mirror of
https://github.com/kata-containers/kata-containers.git
synced 2025-08-31 08:28:34 +00:00
04139ba686
- virtiofs: Create shared directory with 0700 mode, not 0750 - watcher: ensure we create target mount point for storage - packaging: fix qemu build on ppc64le - runtime: tracing: Use root context to stop tracing - Replace SHPC with ACPI PCI hotplug for Kata guests - kata-deploy: Also provide "stable" & "latest" tags - runtime: tracing: Fix logger passed in newContainer - virtcontainers: update VC SandboxConfig API add SandboxBindMounts field - sandbox: Allow the device to be accessed,such as /dev/null and /dev/u… - qemu: add v5.1.0 dir under tag_patches - threat-model: Add missing threat-model document - docs: documentation for running non-root VMM - workflows,release: Upload the vendored cargo code - runtime: run the QEMU VMM process with a non-root user - runtime: update .gitignore file cleare the vc shim config - runtime: fix empty cgroup path validation error - ci: Call agent shutdown test only in the correspondent CI_JOB - runtime: Remove outdated TestStoreContainer - runtime: refactor commandline code directory - virtcontainers: update VC HypervisorConfig API add three lost fields - virtcontainers: add unit tests for container.go - runtime: clh: Enable hugepages support - agent: Simplify mount point creation - versions: Allow newer Rust versions - runtime/qemu: Move from query-cpus to query-cpus-fast - Update Kata to use qemu-6.1 - Host cgroups improvements and simplifications - Add doc for guest swap - versions: Upgrade to Cloud Hypervisor v18.0 - runtime: Fix README link - qemu: remove default config for arm64. - sandbox: Add device permissions such as /dev/null to cgroup - virtcontainers: fc: parse vcpuID correctly - kata-tarball: Build and test fixes - test: enable running tests under root user - osbuilder: Change to "=" operator to make script more portable - makefile: Fix error exit status code - osbuilder: fix inconsistent calculation of fs size - virtcontainers: Remove NewStoreFeature - snap: Test variable instead of executing "branch" - license: drop redundent license files - Fix swap fail insert fail issue272771dcwatcher: ensure we create target mount point for storage439e5ac3packaging: fix qemu build on ppc64le8bbcb06aqemu: Disable SHPC hotplugcc4983eeruntime: Remove unused qemuArchBase.appendBridges definitione248de46vendor: Update govmm0ca8c272qemu: add v5.1.0 dir under tag_patches3bdcfaa6kata-deploy: Add more info about the stable tag41c590fakata-deploy: Improve READMEdebf3c9fkata-deploy: Remove qemu-virtiofs runtime class43a72d76release: update the kata-deploy yaml files accordinglyea9b2f9ckata-deploy: Add "stable" info to the READMEe5411056kata-deploy: Update the README9acf4e5dkata-deploy: Add `stable` yaml filesa86babe0kata-deploy: Point to the `latest` releasea156288cworkflows: Add "stable" & "latest" tags to kata-deploy305afc8bdocs: documentation for running non-root VMM1fe080fdthreat-model: Add missing threat-model document21c85116workflows,release: Upload the vendored cargo code9a6d56f1runtime: fix empty cgroup path validation error90e63887ci: Call agent shutdown test only in the correspondent CI_JOB48fb1d92virtiofs: Create shared directory with 0700 mode, not 0750077b77c1runtime: tracing: Fix logger passed in newContainer39cd05e0runtime: tracing: Use root context to stop tracing1cfe5930runtime: Run QEMU using a non-root user/groupfd983738runtime: update .gitignore file cleare the vc shim config067c44d0runtime: fix UT build failure9353cd77runtime: Remove outdated TestStoreContainer9a311a2bdocs: fix invalid kernel dax doc urle7c42fbcruntime: unify generated config4f7cc186runtime: refactor commandline code directory9d3cd984agent/mount: Remove unused ensure_destination_exists()64aa5623agent: Correct mount point creation08d7aebcagent/mount: Split out regular file case from ensure_destination_exists()9fa3beffagent: Remove unnecessary BareMount structure49282854agent: Simplify BareMount::mount by using nix::mount::mountd00decc9runtime: clh: Enable hugepages support64bb803fruntime/qemu: Move from query-cpus to query-cpus-fast25ac3524versions: Allow newer Rust versions851d5f86tests: Correct heading in static checks test4b7e4a4cruntime: Vendoring update8d9d6e6adocs: Host cgroups documentation update9bed2adevirtcontainers: Convert to the new cgroups package APIb42ed393virtcontainers: cgroups: Add a containerd API based