Initial alpha release for 1.13.0.
agent Changes
Shortlog
d7a57c6 release: Kata Containers 1.13.0-alpha0
09af1d8 github: Add github actions
d66fcb8 rootBusPath: create rootBusPath dynamically.
23bd1c7 ci: install docker 19.03 for arm64 to let build image go
proxy Changes
Shortlog
cc28a02 release: Kata Containers 1.13.0-alpha0
969eafa actions: Use actions/checkout@v2 with depth 0
82bedcc actions: Define TRAVIS_BRANCH
b8adeef github: Enable github actions
runtime Changes
Shortlog
f8e1406 snap: add GH actions jobs to release the snap package
a303554 release: Kata Containers 1.13.0-alpha0
b2956f3 blk-dev: hotplug read only if applicable
8b74066 volumes: cleanup, minimal refactoring
cf32518 govmm: revendor to get latest changes
188424a vendor: update govmm from intel to kata-containers
a91deab virtcontainers: Append max_ports to virtio-serial device
7b1d678 qemu: no state to save if QEMU isn't running
664f1b2 ACPI: enable acpi for arm64 on qemu
cafd967 Gopkg: update govmm to involve pflash in
0fb409d github: Add github actions
11c8c19 versions: Update firecracker to 0.21.3
bcf29ba build: Remove default hypervisor message from build
0279c81 shimv2: Add tracing to shimv2
c963777 cli: check modules and permissions before loading a module
f2ff670 cli: don't fail if rate limit is exceeded
ba5ca59 versions: Bump the newest-version of OpenShift
27c558e version: add new docker version entry for agent test on arm
c56af73 virtcontainers: Don't set Ctty
559ba41 runtime: sleep 1 second after GetOOMEvent failed
e4a68a7 runtime: clh: update cloud-hypervisor
02af5c9 runtime: clh: disable virtiofs DAX when FS cache size is 0
fc6beea release: Fix release candidate to major version upgrade check
8fbf9aa tests: Ensure semver build metadata is ignored
df99deb release: Make error format string consistent
38fc74c tests: Update assets test to adapt to recent changes
fc412ad makefile: Enable hypervisor annotations by default
f89fac9 config: Rename 'runtime' to 'runtimeConfig'
cf3a7eb config: Improve comments in configuration file templates
31f0ed5 config: Make configuration file comments consistent
1a7eeb6 annotations: Correct unit tests to validate new protections
2235d5d annotations: Split addHypervisorOverrides to reduce complexity
151e6fc annotations: Add unit test for checkPathIsInGlobs
ad9ce3f annotations: Add unit test for regexpContains function
90ff89e runtime: Fix firecracker config
612fb2c makefile: Add missing generated vars to USER_VARS
979e630 makefile: Improve names of config entries for annotation checks
d412a7f annotations: Give better names to local variabes in search functions
58de2c5 annotations: Rename checkPathIsInGlobList with checkPathIsInGlobs
849f17c config: Add better comments in the template files
bce2528 config: Whitelist hypervisor annotations by name
2417d0b config: Use glob instead of regexp to match paths in annotations
1e036c8 annotations: Fix typo in comment
5ee9b20 config: Add makefile variables for path lists
ed56c9d config: Protect file_mem_backend against annotation attacks
2f0360b config: Protect vhost_user_store_path against annotation attacks
fba4619 config: Add security warning on configuration examples
92065d8 config: Protect ctlpath from annotation attack
0d5273a config: Protect jailer_path annotation
b588faf config: Add examples for path_list configuration
b2d64b6 annotations: Simplify negative logic
d823b3d config: Add hypervisor path override through annotations
e2a4015 config: Fix typo in function name
22e89f6 config: Protect virtio_fs_daemon annotation
11e737d config: Add 'List' alternates for hypervisor configuration paths
b44b1ba runtime: Add s.newStore.Destroy before defer
fac58a7 clh: let clh config build for arm64
7739905 runtime: mount shared mountpoint readonly
509eb6f runtime: readonly mounts should be readonly bindmount on the host
4ce09fb hypervisor: Remove unused methods
6a5eb0d annotations: Improve asset annotation handling
7d9860d annotations: Add missing hypervisor control annotation
f53406f asset: Formatting, grammar and whitespace
2696323 runtime: mount shared mountpoint readonly
750419c runtime: readonly mounts should be readonly bindmount on the host
bc1d883 versions: Update cloud-hypervisor to release v0.11.0
120e616 runtime: Ignore ENOENT in kill/delete
ec26e48 clh: Consolidate the code path for device unplug
0ffaeeb network: Fix error reporting in listRoutes()
b86e904 network: Correct error reporting in listInterfaces()
5069ea4 gitignore: Ignore cli/containerd-shim-kata-v2/config-generated.go
3596058 vhost-user-blk: Use PciPath type for vhost user devices
64751f3 block: Use PciPath type through block code
3e58971 network: Use PciPath type through network handling
bfbfab3 network: Allow convertToInterface to fail
185b3ab device: Introduce PciSlot and PciPath types
1c0dccb vendor: Update vendored agent code
141de5c arm64: correct bridge type for QEMUVIRT machine
shim Changes
Shortlog
c80f776 release: Kata Containers 1.13.0-alpha0
59eebf3 github: Enable github actions
Compatibility with Docker
Kata Containers 1.13.0-alpha0 is compatible with Docker v18.06-ce
Compatibility with CRI-O
Kata Containers 1.13.0-alpha0 is compatible with CRI-O 0eec454168e381e460b3d6de07bf50bfd9b0d082
Compatibility with cri-containerd
Kata Containers 1.13.0-alpha0 is compatible with cri-contaienrd 3a4acfbc99aa976849f51a8edd4af20ead51d8d7
OCI Runtime Specification
Kata Containers 1.13.0-alpha0 support the OCI Runtime Specification v1.0.0-rc5
Compatibility with Kubernetes
Kata Containers 1.13.0-alpha0 is compatible with Kubernetes 1.17.3-00
Kata Linux Containers image
Agent version: 1.13.0-alpha0
Default Image Guest OS:
description: |
Root filesystem disk image used to boot the guest virtual
machine.
url: "https://github.com/kata-containers/osbuilder"
architecture:
aarch64:
name: "ubuntu"
version: "latest"
ppc64le:
name: "centos"
version: "latest"
s390x:
name: "ubuntu"
version: "latest"
x86_64:
name: "clearlinux"
version: "latest"
meta:
image-type: "clearlinux"
Default Initrd Guest OS:
description: |
Root filesystem initrd used to boot the guest virtual
machine.
url: "https://github.com/kata-containers/osbuilder"
architecture:
aarch64:
name: "alpine"
version: "3.12"
ppc64le:
name: "alpine"
version: "3.12"
s390x:
name: "alpine"
version: "3.12"
x86_64:
name: "alpine"
version: "3.12"
Kata Linux Containers Kernel
Kata Containers 1.13.0-alpha0 suggest to use the Linux kernel v5.4.60
See the kernel suggested Guest Kernel patches
See the kernel suggested Guest Kernel config
Installation
Follow the Kata installation instructions.
Issues & limitations
More information Limitations