Catch up our main branch to upstream #121
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…test tests: Enable agent stability test
ci: k8s: Fix bogus firecracker check in k8s-credentials-secrets.bat
Remove the ability to block access to kata agent endpoints by using agent-config.toml. That functionality is now implemented using the Agent Policy feature (kata-containers#7573). The CCv0 branch relied on blocking endpoints using agent-config.toml but will set-up an equivalent default policy file instead (kata-containers#8219). Fixes: kata-containers#8228 Signed-off-by: Dan Mihai <[email protected]>
…x-tdx-typo libs: protection: Fix typo in TDX output
This is basically to make sure that folks trying to use the kata-deploy script from the main branch, to deploy **stable** kata-deploy images, do not have a hard time. Fixes: kata-containers#7194 Signed-off-by: Fabiano Fidêncio <[email protected]>
…a-deploy-stable-to-using-ubuntu kata-deploy-stable: Switch to using the ubuntu based payload
- kata-deploy-stable: Switch to using the ubuntu based payload
- libs: protection: Fix typo in TDX output
- ci: k8s: Fix bogus firecracker check in k8s-credentials-secrets.bat
- tests: Enable agent stability test
- docs: Fix paths to build kernel in SNP VMs documentation
- runtime-rs: ch: Add TDX CH features check
- runtime: Validate hypervisor section name in config file
- tests: query data from the OPA service
- release: tag_repos: Stop tagging the `tests` repo
- metrics: fixes common.sh function to always return true
- Memory footprint test removing trailing commas to make json results file valid
- policy: allow access to ReseedRandomDev
- runtime/kata-ctl: update dependencies
- runtime-rs : fix Nydus support for runtime-rs + Dragonball
- metrics: removal of reference in the documentation to the fio dax subtest.
- runtime-rs: ch: Detect Intel TDX version
- runitme-rs: use the same base64 as kata-runtime/direct-volume does
- tests: Enable scability test for stability CI
- runtime-rs: Add support for adding vfio device for cloud-hypervisor
- tests: Enable soak parallel stability test
- dragonball: vcpu metrics change to be recorded per vcpu
- ci: k8s: adapt gha-run.sh to run locally
- metrics: removes kata components and k8s deployment when test finishes
- GHA: fix up referenced yaml exceeding 20 limit problem
- gha: ci: Revert tracing test PR to unbreak CI
- runtime-rs: ch: Enable feature
- gha: ci: Port runk tests over
- ci: gha: Port tracing tests over
- Enable fio test using containerd client
- gha: Add stability tests workflow for gha
- gha: arm64: Ensure the builder is arm64-builder
- kata-deploy: Build kata-agent as we build all the other components
- versions: migrate out of k8s.gcr.io
- doc: Update crictl pod-config
- gha: Fix k0s deployment
- tests: Add stability test for kata CI
- docs: Update url in kata vra document
- gpu: Adding CDI support for cold and hot-plug of VFIO devices
- kata-deploy: build & ship the rust components from src/tools/
- metrics: Add latency value limits for kata CI
- runtime: fix reading cgroup stats of sandboxes
- Upgrade to Cloud Hypervisor v35.0
- ci: Port kata-monitor tests from Jenkins to GHA
- metrics: Fix latency yamls path
- metrics: Fix metrics README
- metrics: Fix C-Ray documentation
- runtime-rs: ch: Enable Intel TDX
- ci: k8s: crio: Follow up patches to have CRI-O also working as part of our CI
- metrics: Enable latency test in gha run script
- local-build: Fix .docker ownership before build-payload
- runtime-rs: Add network support for cloud-hypervisor
- osbuild: Reduce guest components binary size with strip
- gha: Add pandoc as a dependency for static checks
- ci: rootfs-image build-asset is failing
- feat(runtime-rs): introduce huge page mode to select VM RAM's backend
- clh: Direct IO support for block devices
- gha: Install hunspell for static checks
- ci: Trigger payload-after-push on workflow_dispatch
- ci: Actually enable the CRI-O tests
- protocol: remove gogoprotobuff tests
- ci: k8s: Also run tests with CRI-O
- runtime: support kernel params including spaces
- ci: kata-deploy: Fix runner name
- metrics: Enable parallel bandwidth iperf limit
- ci: kata-deploy: Enable all k8s flavours that we support
- ci: Create clusters in individual resource groups
- versions: Bump virtiofsd to v1.8.0
- clh: arm: Use static_sandbox_resource_mgmt=true
- Bump nydus versions and update nydus tests
- runtime/qemu: Rework QMP/HMP support
- clh:arm64: use arm AMBA UART for hypervisor debug
- ci: Use variable size of VMs depending on the tests running
- ci: Rework static checks
- runtime: incorrect handling of non-empty []Endpoint parameter in Remo…
- ci: cache: Check the sha256sum of the components & fix ovmf-sev cache usage
- ci: cache: Use the artefacts stored in ghcr.io/kata-containers/cached-artefacts/${component}
- ci: Run some of the GARM tests in smaller instances
- ci: Reduce the size of the AKS VMs
- ci: cache: Allow pushing our artefacts to an OCI registry
- metrics: Add iperf value for cpu utilization
- ci: cache: Export env vars needed to use ORAS
- gha: vfio: Import test script
- tests: fix kernel and initrd annotations
- metrics: Add iperf bandwidth value for kata metrics
- metrics: Add Cassandra Metrics documentation
- metrics: Remove warning from metrics documentation
- ci: docker: nerdctl: Switch to tcp port 80 ping
- runtime: Naming conflict of network devices
- Remove gogoproto.nullable extension
- metrics: Ensure docker is running in init_env
- metrics: this PR skips the FIO test temprarily to fix issues
- ci: Add a very basic nerdctl sanity test
- runtime-rs: hypervisor: Remove debug kernel options
- versions: Bump rust version
- ci: Add a very basic docker sanity test
- dragonball: fix for non-deterministic builds
- runtime-rs: bring hybrid vsock devices in manager.
