8000 Allow running the vpn shoot client as unprivileged container. by ScheererJ · Pull Request #12 · gardener/vpn2 · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

Allow running the vpn shoot client as unprivileged container. #12

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 18, 2022
Merged

Allow running the vpn shoot client as unprivileged container. #12

merged 1 commit into from
Jul 18, 2022

Conversation

ScheererJ
Copy link
Member

What this PR does / why we need it:
Allow running the vpn shoot client as unprivileged container.

The vpn shoot client sets certain kernel parameters, which require
privileged permissions. This change allows to run only the privileged
parts or only the unprivileged parts by specifying corresponding
environment variables.
Per default, the behaviour does not change.

Which issue(s) this PR fixes:
None.

Special notes for your reviewer:

Release note:

VPN shoot client can now be run with a privileged init container and a non-privileged runtime container

@ScheererJ
Allow running the vpn shoot client as unprivileged container.
6c96b13 
The vpn s
8000
hoot client sets certain kernel parameters, which require
privileged permissions. This change allows to run only the privileged
parts or only the unprivileged parts by specifying corresponding
environment variables.
Per default, the behaviour does not change.
@gardener-robot
Copy link

@ScheererJ Thank you for your contribution.

@gardener-robot gardener-robot added needs/review Needs review size/xs Size of pull request is tiny (see gardener-robot robot/bots/size.py) labels Jul 18, 2022
@gardener-robot-ci-3 gardener-robot-ci-3 added reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) needs/ok-to-test Needs approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels Jul 18, 2022
@ScheererJ ScheererJ merged commit d8bc9e6 into gardener:master Jul 18, 2022
@gardener-robot gardener-robot added the status/closed Issue is closed (either delivered or triaged) label Jul 18, 2022
@marwinski marwinski mentioned this pull request Jul 19, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@DockToFuture DockToFuture Awaiting requested review from DockToFuture DockToFuture is a code owner

@marwinski marwinski Awaiting requested review from marwinski marwinski is a code owner

Assignees
No one assigned
Labels
needs/ok-to-test Needs approval for testing (check PR in detail before setting this label because PR is run on CI/CD) needs/review Needs review size/xs Size of pull request is tiny (see gardener-robot robot/bots/size.py) status/closed Issue is closed (either delivered or triaged)
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@ScheererJ @gardener-robot @gardener-robot-ci-3
0