Unable to set ulimit & capabilities inside a single user pod

raki1205 · July 21, 2025, 4:15pm

Hi

I’m unable to set the below config inside a single user pod

ulimit -c unlimited 
ulimit: core file size: cannot modify limit: Operation not permitted
SecurityContext:
    capabilities:
        add: ["SYS_ADMIN", "SYS_RESOURCE"]

I’m using jupyter/datascience-notebook image. I’m running the container with uid: 0

manics · July 22, 2025, 12:21pm

Can you try running it as privileged? If that works we can start reducing the capabilities. If it doesn’t we know there’s some other problem.

raki1205 · July 22, 2025, 4:19pm

I’m running this under singleuser pod.

  extraPodConfig:
    securityContext:
      runAsUser: 0
      privileged: true
      allowPrivilegeEscalation: true
      capabilities:
        add: ["SYS_ADMIN", "SYS_RESOURCE"]

But it doesn’t seem to have any effect.

Topic		Replies	Views
Single User Container Not Creating due to Pod Policies Zero to JupyterHub on Kubernetes community , jupyterhub , help-wanted	1	1217	March 24, 2022
Changing runtime parameters for the single user image JupyterHub	3	772	September 12, 2019
Jupyterhub on Kubernetes: setting NB_USER and NB_UID JupyterHub jupyterhub , help-wanted	5	2705	December 1, 2021
Issue using "sudo" in container: 'The "no new privileges" flag is set' Zero to JupyterHub on Kubernetes	4	17619	March 4, 2024
Restricted PSP: z2jh fails in local gitlab oauth workflow Zero to JupyterHub on Kubernetes jupyterhub , how-to	4	1009	October 5, 2020

Unable to set ulimit & capabilities inside a single user pod

Related topics