From 50d91db7ea5db5c0814fd89d11d09b4bf31c217e Mon Sep 17 00:00:00 2001
From: Richard Whitehouse <richard.whitehouse@metaswitch.com>
Date: Tue, 5 Mar 2019 15:00:11 +0000
Subject: [PATCH] Disable Kernel Memory Accounting on CentOS 7

This applies the fix developed in https://github.com/moby/moby/pull/38128 to CentOS 7 RPMs, which are currently built without the correct flag.

This avoids kernel memory being leaked as described in https://bugzilla.redhat.com/show_bug.cgi?id=1507149
---
 rpm/centos-7/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rpm/centos-7/Dockerfile b/rpm/centos-7/Dockerfile
index c2485ef53b..b76aaf94f5 100644
--- a/rpm/centos-7/Dockerfile
+++ b/rpm/centos-7/Dockerfile
@@ -11,7 +11,7 @@ ENV GOPATH=/go
 ENV PATH $PATH:/usr/local/go/bin:$GOPATH/bin
 ENV AUTO_GOPATH 1
 ENV DOCKER_BUILDTAGS pkcs11 seccomp selinux
-ENV RUNC_BUILDTAGS seccomp selinux
+ENV RUNC_BUILDTAGS seccomp selinux nokmem
 RUN yum install -y rpm-build rpmlint
 COPY SPECS /root/rpmbuild/SPECS
 # Overwrite repo that was failing on aarch64