2023-07-26 17:09:55 +08:00
|
|
|
From 318779ab775bfe878cac0636c9e610b9951e1335 Mon Sep 17 00:00:00 2001
|
2023-01-05 17:11:59 +08:00
|
|
|
From: zhongjiawei <zhongjiawei1@huawei.com>
|
2023-07-26 17:09:55 +08:00
|
|
|
Date: Tue, 25 Jul 2023 19:53:00 +0800
|
2022-10-26 16:13:47 +08:00
|
|
|
Subject: [PATCH] runc:add sysctl kernel.pid_max to whitelist
|
|
|
|
|
|
|
|
|
|
---
|
2023-01-05 17:11:59 +08:00
|
|
|
libcontainer/configs/validate/validator.go | 1 +
|
2022-10-26 16:13:47 +08:00
|
|
|
1 file changed, 1 insertion(+)
|
|
|
|
|
|
2023-01-05 17:11:59 +08:00
|
|
|
diff --git a/libcontainer/configs/validate/validator.go b/libcontainer/configs/validate/validator.go
|
2023-07-26 17:09:55 +08:00
|
|
|
index 4fbd308..5ef0e8d 100644
|
2023-01-05 17:11:59 +08:00
|
|
|
--- a/libcontainer/configs/validate/validator.go
|
|
|
|
|
+++ b/libcontainer/configs/validate/validator.go
|
2023-07-26 17:09:55 +08:00
|
|
|
@@ -170,6 +170,7 @@ func (v *ConfigValidator) sysctl(config *configs.Config) error {
|
2022-10-26 16:13:47 +08:00
|
|
|
"kernel.shmmax": true,
|
|
|
|
|
"kernel.shmmni": true,
|
|
|
|
|
"kernel.shm_rmid_forced": true,
|
|
|
|
|
+ "kernel.pid_max": true,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var (
|
|
|
|
|
--
|
2023-07-26 17:09:55 +08:00
|
|
|
2.33.0
|
2022-10-26 16:13:47 +08:00
|
|
|
|
