Cannot copy from privileged container #9
Description
I came across a following issue. Once started the capture will never stop (until I ctrl+c it). Looking into the code I found out that the wait_until_finished function is checking if the sysdig is done by trying to copy .finished file from the container. So I checked what happens if I run the command manually. It fails because of following:
$ kubectl cp capture--ns-1586179517:/.finished .finished Error from server (Forbidden): pods "capture--ns-1586179517" is forbidden: cannot exec into or attach to a privileged container
Perhaps the function could be moved to a dedicated "watchdog" sidecar container (not privileged) sharing a mount with the main - sysdig container where the .finished and the capture file would be written to?