- ci: use github.ref_name instead of $GITHUB_REF_NAME
- ci: Add more target-branch related fixes
- ci: Fix target-branch usage
- agent: optimize the code of systemd cgroup manager
- gha: Manually rebase PR atop of the target branch before testing
- Update kernel to the latest LTS release (v6.1.52) and bring in erofs patches needed for the CC work
- kata-deploy: Fix aarch64 image build
- runtime: Fix more virtiofs args
- kata-deploy: Switch to an alpine image
- metrics: Use TensorFlow optimized image
- metrics: fix FIO test initialization
- ci: k8s: Add clean-up-garm argument for gha-run.sh
- ci: k8s: Second round of fix-ups with the devmapper CI
- metrics: re-enable memory-usage initialization step
- Dragonball: optimize the placement of dbs-upcall features
- ci: k8s: Fix typo in run-k8s-tests-on-garm.yaml
- ci: k8s: Add k8s devmapper tests (part 0)
- kata-deploy: Create kata-static.tar with correct ownership
- runtime: run prestart hooks before starting VM for FC
- metrics: Add write 95 percentile FIO value
- runtime: Allow virtio_fs_extra_args annotation
- packaging: do not install docker-compose-plugin for s390x|ppc64le
- runtime-rs: Fix volumes and rootfs cleanup issues
- metrics: Enable iperf benchmark on gha for kata metrics
- CI: switch static-checks-dragonball CI machines to Azure
- metrics: Add README for kata metrics report
- osbuilder: Remove chcon operation for guest SELinux
- kata-sys-util: protection: Update TDX checks
- Improve the way to clean up storage devices for sandbox
- agent: avoid possible leakage of storage device
- tests: add policy to existing tests
- gha: Rebase PR atop of the target branch before testing
- versions: Update alpine to its 3.18 version
- runtime: Fix data race in ioCopy
- metrics: Add grabdata script for metrics report
- Fixes tests on AMD machines
- metrics: Enable FIO limits for kata metrics
- metrics: Add metrics report script
- metrics: Fix memory inside limits for kata metrics
- metrics: fix parsing issue on memory-usage test
- dragonball: vsock add fifo/pipe stream support for passed fd hybridSt…
- tests: Add confidential test
- tdx: Update the components needed for using the 6.2 kernel stack
- tests: delete k8s deployment at the test's end
- tests: use unique test name
- runtime-rs: check peer close in log_forwarder
- gha: Avoid "fail-fast" in tests that are known to be flaky
- Refine storage device management for kata-agent
- metrics: Remove unused variable in tensorflow nhwc script
- kata-deploy: Don't try to remove /opt/kata
- metrics: Add TensorFlow ResNet50 FP32 benchmark
- gha: vfio: Run on Ubuntu 23.04 runner
- kata-agent: use default filemode for block device when it is set to 0
- kata-types: introduce KataVirtualVolume to support nydus, direct volume and image pull
- libs,tests: fix typo disable_guest_seccomp in configuration-anno-1.toml
- local-build: Remove GID before creating group
- kata-deploy: Avoid failing on content removal
- runtime: fix image and initrd assets handling
- metrics: Add disk link to README
- metrics: Fix FIO path
- gha: capture additional kata-deploy output
- metrics: Use function from metrics common in pytorch script
- metrics: Enable kata runtime in K8s for FIO test.
