summaryrefslogtreecommitdiff
path: root/Dockerfile
diff options
context:
space:
mode:
authorMatthew Heon <matthew.heon@pm.me>2019-05-11 15:10:34 -0400
committerMatthew Heon <matthew.heon@pm.me>2019-05-12 00:10:59 -0400
commitc9c00ecd532fea4722b020f318daa1e34bc46fd0 (patch)
treef6c366676d6f59f6ad05e9f0c9b80335b9fb09fe /Dockerfile
parent952f8620b6d528a823dd5ef61a51cf491f6d54e6 (diff)
downloadpodman-c9c00ecd532fea4722b020f318daa1e34bc46fd0.tar.gz
podman-c9c00ecd532fea4722b020f318daa1e34bc46fd0.tar.bz2
podman-c9c00ecd532fea4722b020f318daa1e34bc46fd0.zip
When removing a pod with CGroupfs, set pids limit to 0
When using CGroupfs, we see races during pod removal between removing the CGroup and the cleanup process starting (in the CGroup, thus preventing removal). The simplest way to avoid this is to prevent the forking of the cleanup process. Conveniently, we can do this via the CGroup that we already created for Conmon - we just need to update the PID limit to 0, which completely inhibits new forks. Signed-off-by: Matthew Heon <matthew.heon@pm.me>
Diffstat (limited to 'Dockerfile')
0 files changed, 0 insertions, 0 deletions