mirrors/node-feature-discovery
mirrors/node-feature-discovery
1
0
Fork 0
mirror of https://github.com/kubernetes-sigs/node-feature-discovery.git synced 2025-03-06 16:57:10 +00:00
Code Activity
node-feature-discovery/deployment
History
adrianc 3f012c2d5a
Add support running with OwnerReferencesPermissionEnforcement 
when OwnerReferencesPermissionEnforcement validating webhook is
enabled additional permissions are required to set/update owner ref
field. NFD worker sets/updates NodeFeature owner ref field to
the worker pod and owning daemonset.

owner reference can only be updated if the worker has delete permissions
for NodeFeatures.

if owner reference has blockOwnerDeletion (as the case for the daemonset
owner reference) then it requires update permissions to the finalizers
of the owner, to avoid this, we set blockOwnerDeleteion to false for all
owners referenced from NFD worker pod when setting/updating NodeFeature
owner ref.

Signed-off-by: adrianc <adrianc@nvidia.com>
2025-01-08 13:44:30 +02:00
..
base Add support running with OwnerReferencesPermissionEnforcement 2025-01-08 13:44:30 +02:00
components nfd-worker: Add an option to disable setting the owner references 2024-11-28 16:50:10 +02:00
helm/node-feature-discovery Add support running with OwnerReferencesPermissionEnforcement 2025-01-08 13:44:30 +02:00
nodefeaturerule/samples Merge pull request #1715 from marquiz/devel/avx10-deprecate 2024-05-24 04:53:59 -07:00
overlays deployment/kustomize: drop the sample cert-manager overlay 2024-01-03 21:13:15 +02:00