aboutsummaryrefslogtreecommitdiff
path: root/modules/kubernetes/cri-o.nix
diff options
context:
space:
mode:
Diffstat (limited to 'modules/kubernetes/cri-o.nix')
-rw-r--r--modules/kubernetes/cri-o.nix38
1 files changed, 38 insertions, 0 deletions
diff --git a/modules/kubernetes/cri-o.nix b/modules/kubernetes/cri-o.nix
new file mode 100644
index 0000000..cc32b26
--- /dev/null
+++ b/modules/kubernetes/cri-o.nix
@@ -0,0 +1,38 @@
+{ config, lib, pkgs, ... }:
+
+{
+ virtualisation.cri-o = {
+ enable = true;
+ settings = {
+ crio = {
+ network.plugin_dir = "/opt/cni/bin";
+ default_runtime = "crun";
+ runtime = {
+ allowed_devices = [ "/dev/fuse" ];
+ default_sysctls = [
+ "net.ipv4.ping_group_range=0 2147483647"
+ ];
+ workloads = {
+ gitlab = {
+ activation_annotation = "io.kubernetes.cri-o.workload/gitlab";
+ allowed_annotations = [
+ "io.kubernetes.cri-o.userns-mode"
+ "io.kubernetes.cri-o.Devices"
+ "io.kubernetes.cri-o.ShmSize"
+ ];
+ };
+ };
+ runtimes.crun = {
+ runtime_type = "oci";
+ runtime_root = "/run/crun";
+ allowed_annotations = [
+ "io.kubernetes.cri-o.userns-mode"
+ "io.kubernetes.cri-o.Devices"
+ "io.kubernetes.cri-o.ShmSize"
+ ];
+ };
+ };
+ };
+ };
+ };
+}
generated by cgit v1.2.3 (git 2.46.0) at 2026-02-14 22:48:31 +0000