fix(containerd): bump DefaultLimitMEMLOCK to inf Without this change, we'd see problems with OVS going up successfully Fixes #169

commit: ff1980a9ba5a792ef04b754de383b85769c03752 [log] [tgz]
author: Mohammed Naser <mnaser@vexxhost.com> Sat Nov 12 14:32:57 2022 +0000
committer: Mohammed Naser <mnaser@vexxhost.com> Sat Nov 12 10:50:03 2022 -0500
tree: f0d3bdda44732072fb15af3d5f02521f55ec4a72
parent: dc07e23e9e1c10a71e1d7bd9b7bf6d261539d9c7 [diff]
diff --git a/roles/containerd/handlers/main.yml b/roles/containerd/handlers/main.yml
index 4c5f7e3..fee82a4 100644
--- a/roles/containerd/handlers/main.yml
+++ b/roles/containerd/handlers/main.yml

@@ -12,6 +12,11 @@
 # License for the specific language governing permissions and limitations
 # under the License.
 
+- name: Reload systemd
+  ansible.builtin.systemd:
+    daemon_reload: true
+    daemon_reexec: true
+
 - name: Restart containerd
   ansible.builtin.service:
     name: containerd

diff --git a/roles/containerd/tasks/main.yml b/roles/containerd/tasks/main.yml
index 62ffbe2..95b38e6 100644
--- a/roles/containerd/tasks/main.yml
+++ b/roles/containerd/tasks/main.yml

@@ -44,6 +44,16 @@
   notify:
     - Restart containerd
 
+- name: Bump DefaultLimitMEMLOCK for system
+  ansible.builtin.lineinfile:
+    path: /etc/systemd/system.conf
+    regexp: '^DefaultLimitMEMLOCK='
+    line: 'DefaultLimitMEMLOCK=infinity'
+    state: present
+  notify:
+    - Reload systemd
+    - Restart containerd
+
 - name: Force any restarts if necessary
   ansible.builtin.meta: flush_handlers
commit	ff1980a9ba5a792ef04b754de383b85769c03752	[log] [tgz]
author	Mohammed Naser <mnaser@vexxhost.com>	Sat Nov 12 14:32:57 2022 +0000
committer	Mohammed Naser <mnaser@vexxhost.com>	Sat Nov 12 10:50:03 2022 -0500
tree	f0d3bdda44732072fb15af3d5f02521f55ec4a72
parent	dc07e23e9e1c10a71e1d7bd9b7bf6d261539d9c7 [diff]