From ae8ba01c2c73da09425dd24cd3ece0e62a40ad87 Mon Sep 17 00:00:00 2001
From: Feruzjon Muyassarov <feruzjon.muyassarov@intel.com>
Date: Wed, 14 Dec 2022 17:02:16 +0200
Subject: [PATCH] E2E: default seccompProfile to runtimeDefault for nfd worker

Use RuntimeDefault seccomp profile in nfd worker and topology
updater pod spec similar to nfd master.

Signed-off-by: Feruzjon Muyassarov <feruzjon.muyassarov@intel.com>
---
 test/e2e/utils/pod/pod.go | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/test/e2e/utils/pod/pod.go b/test/e2e/utils/pod/pod.go
index 674f38e6c..b6396279b 100644
--- a/test/e2e/utils/pod/pod.go
+++ b/test/e2e/utils/pod/pod.go
@@ -271,6 +271,9 @@ func nfdWorkerSpec(opts ...SpecOption) *corev1.PodSpec {
 					RunAsNonRoot:             &yes,
 					ReadOnlyRootFilesystem:   &yes,
 					AllowPrivilegeEscalation: &no,
+					SeccompProfile: &corev1.SeccompProfile{
+						Type: corev1.SeccompProfileTypeRuntimeDefault,
+					},
 				},
 				VolumeMounts: []corev1.VolumeMount{
 					{
@@ -387,6 +390,9 @@ func NFDTopologyUpdaterSpec(kc utils.KubeletConfig, opts ...SpecOption) *corev1.
 					RunAsUser:                pointer.Int64(0),
 					ReadOnlyRootFilesystem:   pointer.Bool(true),
 					AllowPrivilegeEscalation: pointer.Bool(false),
+					SeccompProfile: &corev1.SeccompProfile{
+						Type: corev1.SeccompProfileTypeRuntimeDefault,
+					},
 				},
 				VolumeMounts: []corev1.VolumeMount{
 					{