https://bugzilla.redhat.com/show_bug.cgi?id=1793287 removed the writable /etc/passwd which is required by the test infra. I am reverting the change and back porting to 4.4 because this blocks our disruptive testing. The underlying issue is not a cve, it is trivial for any container launcher to gain control of /etc/passwd. The tests image is intended for a wide range of uses and this use is deliberate until we have moved all test infra to a 4.x version.
This merged but is not something QE verifies.