search

kubernetes-sigs / aws-efs-csi-driver

CSI Driver for Amazon EFS https://aws.amazon.com/efs/
Apache License 2.0
693 stars 526 forks source link

Pod not supported on Fargate: invalid SecurityContext fields: Privileged #1329

Open anthosz opened 2 months ago

anthosz commented 2 months ago

/kind bug

What happened? Unable to use fargate for the efs-csi-controller:

│   Warning  FailedScheduling  11m   fargate-scheduler  Pod not supported on Fargate: invalid SecurityContext fields: Privileged                                                            │

What you expected to happen? The pod spawn on fargate

How to reproduce it (as minimally and precisely as possible)? Create a fargate profile Install the latest helm chart version of efs-csi-driver: 3.0.1

Environment

anthosz commented 2 months ago

Probably related to #1100

anthosz commented 2 months ago

Workaround found: Due to the fact deleteAccessPointRootDir is set to false by default, containerSecurityContext.privileged was set to false (seems only used by deleteAccessPointRootDir).

To check if default values.yaml can be aligned (both to true or both to false) in addition of this issue