feat: handle oci specification issue & refactor run_pod_sandbox function

[erasernoob]

1. Add SecurityContext field to let user manually handle the capabilities of container, and also support privilege-mode. Details see https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
2. Remove pause sandbox start from existing bundle path directly. Instead pull image registry.k8s.io/pause:3.9 to run pause.

[erasernoob]

cc @tcytan @ichAB

[Copilot]

Pull request overview

This PR adds support for Kubernetes-style security contexts and refactors the pod sandbox initialization logic. It enables users to configure container capabilities and privileged mode, while changing from direct pause bundle usage to pulling the registry.k8s.io/pause:3.9 image.

Key Changes:

• Added SecurityContext, env, volume_mounts, command, and working_dir fields to ContainerSpec to support Kubernetes security configuration
• Introduced OCISpecGenerator to centralize OCI specification generation with capability management
• Modified run_pod_sandbox to pull and configure the pause container image instead of using a pre-existing bundle

Reviewed changes

Copilot reviewed 16 out of 17 changed files in this pull request and generated 6 comments.

Show a summary per file

File	Description
project/common/src/lib.rs	Added new security-related structs (SecurityContext, Capabilities, EnvVar, VolumeMount) and extended ContainerSpec
project/common/Cargo.toml	Added libcontainer dependency for capability types
project/rkl/src/oci/mod.rs	New module implementing OCISpecGenerator for centralized OCI spec generation with capability handling
project/rkl/src/task.rs	Refactored run_pod_sandbox to pull pause image and generate spec; refactored create_container to use OCISpecGenerator; removed manual capability functions
project/rkl/src/commands/container/mod.rs	Updated to use new capability defaults and renamed mount conversion function for clarity
project/rkl/src/{main.rs,lib.rs}	Exposed new oci module
project/rkl/tests/*	Updated test container specs with new optional fields
project/rks/tests/*	Updated test pod specs with new optional fields
project/libscheduler/tests/xline_test.rs	Updated test pod specs with new optional fields

[Copilot]

The logic for handling privileged mode and capabilities uses else if, which means custom capabilities are ignored when privileged is Some(false). The privileged check should only apply when privileged is Some(true), and capabilities should be processed independently. Consider restructuring: check privileged == Some(true) first to set all capabilities, then apply custom capability changes regardless of the privileged flag value.

Suggested change

	} else if let Some(caps) = &ctx.capabilities {
	}
	if let Some(caps) = &ctx.capabilities {

[Copilot]

Pull request overview

Copilot reviewed 22 out of 23 changed files in this pull request and generated 10 comments.

[Copilot]

The new oci module lacks test coverage. Given that this module handles critical security functionality including capability management and privileged mode, it should include comprehensive tests covering: default capabilities, adding/dropping specific capabilities, privileged mode, namespace creation with and without pause_pid, and OCI spec generation.

[Copilot]

The pause image name is "pause:3.9" but the PR description mentions "registry.k8s.io/pause:3.9". The current image name is missing the registry prefix which may cause the image pull to fail or pull from an unexpected source. Consider using the fully qualified image name with registry prefix.

[Copilot]

The SecurityContext struct lacks documentation explaining its fields and their usage. Given that it controls container security settings with fields like privileged mode and capabilities, it should include doc comments describing each field's purpose, valid values, and security implications.

Suggested change

	#[derive(Debug, Serialize, Deserialize, Clone, PartialEq, Eq)]
	pub struct SecurityContext {
	#[serde(rename = "runAsUser")]
	pub run_as_user: Option<i64>,
	#[serde(rename = "runAsGroup")]
	pub run_as_group: Option<i64>,
	#[serde(default)]
	pub privileged: Option<bool>,
	#[serde(rename = "allowPrivilegeEscalation", default)]
	pub allow_privilege_escalation: Option<bool>,
	#[derive(Debug, Serialize, Deserialize, Clone, PartialEq, Eq)]
	/// Container-level security options controlling user/group identity,
	/// privilege escalation and Linux capabilities.
	///
	/// This roughly mirrors the Kubernetes `SecurityContext` semantics and is
	/// serialized/deserialized for use in API objects. All fields are optional:
	/// if a value is `None`, the runtime-specific defaults or image metadata
	/// typically apply.
	pub struct SecurityContext {
	/// Override for the effective user ID (UID) inside the container.
	///
	/// When set, the container process will attempt to run as this UID
	/// instead of the image's default user. Using `0` (root) grants full
	/// privileges inside the container and increases the risk of container
	/// breakout or privilege escalation on the host; prefer non-root UIDs
	/// wherever possible.
	#[serde(rename = "runAsUser")]
	pub run_as_user: Option<i64>,
	/// Override for the effective primary group ID (GID) inside the container.
	///
	/// When set, the container process will attempt to run with this GID as
	/// its primary group. Similar to `run_as_user`, using a highly privileged
	/// group (for example, a group with write access to sensitive paths)
	/// can weaken isolation.
	#[serde(rename = "runAsGroup")]
	pub run_as_group: Option<i64>,
	/// Run the container in "privileged" mode when `Some(true)`.
	///
	/// Privileged containers are granted almost full access to the host,
	/// including device access and most kernel capabilities. This effectively
	/// disables many isolation mechanisms and should only be enabled for
	/// carefully audited workloads. When `None`, the runtime's default
	/// (usually non-privileged) is used.
	#[serde(default)]
	pub privileged: Option<bool>,
	/// Allow the container process to gain more privileges than its parent.
	///
	/// When `Some(false)`, common escalation paths such as setuid/setgid
	/// binaries or acquiring new file-based capabilities are blocked,
	/// providing stronger confinement. When `Some(true)` (or if left to the
	/// runtime default), processes may increase their privileges, which can
	/// be necessary for some legacy applications but reduces overall safety.
	#[serde(rename = "allowPrivilegeEscalation", default)]
	pub allow_privilege_escalation: Option<bool>,
	/// Linux capabilities configuration applied to the container.
	///
	/// Capabilities provide fine-grained control over privileged operations.
	/// Use this field to add or drop specific capabilities instead of running
	/// the container as fully privileged; only grant the minimal set required
	/// by the workload.

