@@ -49,11 +49,11 @@ func pointValue(constraint *kapi.SecurityContextConstraints) int {
4949 return points
5050}
5151
52- // allowsHostPathVolume returns a score based on the volumes allowed by the SCC.
53- // Allowing a host volume wil return a score of 10. Allowance of anything other
54- // than kapi.FSTypeSecret, kapi.FSTypeConfigMap, kapi.FSTypeConfigMap, kapi.FSTypeDownwardAPI
55- // will result in a score of 5. If the SCC only allows kapi.FSTypeSecret, kapi.FSTypeConfigMap,
56- // kapi.FSTypeEmptyDir, kapi.FSTypeDownwardAPI it will have a score of 0.
52+ // volumePointValue returns a score based on the volumes allowed by the SCC.
53+ // Allowing a host volume will return a score of 10. Allowance of anything other
54+ // than Secret, ConfigMap, EmptyDir, DownwardAPI, Projected, and None will result in
55+ // a score of 5. If the SCC only allows these trivial types, it will have a
56+ // score of 0.
5757func volumePointValue (scc * kapi.SecurityContextConstraints ) int {
5858 hasHostVolume := false
5959 hasNonTrivialVolume := false
@@ -66,8 +66,8 @@ func volumePointValue(scc *kapi.SecurityContextConstraints) int {
6666 // it is easier to specifically list the trivial volumes and allow the
6767 // default case to be non-trivial so we don't have to worry about adding
6868 // volumes in the future unless they're trivial.
69- case kapi .FSTypeSecret , kapi .FSTypeConfigMap ,
70- kapi .FSTypeEmptyDir , kapi .FSTypeDownwardAPI , kapi .FSTypeNone :
69+ case kapi .FSTypeSecret , kapi .FSTypeConfigMap , kapi . FSTypeEmptyDir ,
70+ kapi .FSTypeDownwardAPI , kapi .FSProjected , kapi .FSTypeNone :
7171 // do nothing
7272 default :
7373 hasNonTrivialVolume = true
0 commit comments