opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-10-19 12:12:36 +08:00
Code Issues Packages Projects Releases Wiki Activity

Set pids-limit to 0 on non cgroupv2 rootless systems

Browse Source 
Rootless cgroups V1 does not support setting a pids limit.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
This commit is contained in:
Daniel J Walsh
2020-05-07 13:52:20 -04:00
parent e9b178556d
commit 60dc80f9f3
1 changed files with 7 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
cmd/podman/commands.go
View File

@ -7,6 +7,7 @@ import (
"os"
"github.com/containers/buildah/pkg/parse"
"github.com/containers/common/pkg/config"
"github.com/containers/libpod/pkg/apparmor"
"github.com/containers/libpod/pkg/cgroups"
"github.com/containers/libpod/pkg/rootless"
@ -179,10 +180,13 @@ func getDefaultUserNS() string {
func getDefaultPidsLimit() int64 {
if rootless.IsRootless() {
cgroup2, _ := cgroups.IsCgroup2UnifiedMode()
if cgroup2 {
return defaultContainerConfig.Containers.PidsLimit
if defaultContainerConfig.Engine.CgroupManager == config.SystemdCgroupsManager {
cgroup2, _ := cgroups.IsCgroup2UnifiedMode()
if cgroup2 {
return defaultContainerConfig.Containers.PidsLimit
}
}
return 0
}
return sysinfo.GetDefaultPidsLimit()
}