I am a big fan of crun. now it’s time for containerd + crun
Install containerd and crun binary file and this /etc/containerd/config.toml:
version = 2
[plugins."io.containerd.runtime.v1.linux"]
shim_debug = false
[plugins."io.containerd.grpc.v1.cri".containerd]
default_runtime_name = "crun"
[plugins."io.containerd.grpc.v1.cri".containerd.runtimes]
[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.crun]
runtime_type = "io.containerd.runc.v2"
[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.crun.options]
BinaryName = "/usr/local/bin/crun"
SystemdCgroup = true
[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runsc]
runtime_type = "io.containerd.runsc.v1"
[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runsc.options]
SystemdCgroup = true
[plugins."io.containerd.grpc.v1.cri".registry.mirrors]
[plugins."io.containerd.grpc.v1.cri".registry.mirrors."docker.io"]
endpoint = ["https:///mirror.blabla.com"]
[plugins."io.containerd.grpc.v1.cri".registry.configs."https://mirror.blabla.com".tls]
insecure_skip_verify = trueHow to verify ?
# crictl inspect f937078e32863|jq .info.runtimeOptions
{
"binary_name": "/usr/local/bin/crun",
"systemd_cgroup": true
}that’s all
refer: https://github.com/containerd/containerd/discussions/6162
Update1:
you can get runtime name from “crictl pods”
$ sudo crictl pods
POD ID CREATED STATE NAME NAMESPACE ATTEMPT RUNTIME
8cac4a0328c65 20 seconds ago Ready echo-5748d9c654-bb749 nick2 0 crun
9155e163bb9b1 36 seconds ago Ready echo-65bd58d9d-bbrpf nick2 0 runc
26f202f3586eb 44 seconds ago Ready echo-65bd58d9d-55tfp nick1 0 runc
1b68827cedff3 2 minutes ago Ready echo-5d79b6f6f6-t8prb default 4 runsc