- metrics: Fix README for pytorch
- metrics: Remove unused variable in tensorflow mobilenet script
- rootfs: agent: Policy support with AGENT_INIT=yes
- gha: k8s: kata-deploy: Move kata-deploy specific tests from integration/kubernetes to functional/kata-deploy
- metrics: Fix check results for tensorflow benchmark
- metrics: Add Tensorflow ResNet50 int8 benchmark
- kata-deploy: Properly create default runtime class
- agent: simplify error handling
- metrics: Fix MobileNet help me description
- gha: ci: Start running kata-deploy tests
- runk: Modify kill command's error message for containerd tests
- runtime-rs: add driver option
- gha: cri-containerd: Enable tests
- metrics: Rename tensorflow scripts
- gha: tests: Add kata-deploy functional tests -- Part 1
- agent: runtime: add Agent Policy feature
- runk: Support without pid ns
- metrics: Add Cassandra Kubernetes benchmark for kata metrics
- metrics: Add common functions to the common script
- metrics: fix the loop used to stop kata components
- docs: Remove installation step in virtcontainers doc
- Propogate secrets, config maps etc into guest if sharedFS not available
- kata-deploy: Preliminary k0s support
- gha: static-checks: Move to the Azure instances
- versions: Update firecracker version to 1.4.0
- agent: Allow clippy::redundant_clone in the unit tests
- agent: avoid creating new `Vec` instances when easily avoidable
- metrics: compute tensorflow statistics
- metrics: Add network nginx benchmark
- metrics: install kata once and run multiple checks
- ci: unencrypted-image: Fix build context
- ci: create-confidential-image: Add dependent actions
- Follow up fixes for kata-containers#7596
- tests: Create image that will be used in the unencrypted confidential tests
- kata-deploy: Ensure we cover SHIMS / DEFAULT_SHIM as part of our tests
- tests: upgrade bats version
- Fix mimor bugs and improve coding stype of agent rpc/sandbox/mount
- deps: Bump dependent crate versions
- fix number of queues handling in dragonball share fs device
- runtime-rs: Introduce directly attachable network
- metrics: General improvements to mobilenet tensorflow test
- gha: Add iperf network metrics
- docs: Use control-plane term instead of master
- agent: avoid unnecessary calls to `Arc::clone`
- metrics: Add network latency test
- Image pulling on the host
- Use version 0.10.4 of `fuse-backend-rs`
- kata-deploy: Use host's systemctl
- release: Revert kata-deploy changes after 3.2.0-rc0 release
- metrics: stop kata components before start a metric test.
- runtime-rs: Add block device handling for cloud hypervisor
a93fdb0 kata-deploy-stable: Adapt to what we're using in the stable branch
36109da ci: k8s: Fix bogus firecracker check in k8s-credentials-secrets.bat
d01daf7 tests: Adjust timeout for agent stability test
9b14dda libs: protection: Fix typo in TDX output
0e0867f runtime-rs: ch: Add TDX CH features check
409eadd runtime-rs: ch: Improve readability of guest protection checks
82a0814 tests: Enable agent stability test
32be8e3 tests: query data from the OPA service
b81c0a6 tests: encode policy file during test
4f9681b metrics: fixes common.sh function to always return true
2ef2b2a docs: Fix paths to build kernel in SNP VMs documentation
408b59c runtime-rs: fix bugs to support Nydus v5
157caea Revert "nydus: Temporarily skip tests on dragonball"
678fe3c Dragonball: fix Nydus config serde problem
b6ec621 policy: allow access to ReseedRandomDev
908519d metrics: skips docker restart when it is not installed or is masked.
c276312 metrics: removing trailing comma characters from json file.
3e8cf69 runtime: Validate hypervisor section name in config file
ef6388e tests: Remove unused function from scability test
fbc8f8f scripts: Use install_yq from the `kata-containers` repo
65b1a2d release: tag_repos: Stop tagging / updating the `tests` repo
87b760f runtime-rs: ch: Detect Intel TDX version
73e81f5 runitme-rs: unify base64 encoding for direct-volume
c6463cb tests: Fix path for versions yaml for soak parallel test
89c9454 metrics: removal of reference in the documentation to the dax test.
30ff589 tests: Enable scability test for stability CI
8d6f7b9 runtime-rs: Add support for handling vfio device for cloud-hypervisor
e786b2b gha: Add install dependencies for stability tests
dbfe651 dragonball: vcpu metrics change to be recorded per vcpu
fa60fbe dragonball: METRICS is refactored to RwLock<DragonballMetrics>
500d1c5 kata-ctl: update rustls-webpki/webpki dependency
d7660d8 runtime: unify gopkg.in/yaml.v3 to v3.0.1
fc9a107 runtime: unify swag and testify dependency
