mirror of https://github.com/kata-containers/kata-containers.git synced 2025-07-10 05:44:04 +00:00

acrn containers cri cri-o docker firecracker k8s kubernetes kvm oci qemu security virtual-machine virtualization

Go to file

Snir Sheriber 117fc9c9e9 release: Kata Containers 2.4.0-alpha1 - kata-deploy: fix tar command in dockerfile - vendor: update to containerd v1.6.0-beta.4 - versions: Upgrade to Cloud Hypervisor v20.2 - vc: remove swagger binary - agent: Refactor command line parsing to use a framework - move the oci and protocols crates from agent to upper libs - docs: Remove word duplication - osbuilder: Restore Debian as a rootfs - runtime: fix a typo in kata-collect-data.sh - agent: return detail error message for RPC calls from shim - use-cases: clarify SPDK vhost-user-nvme target status in using-spdk-v… - Delint dockerfiles - Makefile: update `make go-test` call - docs: add how-to on DinD in Kata - agent: Ignore unknown seccomp system calls - agent: mount: Remove unneeded mount_point local variable - docs: Fix outdated links - docs: Fix kernel configs README spelling errors - security: Update rust crate versions - kata-manager: Retrieve static tarball - osbuilder: avoid to copy versions.txt which already deprecated - qemu: Disable libudev for QEMU 5.2 and newer - osbuilder: Add protoc to the alpine container - docs: Clarify where to run agent API generation commands - packaging/qemu: partial git clone - docs: Fix arch doc formatting - CI: Switch to a mirror as gnu.org is down - Split architecture doc into separate files - docs: Update the stable branch strategy - tracing: Add span name to logging error - docs: Update code PR advice document - agent: Add config file option to cli - update container type handling - docs: Update architecture document - runtime: update golang to 1.16 and remove ioutil package - kata-deploy: Deal with empty containerd conf file - src: reorg source code directory - osbuilder: show usage if no options/arguments specified - Upgrade to Cloud Hypervisor v20.1 - image_build: add help info for '-f' option and 'BLOCK_SIZE' env. - osbuilder: be runtime consistent with podman build - osbuilder: Revert to using apk.static for Alpine - runtime/template: Handling new attributes for hypervisor config - docs: fix check-markdown test - runtime: correct span name for stopSandbox function - runtime: only call stopVirtiofsd when shared_fs is virtio-fs - snap: read initrd and image distros from version.yaml - versions: Use Ubuntu initrd for non-musl archs - packaging: Fix missing commit message in building kata-runtime - virtcontainers: clh: Upgrade to openapi-generator v5.3.0 - agent: user container ID as watchable storage key for hashmap - runtime: enable vhost-net for rootless hypervisor - packaging: add help information for '-f' option in install_go.sh - Cleanup some unused variables, definitions - Upgrade to Cloud Hypervisor v20.0 - docs: Update limitation document regarding docker swarm - runtime: Enable FUSE_DAX kernel config for DAX - agent: copy empty directories for watchable-bind mounts - runtime: Update comments for virtcontainers to use kata 2.0 - Update rust crate versions - osbuilder: Remove debian as a rootfs `e2c1e65e` kata-deploy: fix tar command in dockerfile `615224e9` agent: move the protocols to upper libs `330e3dcc` agent: move the oci crate to upper libs `7b03d78f` vendor: update to containerd v1.6.0-beta.4 `1f581a04` versions: Upgrade to Cloud Hypervisor v20.2 `623d8f08` docs: Remove word duplication `1c4edb96` agent: Refactor arg parsing to use clap `3093f93a` osbuilder: Restore Debian as a rootfs `073a3459` use-cases: clarify vhost-user-nvme status in using-spdk-vhost-user `2254fa86` runtime: fix a typo in kata-collect-data.sh `2d0f9d2d` vc: remove swagger binary `cf91307c` agent: return detail error message for rpc calls from shim `137e217b` docs: Fix outdated k8s link `55bac67a` docs: Fix kernel configs README spelling errors `205420d2` docs: Replicate branch rename on runtime-spec `91abebf9` agent: mount: Remove unneeded mount_point local variable `b1f4e945` security: Update rust crate versions `d79268ac` tools/packaging: add copyright to kata-monitor's Dockerfile `428cf0a6` packaging: delint tests dockerfiles `1ea9b703` packaging: delint kata-deploy dockerfiles `3669e1b6` ci/openshift-ci: delint dockerfiles `aeb2b673` osbuilder: delint dockerfiles `bc120289` packaging: delint kata-monitor dockerfiles `bc71dd58` packaging: delint static-build dockerfiles `99ef52a3` osbuilder: Add protoc to the alpine container `c2578cd9` docs: Clarify where to run agent API generation commands `321995b7` CI: Switch to a mirror as gnu.org is down `fb1989b2` docs: Fix arch doc formatting `2938bb7f` packaging/qemu: Use QEMU script to update submodules `5d49ccd6` packaging/qemu: Use partial git clone `87a219a1` docs: Update