Merge "Add option to limit pids within a container"

2024-01-29 01:51:36 +00:00 · 2024-01-29 01:51:36 +00:00 · 6b80385cda
parent c17b6ef0e6 5818bc046d
commit 6b80385cda
1 changed files with 2 additions and 0 deletions
--- a/storlets/gateway/gateways/docker/runtime.py
+++ b/storlets/gateway/gateways/docker/runtime.py
@ -257,6 +257,7 @@ class RunTimeSandbox(object):
            pass
        self.container_cpuset_cpus = conf.get('container_cpuset_cpus')
        self.container_cpuset_mems = conf.get('container_cpuset_mems')
+        self.container_pids_limit = int(conf.get('container_pids_limit', 0))

    def ping(self):
        """
@ -364,6 +365,7 @@ class RunTimeSandbox(object):
                mem_limit=self.container_mem_limit,
                cpuset_cpus=self.container_cpuset_cpus,
                cpuset_mems=self.container_cpuset_mems,
+                pids_limit=self.container_pids_limit,
                labels={'managed_by': 'storlets'})
        except docker.errors.ImageNotFound:
            msg = "Image %s is not found" % docker_image_name