mirror of https://github.com/kata-containers/kata-containers.git synced 2025-08-30 14:25:43 +00:00

acrn containers cri cri-o docker firecracker k8s kubernetes kvm oci qemu security virtual-machine virtualization

Go to file

Fabiano Fidêncio 04139ba686 release: Kata Containers 2.3.0-alpha1 - virtiofs: Create shared directory with 0700 mode, not 0750 - watcher: ensure we create target mount point for storage - packaging: fix qemu build on ppc64le - runtime: tracing: Use root context to stop tracing - Replace SHPC with ACPI PCI hotplug for Kata guests - kata-deploy: Also provide "stable" & "latest" tags - runtime: tracing: Fix logger passed in newContainer - virtcontainers: update VC SandboxConfig API add SandboxBindMounts field - sandbox: Allow the device to be accessed,such as /dev/null and /dev/u… - qemu: add v5.1.0 dir under tag_patches - threat-model: Add missing threat-model document - docs: documentation for running non-root VMM - workflows,release: Upload the vendored cargo code - runtime: run the QEMU VMM process with a non-root user - runtime: update .gitignore file cleare the vc shim config - runtime: fix empty cgroup path validation error - ci: Call agent shutdown test only in the correspondent CI_JOB - runtime: Remove outdated TestStoreContainer - runtime: refactor commandline code directory - virtcontainers: update VC HypervisorConfig API add three lost fields - virtcontainers: add unit tests for container.go - runtime: clh: Enable hugepages support - agent: Simplify mount point creation - versions: Allow newer Rust versions - runtime/qemu: Move from query-cpus to query-cpus-fast - Update Kata to use qemu-6.1 - Host cgroups improvements and simplifications - Add doc for guest swap - versions: Upgrade to Cloud Hypervisor v18.0 - runtime: Fix README link - qemu: remove default config for arm64. - sandbox: Add device permissions such as /dev/null to cgroup - virtcontainers: fc: parse vcpuID correctly - kata-tarball: Build and test fixes - test: enable running tests under root user - osbuilder: Change to "=" operator to make script more portable - makefile: Fix error exit status code - osbuilder: fix inconsistent calculation of fs size - virtcontainers: Remove NewStoreFeature - snap: Test variable instead of executing "branch" - license: drop redundent license files - Fix swap fail insert fail issue `272771dc` watcher: ensure we create target mount point for storage `439e5ac3` packaging: fix qemu build on ppc64le `8bbcb06a` qemu: Disable SHPC hotplug `cc4983ee` runtime: Remove unused qemuArchBase.appendBridges definition `e248de46` vendor: Update govmm `0ca8c272` qemu: add v5.1.0 dir under tag_patches `3bdcfaa6` kata-deploy: Add more info about the stable tag `41c590fa` kata-deploy: Improve README `debf3c9f` kata-deploy: Remove qemu-virtiofs runtime class `43a72d76` release: update the kata-deploy yaml files accordingly `ea9b2f9c` kata-deploy: Add "stable" info to the README `e5411056` kata-deploy: Update the README `9acf4e5d` kata-deploy: Add `stable` yaml files `a86babe0` kata-deploy: Point to the `latest` release `a156288c` workflows: Add "stable" & "latest" tags to kata-deploy `305afc8b` docs: documentation for running non-root VMM `1fe080fd` threat-model: Add missing threat-model document `21c85116` workflows,release: Upload the vendored cargo code `9a6d56f1` runtime: fix empty cgroup path validation error `90e63887` ci: Call agent shutdown test only in the correspondent CI_JOB `48fb1d92` virtiofs: Create shared directory with 0700 mode, not 0750 `077b77c1` runtime: tracing: Fix logger passed in newContainer `39cd05e0` runtime: tracing: Use root context to stop tracing `1cfe5930` runtime: Run QEMU using a non-root user/group `fd983738` runtime: update .gitignore file cleare the vc shim config `067c44d0` runtime: fix UT build failure `9353cd77` runtime: Remove outdated TestStoreContainer `9a311a2b` docs: fix invalid kernel dax doc url `e7c42fbc` runtime: unify generated config `4f7cc186` runtime: refactor commandline code directory `9d3cd984` agent/mount: Remove unused ensure_destination_exists() `64aa5623` agent: Correct mount point creation `08d7aebc` agent/mount: Split out regular file case from ensure_destination_exists() `9fa3beff` agent: Remove unnecessary BareMount structure `49282854` agent: Simplify BareMount::mount by using nix::mount::mount `d00decc9` runtime: clh: Enable hugepages support `64bb803f` runtime/qemu: Move from query-cpus to query-cpus-fast `25ac3524` versions: Allow newer Rust versions `851d5f86` tests: Correct heading in static checks test `4b7e4a4c` runtime: Vendoring update `8d9d6e6a` docs: Host cgroups documentation update `9bed2ade` virtcontainers: Convert to the new cgroups package API `b42ed393` virtcontainers: cgroups: Add a containerd API based cgroups package `f17752b0` virtcontainers: container: Do not create and manage container host cgroups `dc7e9bce` virtcontainers: sandbox: Host cgroups partitioning `f811026c` virtcontainers: Unconditionally create the sandbox cgroup manager `a6066404` virtcontainers: update VC HypervisorConfig API add three lost fields `bb18cd47` virtcontainers: update VC SandboxConfig API add SandboxBindMounts field `58e77a3c` sandbox: Allow the device to be accessed,such as /dev/null and /dev/urandom `d67a414b` src/runtime/README.md: Fix URL of Licence `13b8bb0c` runtime: Fix README link `25670d30` packaging/qemu: Update qemu-exerimental version to v6.1.0 `041a513f` versions: Update qemu to v6.1.0 `62baa48e` virtcontainers: fc: parse vcpuID correctly `81de2d47` packaging: Correct error message in apply_patches.sh `f785ff0b` virtcontainers: clh: Revert the workaround incorrect default values `0e0e59dc` virtcontainers: clh: Re-generate the client code `f0b53314` versions: Upgrade to Cloud Hypervisor v18.0 `11652136` actions: test make kata-tarball `626d659f` actions: kata-deploy on PRs and use makefile `78d99f51` kata-deploy: Make verbose single builds `59486b85` kata-deploy: Add tarball suffix to makefile targets `96e1246b` makefile: Include kata-deploy targets `74d645cd` how-to: Add how-to-setup-swap-devices-in-guest-kernel.md `d865c809` virtcontainers: add unit tests for container.go `71f915c6` sandbox: Add device permissions such as /dev/null to cgroup `2174fee4` docs: Add swap annotations introduction `2abc450a` test: enable running tests under root user `924a68d0` osbuilder: Change to "=" operator to make script more portable `1fff9be7` qemu: remove default config for arm64. `e2a9e78c` virtcontainers: Remove NewStoreFeature `bfcee911` osbuilder: fix inconsistent calculation of fs size `4996f9b7` snap: Test variable instead of executing "branch" `256c3b27` license: drop redundent license files `bcc9fa3b` hotplugAddBlockDevice: Use ExecuteBlockdevAddWithDriverCache with swap `bd85da04` vendor: Update vendor/github.com/kata-containers/govmm `d422789f` makefile: Fix error exit status code Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>		2021-09-24 12:32:26 +02:00
.github/workflows	workflows: Add "stable" & "latest" tags to kata-deploy	2021-09-21 22:48:04 +02:00
ci	ci: Call agent shutdown test only in the correspondent CI_JOB	2021-09-20 17:04:48 +00:00
docs	qemu: Disable SHPC hotplug	2021-09-23 10:27:26 +10:00
pkg/logging	logging: Use guard to make threaded logging safe	2021-03-29 14:32:11 +01:00
snap	versions: Update qemu to v6.1.0	2021-09-11 16:43:22 +10:00
src	Merge pull request #2590 from c3d/issue/2589-virtiofsd-perms	2021-09-24 09:16:40 +02:00
tools	Merge pull request #2693 from Amulyam24/qemu-build	2021-09-23 10:31:34 -07:00
utils	branch: change 2.0-dev to main	2021-01-22 15:49:35 +08:00
.gitignore	gitignore: Ignore *~ editor backup files	2021-02-19 09:54:53 +11:00
CODE_OF_CONDUCT.md	docs: Add contributing and code of conduct docs	2018-02-06 10:41:09 +00:00
CODEOWNERS	docs: fix static check errors	2020-09-28 11:01:03 +08:00
CONTRIBUTING.md	docs: Add contributing and code of conduct docs	2018-02-06 10:41:09 +00:00
Glossary.md	docs: added a glossary to support SEO tactics	2021-07-20 11:22:58 +02:00
LICENSE	Initial commit	2017-12-06 23:01:13 -06:00
Makefile	makefile: Include kata-deploy targets	2021-09-09 14:32:08 +00:00
README.md	docs: Removed mention of 1.x	2021-07-30 10:58:22 +01:00
utils.mk	build: Add `make vendor`	2021-07-14 13:59:41 +02:00
VERSION	release: Kata Containers 2.3.0-alpha1	2021-09-24 12:32:26 +02:00
versions.yaml	Merge pull request #2634 from dgibson/newer-rust	2021-09-16 12:23:37 +10:00

