bottlerocket-os · bilby91 · Apr 3, 2026 · Apr 7, 2026 · bcressey · Apr 6, 2026
diff --git a/packages/containerd-2.1/containerd-config-toml_k8s_containerd_sock b/packages/containerd-2.1/containerd-config-toml_k8s_containerd_sock
@@ -62,6 +62,9 @@ platform = "linux/amd64"
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.runc]
 runtime_type = "io.containerd.runc.v2"
 base_runtime_spec = "/etc/containerd/cri-base.json"
+{{#if settings.container-runtime.cgroup-writable}}
+cgroup_writable = {{settings.container-runtime.cgroup-writable}}
+{{/if}}
 
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.runc.options]
 SystemdCgroup = true

diff --git a/packages/containerd-2.1/containerd-config-toml_k8s_nvidia_containerd_sock b/packages/containerd-2.1/containerd-config-toml_k8s_nvidia_containerd_sock
@@ -65,16 +65,25 @@ default_runtime_name = "nvidia"
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.nvidia]
 runtime_type = "io.containerd.runc.v2"
 base_runtime_spec = "/etc/containerd/cri-base.json"
+{{#if settings.container-runtime.cgroup-writable}}
+cgroup_writable = {{settings.container-runtime.cgroup-writable}}
+{{/if}}
 
 # CDI only nvidia container runtime
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.nvidia-cdi]
 runtime_type = "io.containerd.runc.v2"
 base_runtime_spec = "/etc/containerd/cri-base.json"
+{{#if settings.container-runtime.cgroup-writable}}
+cgroup_writable = {{settings.container-runtime.cgroup-writable}}
+{{/if}}
 
 # legacy only nvidia container runtime
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.nvidia-legacy]
 runtime_type = "io.containerd.runc.v2"
 base_runtime_spec = "/etc/containerd/cri-base.json"
+{{#if settings.container-runtime.cgroup-writable}}
+cgroup_writable = {{settings.container-runtime.cgroup-writable}}
+{{/if}}
 
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.nvidia.options]
 SystemdCgroup = true

diff --git a/packages/containerd-2.2/containerd-config-toml_k8s_containerd_sock b/packages/containerd-2.2/containerd-config-toml_k8s_containerd_sock
@@ -62,6 +62,9 @@ platform = "linux/amd64"
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.runc]
 runtime_type = "io.containerd.runc.v2"
 base_runtime_spec = "/etc/containerd/cri-base.json"
+{{#if settings.container-runtime.cgroup-writable}}
+cgroup_writable = {{settings.container-runtime.cgroup-writable}}
+{{/if}}
 
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.runc.options]
 SystemdCgroup = true

diff --git a/packages/containerd-2.2/containerd-config-toml_k8s_nvidia_containerd_sock b/packages/containerd-2.2/containerd-config-toml_k8s_nvidia_containerd_sock
@@ -65,16 +65,25 @@ default_runtime_name = "nvidia"
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.nvidia]
 runtime_type = "io.containerd.runc.v2"
 base_runtime_spec = "/etc/containerd/cri-base.json"
+{{#if settings.container-runtime.cgroup-writable}}
+cgroup_writable = {{settings.container-runtime.cgroup-writable}}
+{{/if}}
 
 # CDI only nvidia container runtime
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.nvidia-cdi]
 runtime_type = "io.containerd.runc.v2"
 base_runtime_spec = "/etc/containerd/cri-base.json"
+{{#if settings.container-runtime.cgroup-writable}}
+cgroup_writable = {{settings.container-runtime.cgroup-writable}}
+{{/if}}
 
 # legacy only nvidia container runtime
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.nvidia-legacy]
 runtime_type = "io.containerd.runc.v2"
 base_runtime_spec = "/etc/containerd/cri-base.json"
+{{#if settings.container-runtime.cgroup-writable}}
+cgroup_writable = {{settings.container-runtime.cgroup-writable}}
+{{/if}}
 
 [plugins."io.containerd.cri.v1.runtime".containerd.runtimes.nvidia.options]
 SystemdCgroup = true