The 2.0.0-rc0 Kata-Containers release marks feature freeze and agent protocol freeze for the incoming 2.0.0 release. It features following changes:
- cgropus-v2 support
- kata-agent OOM event support
- kata-agent guest hooks support
- update to qemu 5.0 + virtiofs + dax
- update to cloud-hypervisor 0.10.0
- many github action improvements
- a lot of bugfixes and packaging improvements
Shortlog
3f39bdf versions: update clh to v0.10.0
18d325e packaging: fix cloud-hypervisor build
b5e9d60 action: Require PR porting labels
e6f16b7 packaging: fix release notes scripts
5c67668 release: Kata Containers 2.0.0-rc0
729a3b1 action: ignore 'fixes check' for subsystem 'release'
d7c77b6 runtime: write oom file to notify CRI-O tha OOM occurred
15065e4 agent: add cgroup v2 support
295f510 runtime: Don't use hard-coded crio config
615ffb9 agent: Generate version file with more adequate information in it.
f13ca94 agent: Fix setting of version
c823b4c agent: Make build remove generated files on clean
357d788 ci: replace spaces by tabs as indent
22876b2 agent: allow multiple wait on the same process
6487044 shimv2: trust cached status when deleting containers
325a4f8 shimv2: do not kill a stopped exec process
b081f26 action: Add issue to project and move to "In progress" on linked PR
2ce97ec virtiofsd: fix typo in test code
6520320 agent: setup DNS for guest
90e0dc8 ci: run agent test under root user
20a084a docs: update sandbox apis doc for kata 2.0-dev
c133a45 rustjail: fix the issue of invalid cgroup_parent path
dae6c7d osbuilder: update usage of RUST_AGENT variable
d86e746 agent: add retry between doing CPU hotplug and make it online.
517dda0 kernel: update to the latest LTS kernel 5.4.60
ebd3f31 osbuilder: fix rootfs build on ppc64le
b474828 kernel: Remove arm patches for ptp
82efd2f kernel: Enabling PTP clock support in kernel
2dfb8bc rootfs-builder: fix unbootable dracut-based initramfs on Fedora
fcd29a2 osbuilder/image-builder: disable reflink
0d198f9 virtcontainers: Add unit test for utils/compare.go
8b07bc2 agent: fix unit tests - remove rustjail::errors
6c96d66 agent: update Cargo toml and lock
46d7b9b agent/rustjail: remove rustjail::errors
fbb7973 agent: Use anyhow for error handling
33759af agent: Add anyhow dependency
c192446 agent/rustjail: Use anyhow for error handling
2e3e2ce agent/rustjail/capabilities: Use anyhow for error handling
6a4c9b1 agent/rustjail/cgroups: Use anyhow for error handling
359286a agent/rustjail: Add anyhow dependency
2019f00 docs: update yaml file link for prometheus deployment
11e8a49 docs: update the docs for minikube installing kata
00bd04f docs: Update local branch from upstream
dd60e56 trivial: Fix spelling of "privilege"
f7ff6d3 image-builder: disable reflink
0be02a8 runtime: qemu: reduce boot time and memory footprint
1de9bc0 snap: reimplement snapcraft.yaml to support kata 2.0
85642c3 snap: move snapcraft.yaml to the right place
cb99937 runtime: Fix typo in hotplugVFIODevice()
92dfa46 drivers: Correct isPCIeDevice logic
cf3ac9f docs: Add documentation for VFIO-AP passthrough
8666e01 qemu/default-configs: update default-config for QEMU 5
2d12da8 qemu: update default-configs
ae98ea4 obs-packaging: fix wait for obs
f5b71d3 qemu: update build dependencies to support QEMU 5
f1fd00d Merge pull request #571 from eryugey/eguan/2.0-dev
c14d44a Merge pull request #568 from Jakob-Naucke/vfio-ap-fragment
0a9b8e0 rustjail: default permission of device node should be 666
6f2eab4 Merge pull request #555 from jodh-intel/2.0-dev-agent-fix-shutdown-crash
b4c1053 Merge pull request #563 from bergwolf/guest-hooks
8e18cec Merge pull request #504 from cmaf/unit-virtcontainers-utils-utils
5fbac0a Merge pull request #556 from evanfoster/shutdown-agent
bb30759 agent: add guest hooks UT
095ebb8 agent: fix OCI hook handling
03a4d10 agent: support guest hooks
e7bfeb4 agent: construct container bundle in tmpfs location
2ee4002 packaging: Add VFIO-AP fragment for s390x
60770f4 Merge pull request #566 from Jakob-Naucke/revendor-govmm-vfio-ap
e6757de Merge pull request #543 from likebreath/clh_backporting