79ebb95 runtime: update runc dependency to v1.1.9
7f3e8bd runtime: unify golang.org/x/text to v0.7.0
df325ae runtime: update golang.org/x/net to v0.7.0
bba3491 metrics: stops kata components and k8s deployment when test finishes
84e3d88 gha: Add general dependencies to stability tests
dec3951 tests: Add soak parallel stability test
0f04d52 tests: Enable soak parallel test
e669282 ci: k8s: set KUBERNETES default value
c30c3ff tests: run k8s-volume on a given node
666993d tests: run k8s-file-volume on a given node
3a00fc9 tests: exec_host() now gets the node name
61c9c17 tests: add get_one_kata_node() to tests_common.sh
68f083c ci: k8s: set KATA_HYPERVISOR default value
6677a61 ci: k8s: configurable deploy kata timeout
200e542 ci: k8s: shellcheck fixes to gha-run.sh
4af78be kata-deploy: re-format kata-[deploy|cleanup].yaml
d54e6d9 ci: k8s: run_tests() for kcli
c2ef1f0 ci: k8s: add deploy-kata-kcli() to gh-run.sh
d2be8ee ci: k8s: add cleanup-kcli() to gha-run.sh
cbb9aa1 ci: k8s: set default image for deploy_kata()
89bef7d ci: k8s: create k8s clusters with kcli
954d40c gha: combine coco jobs into a single yaml
b60e0a9 gha: combine basic amd64 jobs into a single yaml
e9bd852 gha: ci: Revert tracing test PR to unbreak CI
b8a46a4 runtime-rs: ch: Enable feature
0f2dc8c gha: Add containerd stability tests to ci yaml
da91c9d ci: Port runk tests to this repo
7f23772 ci: Add placeholder for runk tests
9205acc ci: Move tracing tests here
85d290a gha: Add stability gha run script
54f0c8f gha: Add stability tests workflow for gha
3bb2923 ci: Add placeholder for tracing tests
2c3bf40 ci: Create a function to install docker
119f03d gha: arm64: Ensure the builder is arm64-builder
8c498ef metrics: Use jq tool to pretty-print json metrics output
a2159a6 metrics: Enables FIO test for kata containers
70e7ec3 gha: Fix k0s deployment
560bbff packaging: tools: Remove `set -x` leftover
18fa483 packaging: release: Mention newly added images
ca3b888 packaging: tools: Fix container image env var name
5ca6679 packaging: Allow passing the TOOLS_CONTAINER_BUILDER
02acef9 gha: Build the kata-agent as part of our workflows
5208386 packaging: Build the kata-agent
1727487 agent: Allow specifying DESTDIR and AGENT_POLICY via env vars
45c1188 packaging: Add get_agent_image_name()
0db8fb8 versions: migrate out of k8s.gcr.io
a1a0543 doc: Fix spelling
6339605 tests: Add general stability fixes
59ae244 doc: Update crictl pod-config
fd19f40 tests: Add agent stability test
2155770 tests: Add cassandra stress in stability tests
f2d3ea9 tests: Add stressng dockerfile for stability tests
6493aa3 tests: Add stressor CPU test for stability tests
ef68a3a metrics: Add stability test for kata CI
7c934dc gpu: Fix cold-plug of VFIO devices
8d66ef5 metrics: Increase qemu jitter value
5600e28 metrics: Increase jitter value for clh
a6b1f5e ci: Build src/tools components as part of our tests / releases
501a168 kata-deploy: Build components from src/tools
6ef42db static-build: Add scripts to build content from src/tools
4d08ec2 packaging: Add get_tools_image_name()
98097c9 packaging: Use git abbreviated hash
489caf1 ci: kata-monitor: Move tests over
a3fb067 ci: Add placeholder for kata-monitor tests
57cb4ce ci: Make install_kata aware of container engines
de1eeee ci: Create a generic install_crio function
64a2000 ci: Add install_cni_plugins helper
8132fe1 ci: Modify containerd default config
8cb7df1 metrics: Add checkmetrics for latency test
e90440a metrics: Add qemu latency value limit
a74a8f8 metrics: Add latency value limits for kata CI
d7def83 metrics: Fix general check static warnings
928553d docs: Update url in kata vra document
b0a3293 runtime-rs: ch: Enable Intel TDX
523399c runtime-rs: ch: Add more consts
dea8065 runtime-rs: ch: Remove unused function
995f2c0 runtime-rs: ch: Only handle particular pending device types
b1b96a5 runtime-rs: ch: Remove erroneous "virtio-blk-mmio" check
9ac29b8 metrics: Add init_env function to latency test
dfd0c9f runtime: clh: Re-generate the client code
8f9f087 versions: Upgrade to Cloud Hypervisor v35.0
81c8bab metrics: Fix latency yamls path
4815736 metrics: Fix C-Ray documentation
ef63d67 ci: crio: Trail '\r' from exec_host() output
74c12b2 ci: crio: Enable default capabilities
358dc2f kata-deploy: Fix CRI-O detection
ebaa4fa ci: crio: Pass `-y` to apt
97e73b2 metrics: Fix spelling warnings
36c8cd6 metrics: Fix metrics README
15425a2 local-build: Fix .docker ownership before build-payload
13ca7d9 gha: Add pandoc as a dependency for static checks
08bc8e4 metrics: Add latency benchmark for gha
6776b55 metrics: Enable latency test in gha run script
