344257e5768ca62559 Mon Sep 17 00:00:00 2001 From: Oliver Chang Date: Fri, 8 Nov 2024 13:32:12 +1100 Subject: [PATCH] Make PR experiment containers privileged too. (#706) Verified that this enables gdb/ptrace inside the container. --- ci/k8s/pr-exp.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/ci/k8s/pr-exp.yaml b/ci/k8s/pr-exp.yaml index 46d6c15ea..ffa863e05 100644 --- a/ci/k8s/pr-exp.yaml +++ b/ci/k8s/pr-exp.yaml @@ -32,6 +32,8 @@ spec: # For benchmark sets that need more disk, increase the results volume # size too. command: ["/bin/bash", "report/docker_run.sh", "${GKE_EXP_BENCHMARK}", "${GKE_EXP_NAME}", "${GKE_EXP_FUZZING_TIMEOUT}", "ofg-pr", "${GKE_EXP_LLM}", "${GKE_EXP_DELAY}", "${GKE_EXP_LOCAL_INTROSPECTOR}", "${GKE_EXP_NUM_SAMPLES}", "${GKE_EXP_LLM_FIX_LIMIT}", "${GKE_EXP_VARY_TEMPERATURE}", "${GKE_EXP_AGENT}"] + securityContext: + privileged: true resources: requests: cpu: ${GKE_EXP_REQ_CPU}