4c30b25 runtime: Re-vendor GoVMM for VFIO-AP support
282bff9 sandbox: Disconnect from agent after VM shutdown
29aae01 Merge pull request #559 from snir911/doc
5b70723 Merge pull request #511 from Jakob-Naucke/forward-s390x-packaging
9f1a3d1 kernel: add s390x fragment
f135061 kernel: config CONFIG_GENERIC_MSI_IRQ_DOMAIN
b67325c kernel: add missing configs
454dd85 kernel: config CONFIG_ PARAVIRT
62b4506 kernel: config CONFIG_NO_HZ_FULL
6dca74b kernel: moved acpi hotplug config
7c85dec kernel: config CONFIG_PCI_MSI_IRQ_DOMAIN
efe51b2 kernel: fragment for pmem
08d046d kernel: config CONFIG_HAVE_NET_DSA
7b49fa1 kernel: fragments not supported on s390x
ccfb73c agent/agent-ctl: update Cargo.lock
fd13c93 virtcontainers: Add msg to existing utils unit tests
c3fc09b virtcontainers: Add to utils unit tests
942041e Merge pull request #548 from Tim-Zhang/fix-action-check-subsystem
9658255 docs: remove outdated dependencies from agent docs
d12f920 console: Fix crash if debug console disabled
572de28 sandbox: Remove unnecessary thread
d5fbba3 main: Remove commented out and redundant code
1b2fe4a agent: Refactor main function
bac79ee main: Display config in announce
e2952b5 main: Simplify version handling
cfa35a9 action: Fix subsystem check
bba2773 Merge pull request #482 from Amulyam24/fix-ppc64le-rootfs
39b53f4 clh: enable build using Podman
04b156f qemu-virtiofs: Update to qemu 5.0 + virtiofs + dax
3ec05a9 clh: Add support to unplug block devices
45e32e1 clh: Set 'Id' explicitly while hotplugging block device
895959d clh: Provide cpu topology to API
3159438 clh: opeanapi: update api for cloud hypervisor
89836cd versions: cloud-hypervisor 0.9.0
8d5a60a versions: Update qemu-virtiofs to 5.0
76a6466 clh: Remove the use of deprecated '--memory file=' parameter
5f2a9fa Merge pull request #536 from Kvasscn/packaging-build-kernel-sh-test
bfd7810 packaging: add usage instructions for -a (arch_target) option
03b7bc1 Merge pull request #499 from lifupan/2.0-dev
485fc8d Merge pull request #531 from lifupan/propagation
2d28043 Merge pull request #527 from devimc/2020-08-13/unittest/rustjail-process
646148b Merge pull request #533 from GabyCT/topic/backportversions
ecaa1f9 clh: Enable versions and kernel tag to enable CLH CI for kata 2.0
37a331a Merge pull request #506 from lining2020/2.0-dev
64b0694 ppc64le: Support for rust agent based rootfs
2511cab virtcontainers: fix outdated example code in api document
17e2a35 Merge pull request #509 from lifupan/fix_lo
de3fd3f Merge pull request #521 from Tim-Zhang/fix-github-actions
5c7f001 rustjail: add the "HOME" env for process
58dfd50 rustjail: fix the issue of missing set propagation for bind mount
e79c572 agent: setup the "lo" interface run agent as init
d0a4563 agent: add unit tests for rustjail/process.rs
c1d3e8f Merge pull request #518 from liubin/fix/517-cleanup-virtcontainers-api
2889af7 actions: Run subject-line-length check even if the previous checks failed
9f0fef5 actions: Add commit-body-missing check
d81af48 actions: Do not limit the length of single word in commit body
8c46a41 actions: Fix subsystem checking in github-action
2466ac7 actions: Fix 'Fixes checking' problem by update dependent action
e7d3ba1 virtcontainers: cleanup codes, delete not used APIs
ba70a15 Merge pull request #486 from Tim-Zhang/commit-message-check
50c76b6 Merge pull request #503 from GabyCT/topic/fixdevguide
998a634 docs: Remove installation of proxy
5231a3e Merge pull request #452 from cmaf/unit-virtcontainers-container
0a233ff Merge pull request #440 from lifupan/2.0-dev
c305911 actions: Use github action to do Fixes/Length/Subsystem check
bd78cca shimv2: fix the issue of close IO stream
93b5528 Merge pull request #477 from GabyCT/topic/updatelimitations
e43a49e Merge pull request #479 from Tim-Zhang/close_fd_in_execute_hook
0683493 agent: Fix fd leaks in execute_hook
b03cd1b docs: Update contributions section in limitations document kata 2.0
ec84a94 Merge pull request #474 from merwick/2.0-dev
c15ef21 qemu: Set govmmQemu NoReboot config Knob
5726926 qemu: Add test for qemuConfig Knobs
