Hi
I’m unable to set the below config inside a single user pod
ulimit -c unlimited
ulimit: core file size: cannot modify limit: Operation not permitted
SecurityContext:
capabilities:
add: ["SYS_ADMIN", "SYS_RESOURCE"]
I’m using jupyter/datascience-notebook image. I’m running the container with uid: 0
Can you try running it as privileged? If that works we can start reducing the capabilities. If it doesn’t we know there’s some other problem.
I’m running this under singleuser pod.
extraPodConfig:
securityContext:
runAsUser: 0
privileged: true
allowPrivilegeEscalation: true
capabilities:
add: ["SYS_ADMIN", "SYS_RESOURCE"]
But it doesn’t seem to have any effect.
Which version of Z2JH are you using? Does kubectl get pod … -o yaml show the correct output?
- Helm chart version: 4.2.0
- JupyterHub version: 5.3.0
I can see this in the single user pod.
image: jupyter/scipy-notebook
securityContext:
allowPrivilegeEscalation: true
runAsUser: 0
image: quay.io/jupyterhub/k8s-network-tools:4.2.0
securityContext:
capabilities:
add:
- NET_ADMIN
privileged: true
runAsUser: 0