Mirror/k3s
1
0
Fork 0
mirror of https://github.com/k3s-io/k3s.git synced 2024-06-07 19:41:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

containerd: Enable enable_unprivileged_ports and enable_unprivileged_icmp by default

Browse Source 
Signed-off-by: Olli Janatuinen <olli.janatuinen@gmail.com>
This commit is contained in:
Olli Janatuinen 2022-05-04 22:39:48 +02:00 committed by Brad Davidson
parent 31b8224f2a
commit 2968a83bc0
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pkg/agent/templates/templates_linux.go
View File

@ -15,6 +15,8 @@ const ContainerdConfigTemplate = `
stream_server_address = "127.0.0.1"
stream_server_port = "10010"
enable_selinux = {{ .NodeConfig.SELinux }}
enable_unprivileged_ports = true
enable_unprivileged_icmp = true
{{- if .DisableCgroup}}
disable_cgroup = true