mirror of
https://github.com/intel/intel-device-plugins-for-kubernetes.git
synced 2025-06-03 03:59:37 +00:00
c3259ee22f
Proper SELinux labels are required for the plugins to run in SELinux enabled clusters like openshift. These labels are custom made for plugins and are part of container-selinux package. Signed-off-by: Manish Regmi <manish.regmi@intel.com>
42 lines
1.1 KiB
YAML
42 lines
1.1 KiB
YAML
apiVersion: apps/v1
|
|
kind: DaemonSet
|
|
metadata:
|
|
name: intel-dsa-plugin
|
|
spec:
|
|
template:
|
|
spec:
|
|
initContainers:
|
|
- name: intel-idxd-config-initcontainer
|
|
env:
|
|
- name: NODE_NAME
|
|
valueFrom:
|
|
fieldRef:
|
|
fieldPath: spec.nodeName
|
|
image: intel/intel-idxd-config-initcontainer:devel
|
|
securityContext:
|
|
seLinuxOptions:
|
|
type: "container_device_plugin_init_t"
|
|
readOnlyRootFilesystem: true
|
|
privileged: true
|
|
volumeMounts:
|
|
- mountPath: /sys/bus/dsa
|
|
name: sys-bus-dsa
|
|
- mountPath: /sys/devices
|
|
name: sys-devices
|
|
- mountPath: /idxd-init/conf
|
|
name: intel-dsa-config-volume
|
|
- mountPath: /idxd-init/scratch
|
|
name: scratch
|
|
volumes:
|
|
- name: sys-bus-dsa
|
|
hostPath:
|
|
path: /sys/bus/dsa
|
|
- name: sys-devices
|
|
hostPath:
|
|
path: /sys/devices
|
|
- name: intel-dsa-config-volume
|
|
configMap:
|
|
name: intel-dsa-config
|
|
- name: scratch
|
|
emptyDir: {}
|