94e2ccc runtime: fix reading cgroup stats of sandboxes
d507d18 fc: Add support for noflush cache option
2ca7815 clh: Direct IO support for block devices
0c95697 ci: Trigger payload-after-push on workflow_dispatch
28cbc3b ci: rootfs-image build-asset is failing Fixes: kata-containers#8027
87a8616 gha: Install hunspell for static checks
8c3c50c ci: Actually enable the CRI-O tests
3a6510a osbuild: Reduce guest components binary size with strip
07a6e63 ci: k8s: rke2: Use sudo to call systemd
03b82e8 ci: k8s: Add a CRI-O test
d7105cf ci: k8s: Add a method to install CRI-O
54c0a47 ci: k8s: k0s: Allow passing parameters to the k0s installer
730ef51 deps: updating dependencies
3a2c83d ci: kata-deploy: Fix runner name
82ff2db runtime: support kernel params including spaces
604a9dd protocol: remove gogoprotobuff tests
f7fa7f6 ci: Enable kata-deploy tests for all the supported k8s flavours
2c908b5 ci: kata-deploy: Add the ability to deploy rke2
eaf6164 ci: kata-deploy: Add the ability to deploy k0s
0015257 ci: kata-deploy: Add deploy-k8s argument to gha-run.sh
bf2cb02 ci: kata-deploy: Expland tests to run on k0s / rke2
b12b9e1 ci: kata-deploy: Add placeholder for tests on GARM
9e1fb8a ci: kata-deploy: Export KUBERNETES env var
09cc0ed ci: Move deploy_k8s() to gha-run-k8s-common.sh
486fe14 ci: Properly set K8S_TEST_UNION
d9ef135 ci: Add first letter of the K8S_TEST_HOST_TYPE to resource group name
68267a3 ci: Create clusters in individual resource groups
9aa8d1c metrics: Add parallel bandwidth limit for qemu
44c7c08 versions: Bump virtiofsd to v1.8.0
af59d4b metrics: Enable parallel bandwidth iperf limit
aba36ab nydus: Temporarily skip tests on dragonball
b8a8dfc nydus: Use `kata-${KATA_HYPERVISOR}` instead of `kata`
f6df3d6 static-build: Fix arch error on nydus build
2f9c9e2 tests: nydus: Update nydus tests
c9a4e7e versions: Bump nydus and nydus-snapshotter to its latest release
b73bde3 gha: nydus: Populate run()
b3904a1 gha: nydus: Populate install_dependencies()
d2b3b67 gha: nydus: Actually install kata when `install-kata` is called
0ec00ad gha: nydus: Get rid of nydus{,-snapshotter} install from nydus_test.sh
568439c tests: nydus: Add timeout to the crictl calls
5ac3b76 tests: nydus: Add uid / namespace to the nydus container / sandbox
376574a tests: nydus: Decorate some calls with `sudo`
4290fd4 tests: nydus: Adapt "source ..." to GHA
a84efa3 tests: nydus: Adapt check to "clh" instead "cloud-hypervisor"
56a14b3 tests: common: Add install_nydus_snapshotter()
b656378 tests: common: Add install_nydus()
72599f1 clh: arm: Use static_sandbox_resource_mgmt=true
1f16b66 runtime/qemu: Rework QMP/HMP support
8b1e9b0 ci: static-checks: Clean up static-checks job
2c5ca2e ci: static-checks: Run tests depending on KVM
509c309 ci: static-checks: Move "sudo make test" to the new test matrix
4e963ce ci: static-checks: Move "make test" to the new test matrix
08f2e5a runtime-rs: Ensure static-checks-build is a dep of `make test`
2bc3a61 kata-ctl: Use `loop` instead of `kvm` module in tests
46daddc kata-ctl: Ensure GENERATED_CODE is a dep of `make test`
ec826f3 agent: Ensure GENERATED_CODE is a dep of `make test`
1d32410 ci: install_libseccomp: Do not depend on the tests repo
bf888b9 ci: static-checks: Move "make check" to the new test matrix
473ec87 kata-ctl: Add `kata-types` to the Cargo.lock file
ea19549 kata-ctl: Ensure GENERATED_CODE is a dep of `make check`
e125775 tests: install_rust: Also install clippy
e2c61a1 ci: static-checks: Move vendor check to its own job
6794d4c tests: Move install_rust.sh from the tests repo
e64508c tests: install_go: Remove tests repo dependency
11dff73 tests: Move functions from kata_arch script here
75c974c ci: static-checks: Move kernel config check to its own job
9c233bb test: Add test to verify try_from for clh Netconfig
c69a1e3 ci: Use variable size of VMs depending on the tests running
9049d31 runtime-rs: Add network support for cloud-hypervisor
eecd5bf ci: cache: Fix ovmf-sev cache
86c4107 ci: cache: Check the sha256sum of the component
460988c ci: cache: Remove the script used to cache artefacts on Jenkins
4533a7a ci: cache: Also store the ${component} sha256sum
eccc76d ci: cache: Use the cached artefacts from ORAS
7f5e77b kernel: enable Arm pl011 support
241c355 clh:arm64: use arm AMBA uart for hypervisor debug
094b6b2 ci: k8s: Temporarily disable tests that require a bigger VM instance
d0c257b ci: cache: Push cached artefacts to ghcr.io
108f1b6 kata-deploy: Generate latest_{artefact,image_builder} files
be2eb7b ci: cache: Install ORAS in the kata-deploy binaries builder container
