apiVersion: apps/v1
kind: Deployment
metadata:
  name: infiniband-container
  namespace: network-config
  labels:
    app: infiniband
spec:
  selector:
    matchLabels:
      app: infiniband
  replicas: 1
  strategy:
    type: RollingUpdate
  template:
    metadata:
      labels:
        app: infiniband
    spec:
      hostNetwork: true
      volumes:
        - name: omnia-storage
          hostPath:
            path: /root/omnia
            type: Directory
      containers:
        - name: infiniband-container
          image: 'localhost/infiniband-container:latest'
          imagePullPolicy: Never
          command: ["sh", "-c", "tail -f /dev/null"]
          volumeMounts:
            - name: omnia-storage
              mountPath: /root/omnia
          securityContext:
            allowPrivilegeEscalation: true
            capabilities:
              add:
                - NET_RAW
            privileged: false