README.md

Kata Containers

Welcome to Kata Containers!

This repository is the home of the Kata Containers code for the 2.0 and newer releases.

If you want to learn about Kata Containers, visit the main Kata Containers website.

Introduction

Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs.

Getting started

See the installation documentation.

Documentation

See the official documentation (including installation guides, the developer guide, design documents and more).

Community

To learn more about the project, its community and governance, see the community repository. This is the first place to go if you wish to contribute to the project.

Getting help

See the community section for ways to contact us.

Raising issues

Please raise an issue in this repository.

Note: If you are reporting a security issue, please follow the vulnerability reporting process

Developers

Components

Main components

The table below lists the core parts of the project:

Component	Type	Description
runtime	core	Main component run by a container manager and providing a containerd shimv2 runtime implementation.
agent	core	Management process running inside the virtual machine / POD that sets up the container environment.
documentation	documentation	Documentation common to all components (such as design and install documentation).
tests	tests	Excludes unit tests which live with the main code.

Additional components

The table below lists the remaining parts of the project:

Component	Type	Description
packaging	infrastructure	Scripts and metadata for producing packaged binaries (components, hypervisors, kernel and rootfs).
kernel	kernel	Linux kernel used by the hypervisor to boot the guest image. Patches are stored here.
osbuilder	infrastructure	Tool to create "mini O/S" rootfs and initrd images and kernel for the hypervisor.
`agent-ctl`	utility	Tool that provides low-level access for testing the agent.
`trace-forwarder`	utility	Agent tracing helper.
`ci`	CI	Continuous Integration configuration files and scripts.
`katacontainers.io`	Source for the `katacontainers.io` site.

Packaging and releases

Kata Containers is now available natively for most distributions. However, packaging scripts and metadata are still used to generate snap and GitHub releases. See the components section for further details.