This is an automated email from the ASF dual-hosted git repository.
zhangjintao pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/apisix-helm-chart.git
The following commit(s) were added to refs/heads/master by this push:
new e1e02fe Added an init container to modify system configurations.
(#557)
e1e02fe is described below
commit e1e02feb8546eb94b26127a6046ef357d9aba909
Author: Jintao Zhang <[email protected]>
AuthorDate: Wed Jun 7 09:01:07 2023 +0800
Added an init container to modify system configurations. (#557)
---
charts/apisix/README.md | 2 +-
charts/apisix/values.yaml | 17 ++++++++++++++++-
2 files changed, 17 insertions(+), 2 deletions(-)
diff --git a/charts/apisix/README.md b/charts/apisix/README.md
index 08628ce..b47e500 100644
--- a/charts/apisix/README.md
+++ b/charts/apisix/README.md
@@ -154,7 +154,7 @@ The command removes all the Kubernetes components
associated with the chart and
| etcd.user | string | `""` | if etcd.enabled is false, username for external
etcd. If etcd.enabled is true, use etcd.auth.rbac.rootPassword instead. |
| extPlugin.cmd | list | `["/path/to/apisix-plugin-runner/runner","run"]` |
the command and its arguements to run as a subprocess |
| extPlugin.enabled | bool | `false` | Enable External Plugins. See [external
plugin](https://apisix.apache.org/docs/apisix/next/external-plugin/) |
-| extraInitContainers | list | `[]` | Additional `initContainers`, See
[Kubernetes
initContainers](https://kubernetes.io/docs/concepts/workloads/pods/init-containers/)
for the detail. |
+| extraInitContainers | list | `[{"command":["/bin/sh","-c","sysctl -w
net.core.somaxconn=65535\nsysctl -w net.ipv4.ip_local_port_range=\"1024
65535\"\nsysctl -w net.ipv4.tcp_max_syn_backlog=8192\nsysctl -w
fs.file-max=1048576\nsysctl -w fs.inotify.max_user_instances=16384\nsysctl -w
fs.inotify.max_user_watches=524288\nsysctl -w
fs.inotify.max_queued_events=16384\n"],"image":"busybox:1.28","name":"init-sysctl","securityContext":{"privileged":true}}]`
| Additional `initContainers`, See [K [...]
| extraVolumeMounts | list | `[]` | Additional `volume`, See [Kubernetes
Volumes](https://kubernetes.io/docs/concepts/storage/volumes/) for the detail. |
| extraVolumes | list | `[]` | Additional `volume`, See [Kubernetes
Volumes](https://kubernetes.io/docs/concepts/storage/volumes/) for the detail. |
| fullnameOverride | string | `""` | |
diff --git a/charts/apisix/values.yaml b/charts/apisix/values.yaml
index bec9c4b..7f5de42 100644
--- a/charts/apisix/values.yaml
+++ b/charts/apisix/values.yaml
@@ -396,7 +396,22 @@ extraVolumeMounts: []
# readOnly: true
# -- Additional `initContainers`, See [Kubernetes
initContainers](https://kubernetes.io/docs/concepts/workloads/pods/init-containers/)
for the detail.
-extraInitContainers: []
+extraInitContainers:
+ - name: init-sysctl
+ image: busybox:1.28
+ command:
+ - /bin/sh
+ - -c
+ - |
+ sysctl -w net.core.somaxconn=65535
+ sysctl -w net.ipv4.ip_local_port_range="1024 65535"
+ sysctl -w net.ipv4.tcp_max_syn_backlog=8192
+ sysctl -w fs.file-max=1048576
+ sysctl -w fs.inotify.max_user_instances=16384
+ sysctl -w fs.inotify.max_user_watches=524288
+ sysctl -w fs.inotify.max_queued_events=16384
+ securityContext:
+ privileged: true
# - name: init-myservice
# image: busybox:1.28
# command: ['sh', '-c', "until nslookup myservice.$(cat
/var/run/secrets/kubernetes.io/serviceaccount/namespace).svc.cluster.local; do
echo waiting for myservice; sleep 2; done"]
