2019-06-30 05:09:20 +08:00
---
2021-05-19 23:24:53 +08:00
containerd_storage_dir : "/var/lib/containerd"
containerd_state_dir : "/run/containerd"
2021-10-20 23:47:58 +08:00
containerd_systemd_dir : "/etc/systemd/system/containerd.service.d"
2022-10-12 12:49:00 +08:00
# The default value is not -999 here because containerd's oom_score_adj has been
# set to the -999 even if containerd_oom_score is 0.
# Ref: https://github.com/kubernetes-sigs/kubespray/pull/9275#issuecomment-1246499242
2021-05-19 23:24:53 +08:00
containerd_oom_score : 0
2021-04-02 14:20:11 +08:00
2022-06-28 01:56:59 +08:00
# containerd_default_runtime: "runc"
2021-04-02 14:20:11 +08:00
# containerd_snapshotter: "native"
2021-11-05 22:59:54 +08:00
containerd_runc_runtime :
name : runc
type : "io.containerd.runc.v2"
engine : ""
root : ""
2022-11-08 22:44:32 +08:00
base_runtime_spec : cri-base.json
2021-11-05 22:59:54 +08:00
options :
2021-11-20 00:40:53 +08:00
systemdCgroup : "{{ containerd_use_systemd_cgroup | ternary('true', 'false') }}"
2021-11-05 22:59:54 +08:00
containerd_additional_runtimes : [ ]
2021-04-02 14:20:11 +08:00
# Example for Kata Containers as additional runtime:
# - name: kata
# type: "io.containerd.kata.v2"
# engine: ""
# root: ""
2022-11-26 07:12:04 +08:00
containerd_base_runtime_spec_rlimit_nofile : 65535
2022-11-08 22:44:32 +08:00
containerd_default_base_runtime_spec_patch :
process :
rlimits :
- type : RLIMIT_NOFILE
hard : "{{ containerd_base_runtime_spec_rlimit_nofile }}"
soft : "{{ containerd_base_runtime_spec_rlimit_nofile }}"
2022-09-24 01:38:27 +08:00
containerd_base_runtime_specs :
2022-11-08 22:44:32 +08:00
cri-base.json : "{{ containerd_default_base_runtime_spec | combine(containerd_default_base_runtime_spec_patch,recursive=1) }}"
2022-09-24 01:38:27 +08:00
2021-04-02 14:20:11 +08:00
containerd_grpc_max_recv_message_size : 16777216
containerd_grpc_max_send_message_size : 16777216
containerd_debug_level : "info"
containerd_metrics_address : ""
containerd_metrics_grpc_histogram : false
containerd_registries :
"docker.io": "https://registry-1.docker.io"
containerd_max_container_log_line_size : -1
2019-07-11 14:46:54 +08:00
2022-12-09 22:16:12 +08:00
# If enabled it will allow non root users to use port numbers <1024
containerd_enable_unprivileged_ports : false
# If enabled it will allow non root users to use icmp sockets
containerd_enable_unprivileged_icmp : false
2019-07-11 14:46:54 +08:00
containerd_cfg_dir : /etc/containerd
2021-04-12 16:02:00 +08:00
# Extra config to be put in {{ containerd_cfg_dir }}/config.toml literally
containerd_extra_args : ''
2021-08-23 21:40:00 +08:00
# Configure registry auth (if applicable to secure/insecure registries)
containerd_registry_auth : [ ]
# - registry: 10.0.0.2:5000
# username: user
# password: pass
2022-09-13 17:51:06 +08:00
# Configure containerd service
containerd_limit_proc_num : "infinity"
containerd_limit_core : "infinity"
containerd_limit_open_file_num : "infinity"
containerd_limit_mem_lock : "infinity"
2023-02-17 12:57:39 +08:00
# If enabled it will use config_path and disable use mirrors config
containerd_use_config_path : false
2023-03-06 09:50:57 +08:00
2023-03-10 14:00:39 +08:00
# OS distributions that already support containerd
containerd_supported_distributions :
- "CentOS"
- "OracleLinux"
- "RedHat"
- "Ubuntu"
- "Debian"
- "Fedora"
- "AlmaLinux"
- "Rocky"
- "Amazon"
- "Flatcar"
- "Flatcar Container Linux by Kinvolk"
- "Suse"
- "openSUSE Leap"
- "openSUSE Tumbleweed"
- "Kylin Linux Advanced Server"
- "UnionTech"
- "UniontechOS"
- "openEuler"
2023-03-06 09:50:57 +08:00
# If enabled it will allow kubespray to attempt setup even if the distribution is not supported. For unsupported distributions this can lead to unexpected failures in some cases.
allow_unsupported_distribution_setup : false
