Mention possible pids_limit issues with rootless podman

When running rootless podman, there can be issues with processes not able to create new pids. This is caused by podman's default limit being too low for scenarios like running nginx and spawning workers. This simply adds a notice to the rootless section and suggests a way to disable said limit if desired.
2025-12-01 07:26:05 +07:00 · 2024-07-17 18:20:44 -07:00
parent f28e1072b6
commit 09680d2d66
1 changed files with 8 additions and 0 deletions
--- a/site/content/docs/user/rootless.md
+++ b/site/content/docs/user/rootless.md
@@ -52,6 +52,14 @@ Also, depending on the host configuration, the following steps might be needed:
  iptable_nat
  ```

+- If using podman, be aware that by default there is a [limit](https://docs.podman.io/en/v4.3/markdown/options/pids-limit.html#pids-limit-limit) to the number of pids that can be created. This can cause problems like nginx workers inside a container not spawning correctly.
+    - If you want to disable this limit, edit your `containers.conf` file (generally located in `/etc/containers/containers.conf`). Note that this could cause things like pid exhaustion to happen on the host machine. Alternatively, change `0` to your desired new limit:
+
+    ```ini
+    [containers]
+    pids_limit = 0
+    ```
+
 ## Restrictions

 The restrictions of Rootless Docker apply to kind clusters as well.