./run: 21: ulimit: error setting limit (Operation not permitted)

zalando / spilo

Highly available elephant herd: HA PostgreSQL cluster using Docker

Apache License 2.0

1.53k stars 382 forks source link

./run: 21: ulimit: error setting limit (Operation not permitted) #881

Closed mel3c closed 1 year ago

mel3c commented 1 year ago

spilo image: spilo-14:2.1-p6 securityContext value as follows：

But, spilo pod run failed, error as follows:

spilo pod do not have permission to run “ulimit -c unlimited”，on kubernetes，What kind of setup is needed？

hughcapet commented 1 year ago

Your pod lacks the capability for that operation not having 'unlimited' as the default value. So you can, for example, run the container in the privileged mode or add CAP_SYS_RESOURCE capability to it if it suits you security policies.

mel3c commented 1 year ago

Your pod lacks the capability for that operation not having 'unlimited' as the default value. So you can, for example, run the container in the privileged mode or add CAP_SYS_RESOURCE capability to it if it suits you security policies.

Thank you very much. After I added the SYS_RESOURCE policy, it is working fine