dc5df57c26
When privileged is enabled for a container, all the `/dev/*` block
devices from the host are mounted into the guest. The
`privileged_without_host_devices` flag prevents host devices from
being passed to privileged containers.
More information:
* https://github.com/containerd/cri/pull/1225
* 1d0f68156b
73 lines
2.1 KiB
YAML
73 lines
2.1 KiB
YAML
---
|
|
# The root directory for containerd metadata
|
|
containerd_metadata_root_dir: /var/lib/containerd
|
|
# The state directory for containerd
|
|
containerd_state_dir: /run/containerd
|
|
|
|
containerd_config:
|
|
grpc:
|
|
max_recv_message_size: 16777216
|
|
max_send_message_size: 16777216
|
|
debug:
|
|
level: ""
|
|
registries:
|
|
"docker.io": "https://registry-1.docker.io"
|
|
max_container_log_line_size: -1
|
|
# containerd:
|
|
# snapshotter: native
|
|
|
|
containerd_cfg_dir: /etc/containerd
|
|
|
|
# Path to runc binary
|
|
runc_binary: /usr/bin/runc
|
|
|
|
|
|
yum_repo_dir: /etc/yum.repos.d
|
|
|
|
# Optional values for containerd apt repo
|
|
containerd_package_info:
|
|
pkgs:
|
|
|
|
containerd_repo_key_info:
|
|
repo_keys:
|
|
|
|
containerd_repo_info:
|
|
repos:
|
|
|
|
# Ubuntu docker-ce repo
|
|
containerd_ubuntu_repo_base_url: "https://download.docker.com/linux/ubuntu"
|
|
containerd_ubuntu_repo_gpgkey: 'https://download.docker.com/linux/ubuntu/gpg'
|
|
containerd_ubuntu_repo_repokey: '9DC858229FC7DD38854AE2D88D81803C0EBFCD88'
|
|
containerd_ubuntu_repo_component: 'stable'
|
|
|
|
# Debian docker-ce repo
|
|
containerd_debian_repo_base_url: 'https://download.docker.com/linux/debian'
|
|
containerd_debian_repo_gpgkey: 'https://download.docker.com/linux/debian/gpg'
|
|
containerd_debian_repo_repokey: '9DC858229FC7DD38854AE2D88D81803C0EBFCD88'
|
|
containerd_debian_repo_component: 'stable'
|
|
|
|
# Fedora docker-ce repo
|
|
containerd_fedora_repo_base_url: 'https://download.docker.com/linux/fedora/{{ ansible_distribution_major_version }}/$basearch/stable'
|
|
containerd_fedora_repo_gpgkey: 'https://download.docker.com/linux/fedora/gpg'
|
|
containerd_fedora_repo_repokey: '9DC858229FC7DD38854AE2D88D81803C0EBFCD88'
|
|
containerd_fedora_repo_component: 'stable'
|
|
|
|
containerd_default_runtime:
|
|
type: io.containerd.runtime.v1.linux
|
|
engine: ''
|
|
root: ''
|
|
|
|
# Additional runtimes for containerd configuration
|
|
#
|
|
# Example for Kata Containers:
|
|
# containerd_runtimes:
|
|
# - name: kata
|
|
# type: io.containerd.kata.v2
|
|
# engine: ""
|
|
# root: ""
|
|
# privileged_without_host_devices: true
|
|
containerd_runtimes: []
|
|
|
|
containerd_untrusted_runtime_type: ''
|
|
containerd_untrusted_runtime_engine: ''
|
|
containerd_untrusted_runtime_root: ''
|