fb24fb0 ci: k8s: devmapper: Use a smaller / cheaper VM instance
1daf02f ci: nydus: Use a smaller / cheaper VM instance
e60d81f ci: nerdctl: Use a smaller / cheaper VM instance
4db4169 ci: docker: Use a smaller / cheaper VM instance
3284182 ci: cri-containerd: Use a smaller / cheaper VM instance
92fff12 ci: k8s: Don't set cpu limit request for k8s-inotofy test
faf98c0 ci: Reduce the size of the AKS VMs
adc18ec ci: cache: For consistency, read all used env vars
c7a851e ci: cache: Pass the exposed env vars to the kata-deploy binaries in docker
6bd15a8 ci: cache: Export env vars needed to use ORAS
cd4fd12 metrics: Add iperf cpu utilization limit for qemu
df5cd10 metrics: Add iperf value for cpu utilization
a96050a tests: Apply timeout to 'ctr t kill'
9d93036 tests/vfio: Bump VM image to Fedora 38
faee59b tests/vfio: Accept single device in vfio group for CLH
df3dc11 tests/vfio: Get rid of sync's
7211c3d gha: vfio: Set test timeout to 15m
1b02f89 packaging: kernel: Enable VIRTIO_IOMMU on x86_64
3a1db7a runtime: clh: Support enabling iommu
9f1a42c tests/vfio: Give commands 30s to execute
b46b0ec tests/vfio: Configure a value for 'hot_plug_vfio' for both vmms
bfc9392 runtime: Remove redundant check in checkPCIeConfig
7c4e73b runtime: Add test cases for checkPCIeConfig
fc51e4b runtime: Check config for supported CLH (cold|hot)_plug_vfio values
509771e runtime: clh: Add hot_plug_vfio entry to config
5f6475a tests/vfio: Gather debug info and disable tdp_mmu
8fffdc8 tests/vfio: Capture journal from vm
df81508 tests/vfio: Change to get the test working in GHA
a92ddee tests/vfio: Move dependency installation to gha-run.sh
5a551a8 gha: vfio: Import jobs scripts from tests repo
49e2fa1 metrics: Increase jitter value for qemu
4923443 metrics: Increase value limit for jitter in clh
813bfde ci: docker: nerdtl: Use io.containerd.kata-${KATA_HYPERVISOR}.io
46bc0b1 ci: nerdctl: Create the containerd config
13968aa ci: nerdctl: Switch to tcp port 80 ping
e0c8116 ci: docker: Switch to tcp port 80 ping
1636abb runtime: issue with non-empty []Endpoint in RemoveEndpoints
0aa0739 metrics: Add iperf bandwidth value for qemu
c0ad914 tests: fix kernel and initrd annotations
615c1cb metrics: Add iperf bandwidth value for kata metrics
d53eb73 metrics: Ensure docker is running in init_env
ad08321 metrics: Add Cassandra Metrics documentation
a58ea66 metrics: this PR skips the FIO test temprarily to fix issues
f536ef5 ci: docker: Also run the smoke test with runc
c83f167 ci: docker: Run the tests after the kata-static is created
12d833d ci: Add a very basic nerdctl sanity test
348b864 ci: Add a very basic docker sanity test
a75fd5e runk: Fix rust unecessary mut error
a31c145 kata-ctl: useless-vec warning
c8419fc kata-ctl: Resolve non-minimal-cfg warning
3eaf68d agent-ctl: Allow clippy lint
1d8b789 runtime-rs: Fix useless-vec warning
99f3d69 runtime-rs: Remove mut
16fbc27 dragonball: Allow ambiguous-glob-reexports
bbf1919 dragonball: Resolve non-minimal-cfg warning
75cfdd5 agent: config: Allow clippy lint
f3a0fd5 agent: config: Fix useles-vec warning
9e423bd libs: Fix clippy unnecesary hashes error
4443950 versions: Bump rust version
a16b096 chore(cargo): update cargo lock
ca4b6b0 runtime: Naming conflict of network devices
202049f feat(runtime-rs): introduce huge page type to select VM RAM's backend
f811b06 ci: use github.ref_name instead of $GITHUB_REF_NAME
6d795c0 ci: Add more target-branch related fixes
8509c31 ci: Fix target-branch usage
060499d metrics: Remove warning from metrics documentation
c0f697f runtime: Allow kernel_params annotation
b03e497 dragonball: fix for non-deterministic builds
976d101 runtime-rs: hypervisor: Remove debug kernel options
fde3461 kernel: Add erofs patches needed for CC related work
dc6a458 versions: Bump kernel to the latest LTS release (6.1.52)
52f6449 kata-manager: Remove initcall_debug kernel option
8b4a0b3 kata-deploy: Remove curl after it's used
139c7f0 kata-deploy: Fix aarch64 image build
470d065 agent: optimize the code of systemd cgroup manager
bd24afc gha: Manually rebase PR atop of the target branch before testing
72c510d runtime/virtiofsd: Drop all references to "--cache=none"
ead724b protocol: removing gogo.nullable feature
d8e4bb9 protocol: remove unused PROTO_FILE env
5e1106a protocol: remove unused import_path
87accaa protocol: use workdir during build
711a7ed protocol: remove mapping definitions
8db84c1 protocol: force GOPATH to be set
68156d7 protocol: breaking lines to improve readability
670a8e9 kata-deploy: Switch to an alpine image
9d74b7c k8s: ci: Skip "Pod quota" test with firecracker
