github.com/kata-containers/tests@v0.0.0-20240307153542-772105b56064/integration/kubernetes/runtimeclass_workloads/pod-sysctl.yaml

github.com/kata-containers/tests@v0.0.0-20240307153542-772105b56064/integration/kubernetes/runtimeclass_workloads/pod-sysctl.yaml (about)

     1  #
     2  # Copyright (c) 2019 Intel Corporation
     3  #
     4  # SPDX-License-Identifier: Apache-2.0
     5  #
     6  apiVersion: v1
     7  kind: Pod
     8  metadata:
     9    name: sysctl-test
    10  spec:
    11    terminationGracePeriodSeconds: 0
    12    runtimeClassName: kata
    13    securityContext:
    14      sysctls:
    15      - name: kernel.shm_rmid_forced
    16        value: "0"
    17    containers:
    18    - name: test
    19      securityContext:
    20        privileged: true
    21      image: quay.io/prometheus/busybox:latest
    22      command: ["tail", "-f", "/dev/null"]
    23    initContainers:
    24    - name: init-sys
    25      securityContext:
    26        privileged: true
    27      image: quay.io/prometheus/busybox:latest
    28      command: ['sh', '-c', 'echo "64000" > /proc/sys/vm/max_map_count']