Fix issue introduced by
Commit 7c7b9ad505ab6b7cd809d30f1699d4bb7323ce0a
"Avoid duplicate rules for accessing mounts and devices" where policy rules for "read-only mounts" are not generated properly.
Adjust Crio basic test to incorporate a read only mount that is not covered by a special case ("/home" is handled by "home_container" and anything under "/var/lib/kubelet" is ignored).
vmojzis
commented
1 year ago
Fix issue introduced by Commit 7c7b9ad505ab6b7cd809d30f1699d4bb7323ce0a "Avoid duplicate rules for accessing mounts and devices" where policy rules for "read-only mounts" are not generated properly.
Adjust Crio basic test to incorporate a read only mount that is not covered by a special case ("/home" is handled by "home_container" and anything under "/var/lib/kubelet" is ignored).
Thanks https://github.com/arcardon (jamjcardona@sbcglobal.net) for spotting this in the code.