the stable branch strategy `d1bc409d` osbuilder: avoid to copy versions.txt which already deprecated `1653dd4a` tracing: Add span name to logging error `12c8e41c` qemu: Disable libudev for QEMU 5.2 and newer `233015a6` docs: Split guest assets details out of arch doc `db411c23` docs: Split k8s info out of arch doc `7ac619b2` docs: Split networking out of arch doc `5df0cb64` docs: Split storage out of arch doc `7229b7a6` docs: Split background and example out of arch doc `283d7d52` docs: Split history out of arch doc `6f9efb40` docs: Move arch doc to separate directory `02608e13` docs: Update code PR advice document `cb5c948a` kata-manager: Retrieve static tarball `51bf9807` docs: Update architecture document `f3a97e94` docs: add how-to on Docker in Kata `7a989a83` runtime: api-test: fixup `52f79aef` utils: update container type handling `5b002f3c` docs: change io/ioutil to io/os packages `03546f75` runtime: change io/ioutil to io/os packages `24a530ce` versions: bump minimum golang version to 1.16.10 `7c4263b3` src: reorg source directories `1a34fbcd` agent: Add config file option to cli `bbfb10e1` versions: Upgrade to Cloud Hypervisor v20.1 `84571506` kata-deploy: Deal with empty containerd conf file `3f7cf7ae` osbuilder: show usage if no options/arguments specified `2ebaaac7` osbuilder: be runtime consistent also with podman build `f3103696` docs: fix check-markdown test `2204ecac` versions: Upgrade Alpine, using minor version `dfd0732f` osbuilder: Revert to using apk.static for Alpine `6b3e4c21` image_build: add help info for '-f' option and 'BLOCK_SIZE' env. `b92babf9` runtime/template: Handling new attributes for hypervisor config `40bd34ca` runtime: only call stopVirtiofsd when shared_fs is virtio-fs `33f343ee` runtime: correct span name for stopSandbox function `d7cc952c` versions: Use Ubuntu initrd for non-musl archs `ff929fc0` snap: read initrd and image distros from version.yaml `8fae2631` packaging: Fix missing commit message in building kata-runtime `99530026` virtcontainers: clh: Upgrade to openapi-generator v5.3.0 `b3bcb7b2` runtime: enable vhost-net for rootless hypervisor `7cb7b9d5` agent: remove unused field in mount handling `f6ae1582` agent: drop unused fields from network `4756a04b` virtcontainers: clh: Re-generate the client code `0bf4d257` versions: Upgrade to Cloud Hypervisor v20.0 `647082b2` docs: Update limitation document regarding docker swarm `39b35d00` agent: user container ID as watchable storage key for hashmap `1e6f58e5` packaging: add help information for '-f' option in install_go.sh `2af95bc5` agent: create directories for watchable-bind mounts `6105e3ee` runtime: enable FUSE_DAX kernel config for DAX `591d4af1` runtime: Update comments for virtcontainers to use kata 2.0 `923e098d` osbuilder: Remove debian as a rootfs `afb96c00` agent: Wrap remaining nix errors with anyhow `aba572e0` rustjail: Wrap remaining nix errors with anyhow `30d60078` uevent: Fix clippy issue in test code `4a2be13c` agent: Upgrade nix version for security fix `256d5008` agent: Update crate versions `13257986` agent-ctl: Update rust lockfile `4ebdd424` forwarder: Update rust lockfile `6007322d` agent: Fixed invalid error message `7b356151` agent: Log unknown seccomp system calls `7304e52a` Makefile: update `make go-test` call `c66b5668` agent: Ignore unknown seccomp system calls Signed-off-by: Snir Sheriber <ssheribe@redhat.com>		2022-01-06 08:37:28 +02:00
.github/workflows	workflows: only allow org members to run `/test_kata_deploy`	2021-11-26 23:02:51 +01:00
ci	Merge pull request #3109 from wainersm/delint_dockerfiles	2021-12-28 10:11:51 -03:00
docs	docs: Remove word duplication	2022-01-04 15:58:50 +00:00
snap	docs: Move arch doc to separate directory	2021-12-16 12:26:17 +00:00
src	Merge pull request #3279 from egernst/containerd-vendor-bump	2022-01-05 11:13:05 -08:00
tools	kata-deploy: fix tar command in dockerfile	2022-01-05 20:07:52 +02:00
utils	Merge pull request #3375 from zhaojizhuang/debianrootfs	2022-01-05 10:27:47 +08:00
.gitignore	gitignore: Ignore *~ editor backup files	2021-02-19 09:54:53 +11:00
CODE_OF_CONDUCT.md	docs: Add contributing and code of conduct docs	2018-02-06 10:41:09 +00:00
CODEOWNERS	docs: fix static check errors	2020-09-28 11:01:03 +08:00
CONTRIBUTING.md	docs: Add contributing and code of conduct docs	2018-02-06 10:41:09 +00:00
Glossary.md	docs: added a glossary to support SEO tactics	2021-07-20 11:22:58 +02:00
LICENSE	Initial commit	2017-12-06 23:01:13 -06:00
Makefile	src: reorg source directories	2021-12-14 10:30:08 +08:00
README.md	src: reorg source directories	2021-12-14 10:30:08 +08:00
utils.mk	src: reorg source directories	2021-12-14 10:30:08 +08:00
VERSION	release: Kata Containers 2.4.0-alpha1	2022-01-06 08:37:28 +02:00
versions.yaml	versions: Upgrade to Cloud Hypervisor v20.2	2022-01-04 14:37:35 -08:00

