Browse code
/dev should be constrained in size
There really is no reason why anyone should create content in /dev
other then device nodes. Limiting it size to the 64 k size limit.
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
Daniel J Walsh authored on 2017/07/19 05:52:31Showing 1 changed files
| ... | ... |
@@ -91,7 +91,7 @@ func DefaultLinuxSpec() specs.Spec {
|
| 91 | 91 |
Destination: "/dev", |
| 92 | 92 |
Type: "tmpfs", |
| 93 | 93 |
Source: "tmpfs", |
| 94 |
- Options: []string{"nosuid", "strictatime", "mode=755"},
|
|
| 94 |
+ Options: []string{"nosuid", "strictatime", "mode=755", "size=65536k"},
|
|
| 95 | 95 |
}, |
| 96 | 96 |
{
|
| 97 | 97 |
Destination: "/dev/pts", |