[Copilot]

The EnvVar struct lacks documentation. It should include doc comments explaining its purpose and fields, particularly the relationship between value and the commented-out value_from field.

Suggested change

	#[derive(Debug, Serialize, Deserialize, Clone, PartialEq, Eq)]
	pub struct EnvVar {
	pub name: String,
	#[serde(default)]
	pub value: Option<String>,
	#[derive(Debug, Serialize, Deserialize, Clone, PartialEq, Eq)]
	/// Describes a single environment variable for a container, following Kubernetes-style semantics.
	///
	/// An `EnvVar` typically has a `name` and either a literal `value` or a "value from" source
	/// (such as a Secret, ConfigMap, or pod field). In this implementation only literal values
	/// are supported via [`value`]; the `value_from` mechanism is currently commented out.
	///
	/// When/if `value_from` is enabled, only one of `value` or `value_from` should be set for
	/// a given `EnvVar`, mirroring Kubernetes' `EnvVar` contract.
	pub struct EnvVar {
	/// Name of the environment variable. This must be unique within the container's
	/// environment and should be a valid shell variable identifier (e.g. `MY_VAR`).
	pub name: String,
	/// Literal value of the environment variable.
	///
	/// If `None`, the variable may be omitted or populated by other mechanisms (such as
	/// defaults or a future `value_from` source). When `value_from` is supported, this
	/// field is intended to be mutually exclusive with `value_from`.
	#[serde(default)]
	pub value: Option<String>,
	// Source for the environment variable's value, such as a Secret, ConfigMap, or pod field.
	// Only one of `value` or `value_from` should be set when this is enabled.

[Copilot]

The VolumeMount struct lacks documentation. It should include doc comments explaining its purpose and fields, particularly what sub_path is used for and how mount_path is interpreted.

Suggested change

	#[derive(Debug, Serialize, Deserialize, Clone, PartialEq, Eq)]
	pub struct VolumeMount {
	pub name: String,
	#[serde(rename = "mountPath")]
	pub mount_path: String,
	#[serde(rename = "readOnly", default)]
	pub read_only: Option<bool>,
	#[derive(Debug, Serialize, Deserialize, Clone, PartialEq, Eq)]
	/// Describes how a named volume is mounted into a container filesystem.
	///
	/// This is conceptually similar to Kubernetes' `VolumeMount`. The `name` field
	/// must match a defined volume, and the volume (or a sub-path within it) is
	/// exposed inside the container at `mount_path`.
	pub struct VolumeMount {
	/// Name of the volume to mount, matching a volume defined in the pod spec.
	pub name: String,
	/// Absolute path inside the container where the volume (or `sub_path`) is mounted.
	///
	/// This path is interpreted in the container's filesystem namespace, not on
	/// the host. The path must be absolute (e.g. `/data`, `/var/log/app`).
	#[serde(rename = "mountPath")]
	pub mount_path: String,
	/// Whether the container should see this mount as read-only.
	///
	/// If `None`, the mount defaults to read-write, subject to the underlying
	/// volume's capabilities and permissions.
	#[serde(rename = "readOnly", default)]
	pub read_only: Option<bool>,
	/// Optional sub-path within the volume to mount instead of the volume root.
	///
	/// When set, only this path inside the referenced volume is mounted at
	/// `mount_path`. If omitted, the entire volume root is mounted.

[Copilot]

The SecurityContext fields run_as_user, run_as_group, and allow_privilege_escalation are defined but never used in the OCISpecGenerator implementation. These fields should either be implemented in the OCI spec generation logic or removed if they're planned for future work.

[Copilot]

The newly added ContainerSpec fields (env, volume_mounts, command, working_dir) are not implemented in the OCISpecGenerator. These fields are added to the API but don't affect container behavior, which could lead to user confusion. They should either be implemented or removed if planned for future work.

Suggested change

	#[serde(default)]
	pub env: Option<Vec<EnvVar>>,
	#[serde(rename = "volumeMounts", default)]
	pub volume_mounts: Option<Vec<VolumeMount>>,
	#[serde(default)]
	pub command: Option<Vec<String>>,
	#[serde(rename = "workingDir", default)]
	pub working_dir: Option<String>,

[Copilot]

The chained calls include an unnecessary .clone() on line 155. The config_b.container_spec(...).build() already returns the owned value, so the .clone() before .build() is redundant and creates an extra allocation.

Suggested change

.clone()

[Copilot]

The .clone() on resources is unnecessary. The builder pattern for LinuxBuilder likely accepts a reference, so you can pass &resources directly instead of &resources.clone().

Suggested change

	linux_builder = linux_builder.resources(&resources.clone());
	linux_builder = linux_builder.resources(resources);

[Copilot]

The OCISpecGenerator struct and its public methods lack documentation. Given that this is a new module handling critical OCI specification generation with security implications, it should include comprehensive doc comments explaining its purpose, usage examples, and the meaning of each field (especially pause_pid).