5010e3a vendor: update govmm
b94b46d Merge pull request #467 from jongwu/multidev
3871b3c Merge pull request #469 from jongwu/makefile
a3c300f Merge pull request #459 from liubin/feature/458-add-structured-log
61d133f runtime: change un-structured log to structured log
31d601b Merge pull request #429 from cmaf/unit-virtcontainers-cap
7169a26 Merge pull request #425 from cmaf/unit-virtcontainers-asset
f24ad25 virtcontainers: Add unit test for types/container.go
1637e9d qemu: remove multidev in qemu/fsdev parameter on arm64
b61c9ca Makefile: add CLHCMD in arm64-options.mk
aeb4cfe Merge pull request #462 from bergwolf/releasing-2.0.0-alpha3
6fc7d4b Merge pull request #457 from liubin/feature/405-add-memory-info-for-kata-env
d5d7c22 Merge pull request #460 from devimc/2020-07-27/update-qemu5
fe99e7e runtime: add CPU cores and memory basic info for kata-env sub-command
7a825fb release: Kata Containers 2.0.0-alpha3
ad62eef Merge pull request #431 from liangxianlong/2.0-dev
3246bdc Merge pull request #445 from liubin/fix/444-remove-docs-about-shim-proxy
e1a79e6 virtcontainers: Add function to capabilities test
d1d5c69 virtcontainers: Expand unit test coverage for asset
3c415d9 virtcontainers: 9p: shares multiple devices with only one export
17fe010 vendor: update govmm
b6e910c versions: update QEMU to 5.0.0
6c99747 Merge remote-tracking branch 'upstream/2.0-dev' into 2.0-dev
db93a16 runtime: remove mock shim
d7f75dc docs: remove shim/proxy topics and fix docs links
7bbb9e8 rootfs-builder: Don't modify /sbin/init on the build host
5b0e6f3 kata-deploy: add ACRN runtime to Docker configuration
1236e22 runtime: Add support for VFIO-AP pass-through
60245a8 agent: update Cargo files authors
65970d3 osbuilder: install-yq should not print on success
c624fa7 osbuilder: install musl for aarch64
b24f2cb gitignore: ignore vscode directory
cf1b72d osbuilder: install rust before sourcing cargo env
7b5ab58 packaging: fix kata-deploy yaml path
76c18aa osbuilder: fix alpine agent build
5216815 packaging: make build-kernel.sh work for 2.0
aa3fb4d packaging: make kata-deploy work for 2.0
86a6e0b packaging: fix build image scripts
ceebd06 release: add 2.0 release actions
dadab1f osbuilder: build rust agent by default
1bd5825 packaging: tag releases on kata-containers repo
f56f68b obs-packaging: adjust for building on kata-containers repo
544219d mount: fix the issue of epthemeral storage handler
fd8f3ee mount: add much more error info using chain_err
4b62fc1 clh: Disable the 'seccomp' option temporarily
f5598a1 Subject: [PATCH] qemu: add annotations for iommu_platform
26506d8 virtiofs: Update virtiofs docs
bee17d1 kata-deploy: Add containerd configuration to support kata annotations.
219f93f kata-deploy: Add default privileged_without_host_devices
adf9ecc initrd: Increase Alpine Version to 3.12
f879acd scripts: Foward port osbuilder scripts to update yq
10b1deb tools: Add Unix socket support to agentl-ctl
7be95b1 tools: Simplify error handling in agent-ctl
32b86a8 agent: Add target optimize for Makefile
8164400 server: Allow address to be specified
0a9b8e0 rustjail: default permission of device node should be 666
2ee4002 packaging: Add VFIO-AP fragment for s390x
d12f920 console: Fix crash if debug console disabled
572de28 sandbox: Remove unnecessary thread
d5fbba3 main: Remove commented out and redundant code
1b2fe4a agent: Refactor main function
bac79ee main: Display config in announce
e2952b5 main: Simplify version handling
bb30759 agent: add guest hooks UT
095ebb8 agent: fix OCI hook handling
03a4d10 agent: support guest hooks
e7bfeb4 agent: construct container bundle in tmpfs location
ccfb73c agent/agent-ctl: update Cargo.lock
fd13c93 virtcontainers: Add msg to existing utils unit tests
c3fc09b virtcontainers: Add to utils unit tests
282bff9 sandbox: Disconnect from agent after VM shutdown
4c30b25 runtime: Re-vendor GoVMM for VFIO-AP support
39b53f4 clh: enable build using Podman
04b156f qemu-virtiofs: Update to qemu 5.0 + virtiofs + dax
3ec05a9 clh: Add support to unplug block devices