f6cd393 ci: k8s: Remove useless skip statement from tests
3cc20b4 ci: k8s: Also check for "fc" (for firecracker)
b5bad3c ci: k8s: Add clean-up-garm argument for gha-run.sh
aaec5a0 ci: k8s: devmapper tests should be using ubuntu 20.04
27fa7d8 ci: k8s: Add a kata-deploy-garm target
fa62a4c ci: k8s: Export KUBERNETES env var
8c9380a ci: k8s: Install bats on GARM runners
3de2303 ci: k8s: Wait some time after restarting k3s
adfea55 metrics: fix FIO test initialization
2df183f ci: k8s: Append, instead of overwrite, the devmapper config
369a8af ci: k8s: Decrease k3s sleep from 4 to 2 minutes
ada65b9 ci: k8s: Use vanilla kubectl with k3s
ad45ab5 ci: k8s: Ensure k3s is deploy with --write-kubeconfig-mode=644
028a97e ci: k8s: Use the proper command for sleep
3a42779 metrics: Use TensorFlow optimized image
8d99972 ci: k8s: Fix typo in run-k8s-tests-on-garm.yaml
deed1b9 Dragonball: optimize the placement of dbs-upcall features
0e8bd50 ci: k8s: Add k8s devmapper tests (part 0)
b28b54d ci: k8s: Add a function to configure devmapper for containerd
54f7117 ci: k8s: Add a function to deploy k3s
81536f2 runtime/qemu: Pass "--xattr" to virtiofsd instead of "-o xattr"
b1dd09a runtime: Allow virtio_fs_extra_args annotation
2efda20 packaging: do not install docker-compose-plugin for s390x|ppc64le
438fbf9 metrics: Add write 95 percentile for FIO for qemu
024b4d2 metrics: Add write 95 percentile FIO value
e98e5cd metrics: Add checkmetrics to gha run script
c1edfe5 metrics: Add checkmetrics value for qemu for iperf
6a79ece metrics: Add jitter value for clh
f609a9a metrics: Add test selector to iperf metrics
5b8db30 metrics: Enable iperf benchmark on gha for kata metrics
60f733d CI: switch static-checks-dragonball CI machines to Azure
7870b33 runtime-rs: bring hybridVsock devices in manager.
18c94eb kata-deploy: Create kata-static.tar with correct ownership
57e7bf1 agent: refine StorageDeviceGeneric::cleanup()
53edb19 agent: implement StorageDeviceGeneric::cleanup()
0c63453 types: make StorageDevice::cleanup() return possible error code
3a3d77b agent: move StorageDeviceGeneric from kata-types into agent
b151cfd metrics: re-enable memory-usage initialization step
f3e1a6a osbuilder: alpine: Change mirror
ac612ae osbuilder: alpine: Match the version on versions.yaml
9cd706d agent: avoid possible leakage of storage device
bf21411 tests: add policy to k8s tests
d0e0610 runtime: config: use the SEV initrd for SNP
67fed26 runtime: Use TDX image with in the qemu-tdx config
ac939c4 gha: Rebase atop of the target branch
82cd14b versions: Update alpine to its 3.18 version
6668825 metrics: Add grabdata script for metrics report
c290eae kata-sys-util: protection: Update TDX checks
d7a996c gha: Update to checkout@v3 action
c2ba29c runtime: Fix data race in ioCopy
211de08 osbuilder: Remove chcon operation for guest SELinux
9f21fa9 metrics: Add report generator link to general documentation
c0ed5ea metrics: Add README for kata metrics report
a7b59a5 metrics: Add limit for 90 percentile for qemu value
99db656 metrics: Add limit for write 90 percentile value for clh
6e06392 metrics: Enable FIO limits for kata metrics
2e4c874 runtime/vc: runPrestartHooks should ignore GetHypervisorPid failure
21204ca runtime: fail early when starting docker container with FC
32fd013 runtime: run prestart hooks before starting VM for FC
00e7ffd tests: check vmx only on Intel machines
c8dd3c0 metrics: Fix memory footprint qemu limit
8877ec6 metrics: Fix memory inside limits for kata metrics
80146f2 tests: Fixes cpuType check on AMD machines
7e36471 metrics: Add test setup details to metrics report
17dc1b9 metrics: Add boot lifecycle times to metrics report
3b0d653 metrics: Add memory inside container to metrics report
79fbb9d metrics: Add scaling system footprint in metrics report
8e6d4e6 metrics: Add metrics reportgen
139ffd4 metrics: Add report file titles
878d1a2 metrics: Generate PNGs alongside the PDF report
fce2487 metrics: Add metrics report R files
0881207 metrics: Add report dockerfile
69781fc metrics: Add metrics report script
e286e84 tests: Expand confidential test to support TDX
e31f099 tests: Expand confidential test to support SNP
c3b9d49 tests: Add confidential test for SEV
538c965 metrics: fix parsing issue on memory-usage test
3818bf3 local-build: Remove $HOME/.docker/buildx/activity/default
d1b54ed qemu: tdx: Workaround SMP issue with TDX 1.5
1e34220 qemu: tdx: Adapt to the TDX 1.5 stack
8115a05 versions: tdx: Update Kernel to 6.2 + TDX
ec18180 versions: tdx: Update TDVF to the "edk2-stable202302"
9803b24 versions: tdx: Update QEMU to v7.2 + TDX v1.10