cgroups packagef17752b0virtcontainers: container: Do not create and manage container host cgroupsdc7e9bcevirtcontainers: sandbox: Host cgroups partitioningf811026cvirtcontainers: Unconditionally create the sandbox cgroup managera6066404virtcontainers: update VC HypervisorConfig API add three lost fieldsbb18cd47virtcontainers: update VC SandboxConfig API add SandboxBindMounts field58e77a3csandbox: Allow the device to be accessed,such as /dev/null and /dev/urandomd67a414bsrc/runtime/README.md: Fix URL of Licence13b8bb0cruntime: Fix README link25670d30packaging/qemu: Update qemu-exerimental version to v6.1.0041a513fversions: Update qemu to v6.1.062baa48evirtcontainers: fc: parse vcpuID correctly81de2d47packaging: Correct error message in apply_patches.shf785ff0bvirtcontainers: clh: Revert the workaround incorrect default values0e0e59dcvirtcontainers: clh: Re-generate the client codef0b53314versions: Upgrade to Cloud Hypervisor v18.011652136actions: test make kata-tarball626d659factions: kata-deploy on PRs and use makefile78d99f51kata-deploy: Make verbose single builds59486b85kata-deploy: Add tarball suffix to makefile targets96e1246bmakefile: Include kata-deploy targets74d645cdhow-to: Add how-to-setup-swap-devices-in-guest-kernel.mdd865c809virtcontainers: add unit tests for container.go71f915c6sandbox: Add device permissions such as /dev/null to cgroup2174fee4docs: Add swap annotations introduction2abc450atest: enable running tests under root user924a68d0osbuilder: Change to "=" operator to make script more portable1fff9be7qemu: remove default config for arm64.e2a9e78cvirtcontainers: Remove NewStoreFeaturebfcee911osbuilder: fix inconsistent calculation of fs size4996f9b7snap: Test variable instead of executing "branch"256c3b27license: drop redundent license filesbcc9fa3bhotplugAddBlockDevice: Use ExecuteBlockdevAddWithDriverCache with swapbd85da04vendor: Update vendor/github.com/kata-containers/govmmd422789fmakefile: Fix error exit status code Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
Kata Containers
Welcome to Kata Containers!
This repository is the home of the Kata Containers code for the 2.0 and newer releases.
If you want to learn about Kata Containers, visit the main Kata Containers website.
Introduction
Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs.
Getting started
See the installation documentation.
Documentation
See the official documentation (including installation guides, the developer guide, design documents and more).
Community
To learn more about the project, its community and governance, see the community repository. This is the first place to go if you wish to contribute to the project.
Getting help
See the community section for ways to contact us.
Raising issues
Please raise an issue in this repository.
Note: If you are reporting a security issue, please follow the vulnerability reporting process
Developers
Components
Main components
The table below lists the core parts of the project:
| Component | Type | Description |
|---|---|---|
| runtime | core | Main component run by a container manager and providing a containerd shimv2 runtime implementation. |
| agent | core | Management process running inside the virtual machine / POD that sets up the container environment. |
| documentation | documentation | Documentation common to all components (such as design and install documentation). |
| tests | tests | Excludes unit tests which live with the main code. |
Additional components
The table below lists the remaining parts of the project:
| Component | Type | Description |
|---|---|---|
| packaging | infrastructure | Scripts and metadata for producing packaged binaries (components, hypervisors, kernel and rootfs). |
| kernel | kernel | Linux kernel used by the hypervisor to boot the guest image. Patches are stored here. |
| osbuilder | infrastructure | Tool to create "mini O/S" rootfs and initrd images and kernel for the hypervisor. |
agent-ctl |
utility | Tool that provides low-level access for testing the agent. |
trace-forwarder |
utility | Agent tracing helper. |
ci |
CI | Continuous Integration configuration files and scripts. |
katacontainers.io |
Source for the katacontainers.io site. |
Packaging and releases
Kata Containers is now available natively for most distributions. However, packaging scripts and metadata are still used to generate snap and GitHub releases. See the components section for further details.