Bug 1271948
Summary: | [platformmanagement_public_495]The pod's Sgid was always 0 | ||
---|---|---|---|
Product: | OKD | Reporter: | zhou ying <yinzhou> |
Component: | Security | Assignee: | Paul Weil <pweil> |
Status: | CLOSED NOTABUG | QA Contact: | Xiaoli Tian <xtian> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | 3.x | CC: | aos-bugs, jialiu, lmeyer, mmccomas, yinzhou |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2015-10-16 09:42:45 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
zhou ying
2015-10-15 06:57:13 UTC
I assume you were testing this with my branch that does the defaulting and assignment. Can you do a couple of things: 1. docker inspect <pod> and look for the add groups field and ensure it was passed along? 2. if the pod description is from oc get pod <name> post creation it looks like the admission is working correctly. 3. can you ensure you are testing with docker 1.8+ with the supplemental group patches (Sami - email below or Paul Morie can help with that)? If you are using an earlier version your docker will either ignore the add groups OR fail trying to look up /etc/groups The docker version is :1.7.1, should not a bug. |