75 lines
1.4 KiB
Plaintext
75 lines
1.4 KiB
Plaintext
#https://github.com/containers/common/blob/main/pkg/config/containers.conf
|
|
|
|
[containers]
|
|
#annotations = []
|
|
#apparmor_profile = "container-default"
|
|
cgroupns = "private"
|
|
cgroups = "enabled"
|
|
netns = "private"
|
|
#pidns = "private"
|
|
#rootless_networking = "slirp4netns"
|
|
#seccomp_profile = "/usr/share/containers/seccomp.json"
|
|
#shm_size = "65536k"
|
|
|
|
default_capabilities = [
|
|
"CHOWN",
|
|
"DAC_OVERRIDE",
|
|
"FOWNER",
|
|
"FSETID",
|
|
"KILL",
|
|
"NET_BIND_SERVICE",
|
|
"SETFCAP",
|
|
"SETGID",
|
|
"SETPCAP",
|
|
"SETUID",
|
|
"SYS_CHROOT"
|
|
]
|
|
|
|
default_sysctls = [
|
|
"net.ipv4.ping_group_range=0 0",
|
|
]
|
|
|
|
[network]
|
|
network_backend = "netavark"
|
|
network_config_dir = "/etc/containers/networks/"
|
|
default_network = "podman"
|
|
|
|
[engine]
|
|
cgroup_manager = "cgroupfs"
|
|
events_logger = "none"
|
|
#image_default_transport = "docker://"
|
|
#image_parallel_copies = 0
|
|
#infra_command = "/pause"
|
|
#infra_image = "k8s.gcr.io/pause:3.4.1"
|
|
#lock_type** = "shm"
|
|
#namespace = ""
|
|
#network_cmd_path = ""
|
|
|
|
runtime = "crun"
|
|
# runtime = "runc"
|
|
# runtime = "uxc"
|
|
|
|
runtime_supports_json = ["crun", "runc", "kata", "uxc"]
|
|
#runtime_supports_kvm = ["kata", "krun"]
|
|
#runtime_supports_nocgroups = ["crun", "krun", "uxc"]
|
|
#static_dir = "/var/lib/containers/storage/libpod"
|
|
|
|
[engine.runtimes]
|
|
crun = [
|
|
"/usr/bin/crun",
|
|
]
|
|
|
|
runc = [
|
|
"/usr/sbin/runc",
|
|
]
|
|
|
|
uxc = [
|
|
"/sbin/uxc",
|
|
]
|
|
|
|
[machine]
|
|
#cpus = 1
|
|
#disk_size = 10
|
|
#image = "testing"
|
|
#memory = 2048
|