mirror of
https://github.com/linuxkit/linuxkit.git
synced 2026-01-20 00:46:45 +00:00
bf1c21e045
- this needs an init as it does not respond to stop signals, so include tini - needs CAP_SYS_ADMIN to write to kernel entropy estimate - set kernel.random.write_wakeup_threshold so that rngd does not need sysctl write access - build patches from Alpine, but statically linked - remove rngd from base image, means we no longer need community repository Signed-off-by: Justin Cormack <justin.cormack@docker.com>
11 lines
329 B
Plaintext
11 lines
329 B
Plaintext
vm.max_map_count = 262144
|
|
vm.overcommit_memory = 1
|
|
net.core.somaxconn = 1024
|
|
net.ipv4.neigh.default.gc_thresh1 = 30000
|
|
net.ipv4.neigh.default.gc_thresh2 = 32000
|
|
net.ipv4.neigh.default.gc_thresh3 = 32768
|
|
fs.aio-max-nr = 1048576
|
|
fs.inotify.max_user_watches = 524288
|
|
fs.file-max = 524288
|
|
kernel.random.write_wakeup_threshold = 3072
|