Add a new Kubelet setting podPidsLimit

[gthao313]

Issue number:
#2130

Description of changes:
Adds a new settings kubernetes.podPidsLimit

Testing done:

Effected side test

Setting podPidsLimit to a small number which would fail to create pod because it doesn't have room for system process and daemon process alive.
setting.kubernetes.pod-pids-limit = 1

...
May 17 03:06:17 ip-192-168-86-168.us-west-2.compute.internal kubelet[4151]: E0517 03:06:17.103675    4151 pod_workers.go:918] "Error syncing pod, skipping" err="failed to \"CreatePodSandbox\" for \"aws-node-xhdtk_kube-system(c711d7d6-6de3-48ed-984a-4afafe1ae6b1)\" with 

CreatePodSandboxError: \"Failed to create sandbox for pod \\\"aws-node-xhdtk_kube-system(c711d7d6-6de3-48ed-984a-4afafe1ae6b1)\\\": rpc error: code = Unknown desc = failed to create containerd task: failed to create shim: OCI runtime create failed: runc create failed: 

unable to start container process: can't get final child's PID from pipe: EOF: unknown\"" pod="kube-system/aws-node-xhdtk" podUID=c711d7d6-6de3-48ed-984a-4afafe1ae6b1
...

Migration test

Update to latest version

bash-5.1# updog check-update -a --json
[
  {
    "variant": "aws-k8s-1.22",
    "arch": "x86_64",
    "version": "1.8.0",
    "max_version": "1.8.0",
    }
  }
]
bash-5.1# updog update -i 1.8.0 -r -n
Starting update to 1.8.0

set podPidslimit

apiclient set -j '{"kubernetes": {"pod-pids-limit": 100}}'

cat var/lib/bottlerocket/datastore/current/live/settings/kubernetes/pod-pids-limit
100

signpost rollback-to-inactive

cat: var/lib/bottlerocket/datastore/current/live/settings/kubernetes/pod-pids-limit: No such file or directory

Terms of contribution:

By submitting this pull request, I agree that this contribution is dual-licensed under the terms of both the Apache License, version 2.0, and the MIT license.