[JENKINS-65126] specified Linux capabilities via yaml override gets ignored

Type: Bug
Resolution: Unresolved
Priority: Major
Component/s: kubernetes-plugin
Labels:
None
Environment:
Jenkins version:2.263.1
kubernetes plugin version: 1.29.2

Similar Issues:
Powered by SuggestiMate

Show

When specified Linux capabilities via yam override,

spec:
   containers:
   - name: jnlp
     resources:
       limits:
         memory: "2G"
         cpu: "1"
       requests:
        memory: "2G"
        cpu: "1"
   securityContext:
   capabilities:
         add: ["SYS_ADMIN", "CAP_SETUID", "CAP_SETGID"]
      runAsGroup: 5107
      runAsUser: 5107

The settings for capabilities got ignored.

The "Show raw yaml in console" doesn't have the capabilities displayed in the console raw yaml.

name: "jnlp"
resources:
limits:
memory: "2G"
cpu: "1"
requests:
memory: "2G"
cpu: "1"
securityContext:
runAsGroup: 5107
runAsUser: 5107

Yufen Kuo created issue - 2021-03-15 21:44

Yufen Kuo made changes - 2021-03-15 21:46

Description

Original: When specified Linux capabilities via yam override,

spec:
containers:
- name: jnlp
resources:
limits:
memory: "2G"
cpu: "1"
requests:
memory: "2G"
cpu: "1"
securityContext:
capabilities:
add: ["SYS_ADMIN", "CAP_SETUID", "CAP_SETGID"]
runAsGroup: 5107
runAsUser: 5107

The settings for capabilities got ignored.

The "Show raw yaml in console" doesn't have the capabilities displayed in the console raw yaml.

name: "jnlp"
resources:
limits:
memory: "2G"
cpu: "1"
requests:
memory: "2G"
cpu: "1"
securityContext:
runAsGroup: 5107
runAsUser: 5107

New: When specified Linux capabilities via yam override,

spec:
containers:

name: jnlp
resources:
limits:
memory: "2G"
cpu: "1"
requests:
memory: "2G"
cpu: "1"
securityContext:
capabilities:
add: ["SYS_ADMIN", "CAP_SETUID", "CAP_SETGID"]
runAsGroup: 5107
runAsUser: 5107

The settings for capabilities got ignored.

The "Show raw yaml in console" doesn't have the capabilities displayed in the console raw yaml.

name: "jnlp"
resources:
limits:
memory: "2G"
cpu: "1"
requests:
memory: "2G"
cpu: "1"
securityContext:
runAsGroup: 5107
runAsUser: 5107

Yufen Kuo made changes - 2021-03-15 21:48

Description

Original: When specified Linux capabilities via yam override,

spec:
containers:

name: jnlp
resources:
limits:
memory: "2G"
cpu: "1"
requests:
memory: "2G"
cpu: "1"
securityContext:
capabilities:
add: ["SYS_ADMIN", "CAP_SETUID", "CAP_SETGID"]
runAsGroup: 5107
runAsUser: 5107

The settings for capabilities got ignored.

The "Show raw yaml in console" doesn't have the capabilities displayed in the console raw yaml.

name: "jnlp"
resources:
limits:
memory: "2G"
cpu: "1"
requests:
memory: "2G"
cpu: "1"
securityContext:
runAsGroup: 5107
runAsUser: 5107

New: When specified Linux capabilities via yam override,

spec:
   containers:
   - name: jnlp
     resources:
       limits:
         memory: "2G"
         cpu: "1"
       requests:
        memory: "2G"
        cpu: "1"
   securityContext:
   capabilities:
         add: ["SYS_ADMIN", "CAP_SETUID", "CAP_SETGID"]
      runAsGroup: 5107
      runAsUser: 5107

The settings for capabilities got ignored.

The "Show raw yaml in console" doesn't have the capabilities displayed in the console raw yaml.

name: "jnlp"
resources:
limits:
memory: "2G"
cpu: "1"
requests:
memory: "2G"
cpu: "1"
securityContext:
runAsGroup: 5107
runAsUser: 5107

Assignee:: Unassigned

Reporter:: Yufen Kuo

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2021-03-15 21:44

Updated:: 2021-03-15 21:48

Jenkins

Details

Description

Attachments

Activity

People

Dates