README.md

Kata Containers

Welcome to Kata Containers!

This repository is the home of the Kata Containers code for the 2.0 and newer releases.

If you want to learn about Kata Containers, visit the main Kata Containers website.

Introduction

Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs.

Getting started

See the installation documentation.

Documentation

See the official documentation (including installation guides, the developer guide, design documents and more).

Community

To learn more about the project, its community and governance, see the community repository. This is the first place to go if you wish to contribute to the project.

Getting help

See the community section for ways to contact us.

Raising issues

Please raise an issue in this repository.

Note: If you are reporting a security issue, please follow the vulnerability reporting process

Developers

Components

Main components

The table below lists the core parts of the project:

Component	Type	Description
runtime	core	Main component run by a container manager and providing a containerd shimv2 runtime implementation.
agent	core	Management process running inside the virtual machine / POD that sets up the container environment.
documentation	documentation	Documentation common to all components (such as design and install documentation).
tests	tests	Excludes unit tests which live with the main code.

Additional components

The table below lists the remaining parts of the project:

Component	Type	Description
packaging	infrastructure	Scripts and metadata for producing packaged binaries (components, hypervisors, kernel and rootfs).
kernel	kernel	Linux kernel used by the hypervisor to boot the guest image. Patches are stored here.
osbuilder	infrastructure	Tool to create "mini O/S" rootfs and initrd images and kernel for the hypervisor.
`agent-ctl`	utility	Tool that provides low-level access for testing the agent.
`trace-forwarder`	utility	Agent tracing helper.
`ci`	CI	Continuous Integration configuration files and scripts.
`katacontainers.io`	Source for the `katacontainers.io` site.

Packaging and releases

Kata Containers is now available natively for most distributions. However, packaging scripts and metadata are still used to generate snap and GitHub releases. See the components section for further details.