当尝试以非超级用户身份运行gcr.io/google_containers/defaultbackend时,如果我在日志中看到以下错误,则pod会进入crashLoopBackOff状态
standard_init_linux.go:211:exec用户进程导致“权限被拒绝”
---
apiVersion: apps/v1
kind: Deployment
metadata:
labels:
run: ingress-default-backend
name: ingress-default-backend
namespace: ingress-haproxy
spec:
replicas: 1
selector:
matchLabels:
run: ingress-default-backend
template:
metadata:
labels:
run: ingress-default-backend
spec:
containers:
- name: ingress-default-backend
image: gcr.io/google_containers/defaultbackend:1.0
ports:
- containerPort: 8080
securityContext:
runAsGroup: 1000
runAsNonRoot: true
runAsUser: 1000
操作系统:Ubuntu 18.04.1 LTS
注意:此问题仅在ubuntu 18.04.1上仍然存在