steveej/infra
1
0
Fork 0
Code Issues 2 Pull requests Projects Releases Packages Wiki Activity Actions

podman: udpate containers.conf

Browse source
This commit is contained in:
steveej 2021-12-10 23:17:44 +01:00
parent e4b0930d3c
commit 20c2a3ef58
1 changed files with 22 additions and 33 deletions
Download patch file Download diff file Expand all files Collapse all files

55
nix/home-manager/programs/podman.nix
View file

@ -49,6 +49,15 @@ let
# containers.conf is the default configuration file for all tools using libpod to # containers.conf is the default configuration file for all tools using libpod to
# manage containers # manage containers
[containers]
# Maximum size of log files (in bytes)
# -1 is unlimited
log_size_max = -1
[engine]
# Default transport method for pulling and pushing for images # Default transport method for pulling and pushing for images
image_default_transport = "docker://" image_default_transport = "docker://"
@ -65,21 +74,26 @@ let
] ]
# CGroup Manager - valid values are "systemd" and "cgroupfs" # CGroup Manager - valid values are "systemd" and "cgroupfs"
# cgroup_manager = "systemd" cgroup_manager = "systemd"
cgroup_manager = "cgroupfs"
# Maximum size of log files (in bytes)
# -1 is unlimited
max_log_size = -1
# Whether to use chroot instead of pivot_root in the runtime # Whether to use chroot instead of pivot_root in the runtime
no_pivot_root = false no_pivot_root = false
# Determines whether libpod will reserve ports on the host when they are
# forwarded to containers. When enabled, when ports are forwarded to containers,
# they are held open by conmon as long as the container is running, ensuring that
# they cannot be reused by other programs on the host. However, this can cause
# significant memory usage if a container has many ports forwarded to it.
# Disabling this can save memory.
enable_port_reservation = true
[network]
# Directory containing CNI plugin configuration files # Directory containing CNI plugin configuration files
cni_config_dir = "${cniConfigDir}" network_config_dir = "${cniConfigDir}"
# Directories where the CNI plugin binaries may be located # Directories where the CNI plugin binaries may be located
cni_plugin_dir = [ cni_plugin_dirs = [
"${pkgs.cni-plugins}/bin" "${pkgs.cni-plugins}/bin"
] ]
@ -90,32 +104,7 @@ let
# 87-podman-bridge.conflist included in the repository. # 87-podman-bridge.conflist included in the repository.
# Not setting this, or setting it to the empty string, will use normal CNI # Not setting this, or setting it to the empty string, will use normal CNI
# precedence rules for selecting between multiple networks. # precedence rules for selecting between multiple networks.
cni_default_network = "podman" default_network = "podman"
# Default libpod namespace
# If libpod is joined to a namespace, it will see only containers and pods
# that were created in the same namespace, and will create new containers and
# pods in that namespace.
# The default namespace is "", which corresponds to no namespace. When no
# namespace is set, all containers and pods are visible.
#namespace = ""
# Default pause image name for pod pause containers
pause_image = "k8s.gcr.io/pause:3.1"
# Default command to run the pause container
pause_command = "/pause"
# Determines whether libpod will reserve ports on the host when they are
# forwarded to containers. When enabled, when ports are forwarded to containers,
# they are held open by conmon as long as the container is running, ensuring that
# they cannot be reused by other programs on the host. However, this can cause
# significant memory usage if a container has many ports forwarded to it.
# Disabling this can save memory.
enable_port_reservation = true
# Default libpod support for container labeling
# label=true
''; '';
in { in {
home.packages = with pkgs; [ home.packages = with pkgs; [