Add support for --pids-limit in podman kube play. #25645
Conversation
github-actions
bot
added
the
kind/api-change
|
@Luap99 Had a checkpoint flake on F41 remote root, this time, though only one of the tests failed. Doesn't seem nearly as serious as the Debian flake yet, but it is happening outside of that OS. |
|
LGTM |
If you mean this #24571 then this is happening for a long time and I agree that it is unrelated from the debian hangs. |
I do not have enough experience with the project to decide that. If you think we should support just the annotation, I can remove the cli option. Update: I originally added both annotation and cli option just because that was suggested in the podman issue I'm trying to fix here. |
|
Just the annotation would make sense to me but I am interested in other opinions |
|
It's not unprecedented, we have CLI options for other things (e.g. --mac-address, --no-hosts) in |
Right but those have no corresponding yaml setting, do they? I am just looking at this purely from a support perspective, if we have two ways for the same thing it means double the code, documentation and tests for the most part. To me that is just extra load we don't have to take on. I would assume the users are happy with just one, the yaml annotation seems nicer to me as it can be added in generate kube. |
|
I kind of assumed they did have corresponding annotations, so that |
|
Just annotation would also simplify the code a lot (no need to change the bindings and extra code for remote commands). I think less code to maintain is better, so if users are happy with just annotation, I would do it that way. |
|
Thanks everyone for jumping on this so quick 🥳 |
|
/lgtm thanks for the contribution and welcome to the team @jankaluza |
|
/hold |
openshift-ci
bot
added
the
do-not-merge/hold
|
The annotation vs cli question is still open and you don't seem to have answered on that @baude? Do you think we should support both? Just the annotation seems simpler. |
|
I would agree, that if the annotation gives what users need, simply go with that. Adding CLI is always an additional burden. |
|
@baude , So, should I remove the CLI? I think the annotation should as well work. I'm asking to prevent extra work :-). |
This commit adds new annotation called: io.podman.annotations.pids-limit/$ctrname This annotation is used to define the PIDsLimit for a particular pod. It is also automatically defined when newly added --pids-limit option is used. Fixes: containers#24418 Signed-off-by: Jan Kaluza <[email protected]>
|
I've removed the cli option and kept just the annotation. |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: jankaluza, Luap99 The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
openshift-ci
bot
added
the
approved
|
/lgtm |
|
LGTM @Luap99 since you put the hold label, I'm leaving it to you to remove. |
|
/hold cancel |
openshift-ci
bot
removed
the
do-not-merge/hold
This commit adds new annotation called:
io.podman.annotations.pids-limit/$ctrname
This annotation is used to define the PIDsLimit for a particular pod. It is also automatically defined when newly added --pids-limit option is used.
Fixes: #24418
Does this PR introduce a user-facing change?