container-runtime

settings.container-runtime.concurrent-download-chunk-size

The maximum chunk size in bytes for each part when downloading container image layers in parallel. Parallel layer fetch is enabled when this value is 512 bytes or greater, which can accelerate pulls for large images. The default is 8mib.

This setting can also be configured using the alias concurrent-layer-fetch-buffer.

This setting is only used for variants that have containerd-2.1 or above.

• a positive integer
• a byte size string (e.g. 1024, 1kb, 3mib, 2gb)

• TOML
• apiclient

# Set chunk size to 32 MiB
[settings.container-runtime]
concurrent-download-chunk-size = "32mb"

apiclient set settings.container-runtime.concurrent-download-chunk-size="32mb"

• Containerd Transfer Service

settings.container-runtime.enable-unprivileged-icmp

If true unprivileged containers can open ICMP echo sockets.

• true
• false

• CRI Plugin Config Guide - Full configuration

settings.container-runtime.enable-unprivileged-ports

If true unprivileged containers can bind to ports less than 1024.

• true
• false

• CRI Plugin Config Guide - Full configuration

settings.container-runtime.max-concurrent-downloads

The number of allowed concurrent layer downloads for each image.

• a positive number

• CRI Plugin Config Guide - Full configuration

settings.container-runtime.max-container-log-line-size

A value that dictates the maximum log line size, any larger log lines will split into multiple lines. Values are expressed in bytes.

• -1 for no limit
• a positive numbers

• CRI Plugin Config Guide - Full configuration

settings.container-runtime.snapshotter

The snapshotter to use for container images.

• overlayfs (default)
• soci

• TOML
• apiclient

[settings.container-runtime]
snapshotter = "soci"

apiclient set settings.container-runtime.snapshotter="soci"