062261562f
Starting with kubernetes 1.30 apparmor profiles are specified in the security_context instead of annotations: https://kubernetes.io/docs/tutorials/security/apparmor/ This PS: 1: updates apparmor value overrides to use security_context 2: removes apparmor annotations from top level values where found 3: removes non apparmor values from apparmor value overrides where found End users can still use annotations by setting values appropriately. Change-Id: I2c1a473e81d0904cbb1f96ee6ffb08b0d68e8651
82 lines
2.1 KiB
YAML
82 lines
2.1 KiB
YAML
---
|
|
pod:
|
|
security_context:
|
|
neutron_dhcp_agent:
|
|
container:
|
|
neutron_dhcp_agent:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_dhcp_agent_init:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_l3_agent:
|
|
container:
|
|
neutron_l3_agent:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_l3_agent_init:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_lb_agent:
|
|
container:
|
|
neutron_lb_agent:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_lb_agent_init:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_lb_agent_kernel_modules:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_metadata_agent:
|
|
container:
|
|
neutron_metadata_agent_init:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_ovs_agent:
|
|
container:
|
|
neutron_ovs_agent:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_openvswitch_agent_kernel_modules:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_ovs_agent_init:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
netoffload:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_sriov_agent:
|
|
container:
|
|
neutron_sriov_agent:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_sriov_agent_init:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_netns_cleanup_cron:
|
|
container:
|
|
neutron_netns_cleanup_cron:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_server:
|
|
container:
|
|
neutron_server:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
nginx:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
neutron_rpc_server:
|
|
container:
|
|
neutron_rpc_server:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
kubernetes_entrypoint:
|
|
container:
|
|
kubernetes_entrypoint:
|
|
appArmorProfile:
|
|
type: RuntimeDefault
|
|
...
|