runtime: add option to force guest pull

This enables guest pull via config, without the need of any external snapshotter. When the config enables runtime.experimental_force_guest_pull, instead of relying on annotations to select the way to share the root FS, we always use guest pull. Co-authored-by: Markus Rudy <mr@edgeless.systems> Signed-off-by: Paul Meyer <katexochen0@gmail.com>
2025-09-17 14:58:16 +00:00 · 2025-05-08 11:46:01 +02:00
parent 139dc13bdc
commit c4815eb3ad
16 changed files with 177 additions and 1 deletions
--- a/src/runtime-rs/Makefile
+++ b/src/runtime-rs/Makefile
@@ -175,6 +175,7 @@ DEFMSIZE9P := 8192
 DEFVFIOMODE := guest-kernel
 DEFBINDMOUNTS := []
 DEFDANCONF := /run/kata-containers/dans
+DEFFORCEGUESTPULL := false
 SED = sed
 CLI_DIR = cmd
 SHIMV2 = containerd-shim-kata-v2
@@ -503,6 +504,7 @@ USER_VARS += KATA_INSTALL_GROUP
 USER_VARS += KATA_INSTALL_OWNER
 USER_VARS += KATA_INSTALL_CFG_PERMS
 USER_VARS += DEFDANCONF
+USER_VARS += DEFFORCEGUESTPULL

 SOURCES := \
  $(shell find . 2>&1 | grep -E '.*\.rs$$') \