45e32e1 clh: Set 'Id' explicitly while hotplugging block device
895959d clh: Provide cpu topology to API
3159438 clh: opeanapi: update api for cloud hypervisor
89836cd versions: cloud-hypervisor 0.9.0
8d5a60a versions: Update qemu-virtiofs to 5.0
76a6466 clh: Remove the use of deprecated '--memory file=' parameter
9658255 docs: remove outdated dependencies from agent docs
9f1a3d1 kernel: add s390x fragment
f135061 kernel: config CONFIG_GENERIC_MSI_IRQ_DOMAIN
b67325c kernel: add missing configs
454dd85 kernel: config CONFIG_ PARAVIRT
62b4506 kernel: config CONFIG_NO_HZ_FULL
6dca74b kernel: moved acpi hotplug config
7c85dec kernel: config CONFIG_PCI_MSI_IRQ_DOMAIN
efe51b2 kernel: fragment for pmem
08d046d kernel: config CONFIG_HAVE_NET_DSA
7b49fa1 kernel: fragments not supported on s390x
cfa35a9 action: Fix subsystem check
64b0694 ppc64le: Support for rust agent based rootfs
bfd7810 packaging: add usage instructions for -a (arch_target) option
5c7f001 rustjail: add the "HOME" env for process
58dfd50 rustjail: fix the issue of missing set propagation for bind mount
d0a4563 agent: add unit tests for rustjail/process.rs
ecaa1f9 clh: Enable versions and kernel tag to enable CLH CI for kata 2.0
2511cab virtcontainers: fix outdated example code in api document
e79c572 agent: setup the "lo" interface run agent as init
2889af7 actions: Run subject-line-length check even if the previous checks failed
9f0fef5 actions: Add commit-body-missing check
d81af48 actions: Do not limit the length of single word in commit body
8c46a41 actions: Fix subsystem checking in github-action
2466ac7 actions: Fix 'Fixes checking' problem by update dependent action
e7d3ba1 virtcontainers: cleanup codes, delete not used APIs
c305911 actions: Use github action to do Fixes/Length/Subsystem check
998a634 docs: Remove installation of proxy
f24ad25 virtcontainers: Add unit test for types/container.go
bd78cca shimv2: fix the issue of close IO stream
b03cd1b docs: Update contributions section in limitations document kata 2.0
0683493 agent: Fix fd leaks in execute_hook
c15ef21 qemu: Set govmmQemu NoReboot config Knob
5726926 qemu: Add test for qemuConfig Knobs
5010e3a vendor: update govmm
1637e9d qemu: remove multidev in qemu/fsdev parameter on arm64
b61c9ca Makefile: add CLHCMD in arm64-options.mk
61d133f runtime: change un-structured log to structured log
e1a79e6 virtcontainers: Add function to capabilities test
d1d5c69 virtcontainers: Expand unit test coverage for asset
Compatibility with Docker
Kata Containers 2.0.0-rc0 is compatible with Docker v18.06-ce
Compatibility with CRI-O
Kata Containers 2.0.0-rc0 is compatible with CRI-O 0eec454168e381e460b3d6de07bf50bfd9b0d082
Compatibility with cri-containerd
Kata Containers 2.0.0-rc0 is compatible with cri-contaienrd 3a4acfbc99aa976849f51a8edd4af20ead51d8d7
OCI Runtime Specification
Kata Containers 2.0.0-rc0 support the OCI Runtime Specification v1.0.0-rc5
Compatibility with Kubernetes
Kata Containers 2.0.0-rc0 is compatible with Kubernetes 1.17.3-00
Kata Linux Containers image
Agent version: 2.0.0-rc0
Default Image Guest OS:
description: |
Root filesystem disk image used to boot the guest virtual
machine.
url: "https://github.com/kata-containers/kata-containers/tools/osbuilder"
architecture:
aarch64:
name: "ubuntu"
version: "latest"
ppc64le:
name: "centos"
version: "latest"
s390x:
name: "ubuntu"
version: "latest"
x86_64:
name: "clearlinux"
version: "latest"
meta:
image-type: "clearlinux"
Default Initrd Guest OS:
description: |
Root filesystem initrd used to boot the guest virtual
machine.
url: "https://github.com/kata-containers/kata-containers/tools/osbuilder"
architecture:
aarch64:
name: "alpine"
version: "3.12"
ppc64le:
name: "alpine"
version: "3.12"
s390x:
name: "alpine"
version: "3.12"
x86_64:
name: "alpine"
version: "3.12"
Kata Linux Containers Kernel
Kata Containers 2.0.0-rc0 suggest to use the Linux kernel v5.4.60
See the kernel suggested Guest Kernel patches
See the kernel suggested Guest Kernel config
Installation
Follow the Kata installation instructions.
Issues & limitations
More information Limitations