Charmed-Kubernetes/containerd/config.yaml

"options":
  "enable-cgroups":
    "type": "boolean"
    "default": !!bool "false"
    "description": |
      Enable GRUB cgroup overrides cgroup_enable=memory swapaccount=1. WARNING
      changing this option will reboot the host - use with caution on production
      services.      
  "disable-juju-proxy":
    "type": "boolean"
    "default": !!bool "false"
    "description": |
      Ignore juju-http(s) proxy settings on this charm.
      If set to true, all juju https proxy settings will be ignored      
  "custom-registry-ca":
    "type": "string"
    "default": ""
    "description": |
      Base64 encoded Certificate Authority (CA) bundle. Setting this config
      allows container runtimes to pull images from registries with TLS
      certificates signed by an external CA.      
  "custom_registries":
    "type": "string"
    "default": "[]"
    "description": |
      Registry endpoints and credentials. Setting this config allows Kubelet
      to pull images from registries where auth is required.

      The value for this config must be a JSON array of credential objects, like this:
      [{"host": "my.registry:port", "username": "user", "password": "pass"}]

      `host` could be registry host address, e.g.:  myregistry.io:9000, 10.10.10.10:5432.
      or a name, e.g.: myregistry.io, myregistry.
      It will be derived from `url` if not provided, e.g.:
        url: http://10.10.10.10:8000 --> host: 10.10.10.10:8000

      If required, you can supply credentials with option keys 'username' and 'password',
      or 'ca_file', 'cert_file', and 'key_file' for ssl/tls communication,
      which should be base64 encoded file contents in string form

      "ca_file": "'"$(base64 -w 0 < my.custom.registry.pem)"'"

      example config)
      juju config containerd custom_registries='[{
          "url": "https://registry.example.com",
          "ca_file": "'"$(base64 -w 0 < ~/my.custom.ca.pem)"'",
          "cert_file": "'"$(base64 -w 0 < ~/my.custom.cert.pem)"'",
          "key_file": "'"$(base64 -w 0 < ~/my.custom.key.pem)"'",
      }]'      
  "gpu_driver":
    "type": "string"
    "default": "auto"
    "description": |
      Override GPU driver installation.  Options are "auto", "nvidia", "none".      
  "runtime":
    "type": "string"
    "default": "auto"
    "description": |
      Set a custom containerd runtime.  Set "auto" to select based on hardware.      
  "shim":
    "type": "string"
    "default": "containerd-shim"
    "description": |
      Set a custom containerd shim.      
  "http_proxy":
    "type": "string"
    "default": ""
    "description": |
      URL to use for HTTP_PROXY to be used by Containerd. Useful in
      egress-filtered environments where a proxy is the only option for
      accessing the registry to pull images.      
  "https_proxy":
    "type": "string"
    "default": ""
    "description": |
      URL to use for HTTPS_PROXY to be used by Containerd. Useful in
      egress-filtered environments where a proxy is the only option for
      accessing the registry to pull images.      
  "no_proxy":
    "type": "string"
    "default": ""
    "description": |
      Comma-separated list of destinations (either domain names or IP
      addresses) which should be accessed directly, rather than through
      the proxy defined in http_proxy or https_proxy. Must be less than
      2023 characters long.