Web: https://kubernetes.io/blog/2021/11/09/non-root-containers-and-devices/

Nov. 9, 2021, midnight |

Kubernetes – Production-Grade Container Orchestration kubernetes.io

Author: Mikko Ylinen (Intel)


The user/group ID related security settings in Pod's securityContext trigger a problem when users want to
deploy containers that use accelerator devices (via Kubernetes Device Plugins) on Linux. In this blog
post I talk about the problem and describe the work done so far to address it. It's not meant to be a long story about getting the k/k issue fixed.


Instead, this post aims to raise awareness of the issue and to highlight important device use-cases too. This is needed as Kubernetes works on …

containers devices

Staff Software Engineer, Backend Data Infrastructure

@ Affirm | Remote Canada

Senior MLOps Engineer

@ Rasa | Remote - Germany or United Kingdom

DevOps Engineer

@ Palantir Technologies | Remote: US - East

Cloud Security Architect

@ Gojek | Jakarta

Principal SRE (Site Reliability Engineer)

@ Vimeo, Inc. | Bengaluru, India

Cloud Infrastructure Admin - (REMOTE)

@ eXp Realty | Atlanta, GA