dffc16e runtime-rs: check peer close in log_forwarder
aaa5ab1 agent: simplify storage device by removing StorageDeviceObject
fb49d5d gha: Avoid "fail-fast" in tests that are known to be flaky
183f51d tests: use unique test name
6a97467 tests: delete k8s deployment at the test's end
32a778b metrics: Remove unused variable in tensorflow nhwc script
d8f3ce6 kata-deploy: Don't try to remove /opt/kata
936e809 gha: vfio: Run on Ubuntu 23.04 runner
0e72482 agent: move storage device related code into dedicated files
268e846 runtime-rs: Fix volumes and rootfs cleanup issues
8f49ee3 agent: refine storage related code a bit
60ca12c agent: switch to new storage subsystem
fcbda0b kata-types: introduce StorageDevice and StorageHandlerManager
b03b1f6 agent: simplify the way to manage storage object
8392c71 sys-util: support more mount flags in parse_mount_options()
c00d8f3 agent: use create_mount_destination() from kata-sys-util
5e867f0 types: add more mount related constants
880e6c9 agent: use function from kata-sys-utils to reduce code
3b881fb local-build: Remove GID before creating group
959ca49 metrics: Add TensorFlow ResNet50 fp32 Dockerfile
4b7d72c metrics: Add TensorFlow ResNet50 FP32 benchmark
5cba38c kata-deploy: Avoid failing on content removal
18d42da runtime/fc: fix image/initrd annotation handling
9fda705 runtime/clh: fix image/initrd annotation handling
1a0092d runtime/qemu: fix image/initrd annotation handling
22d8f33 libs,tests: fix typo disable_guest_seccomp in configuration-anno-1.toml
8afd158 metrics: Add disk link to README
40914b2 kata-agent: use default filemode for block device when it is set to 0
eee2ee6 metrics: Fix FIO path
39bc348 metrics: Use function from metrics common in pytorch script
400eb88 gha: capture additional kata-deploy output
4aee3ea kata-types: implement serde methods for KataVirtualVolume
b875e39 kata-types: validate KataVirtualVolume object
fa2fdc1 kata-types: implement two conversion helpers for KataVirtualVolume
6326af2 kata-types: introduce KataVirtualVolume
c8b43f8 metrics: Fix README for pytorch
fb571f8 metrics: Enable kata runtime in K8s for FIO test.
cb056f8 rootfs: agent: Policy support with AGENT_INIT=yes
85c0282 metrics: Update tensorflow name in gha run script
e8a5119 metrics: Fix check results for tensorflow benchmark
2d896ad gha: kata-deploy: Do the runtime class cleanup as part of the cleanup
4ffc2c8 gha: kata-deploy: Add the first kata-deploy test
8616c05 metrics: Remove unused variable in tensorflow mobilenet script
285e616 tests: common: Ensure test_type is used as part of the cluster's name
790bd35 tests: commob: Don't fail if yq is not part of the cache
ce6adec gha: kata-deploy: Add run-kata-deploy-tests.sh
cfc29c1 gha: k8s: Stop running kata-deploy tests as part of the k8s suite
f4dd152 tests: k8s: Call ensure_yq() in setup.sh
339569b kata-deploy: Properly create default runtime class
2a491e9 metrics: Fix MobileNet help me description
d19a75e gha: ci: Start running kata-deploy tests
d90f7ac runtime-rs: add unit test for block driver
e44919f runtime-rs: add load_test_config for unit test
7f48a69 runtime-rs: add driver option
bade6a5 docs: Fix TensorFlow word across the document
1a1b207 docs: Add Tensorflow Resnet50 documentation
24baede metrics: Add Dockerfile for ResNet50 int8
6d971ba metrics: Add Tensorflow ResNet50 int8 benchmark
25d151b runk: Modify kill command's error message for containerd tests
b3592ab gha: cri-containerd: Enable tests
84dd02e gha: cri-containerd: Add timeout to the crictl calls on testContainerStop
b297829 gha: cri-containerd: Show pod before deleting it
ae09308 gha: cri-containerd: Print kata logs in case of error
6c8b2ff gha: cri-containerd: Group containerd logs
9e89870 gha: cri-containerd: Ensure RUNTIME takes KATA_HYPERVISOR into account
76dac8f agent: simplify error handling
18a7fd8 metrics: Rename tensorflow scripts
e55fa93 tests: kata-deploy: Add placeholder for kata-deploy-tests-on-tdx
d9ee17a tests: kata-deploy: Add placeholder for kata-deploy-tests-on-aks
ab829d1 agent: runtime: add the Agent Policy feature
831e73f tests: kata-deploy: Add functional/kata-deploy/gha-run.sh placeholder
af1b46b tests: Add gha-run-k8s-common.sh
416445e docs: Remove installation step in virtcontainers doc
72cbcf0 kata-deploy: Add k0s support
767434d metrics: fix the loop used to stop kata components kata-containers#7629
5d0f0d4 metrics: Add cassandra statefulset yaml
c1dcc13 metrics: Add cassandra service yaml
2297a0d metrics: Add block loop pvc yaml for cassandra
e3d5119 metrics: Add block loop pv yaml for cassandra test
9890271 metrics: Add block loop pvc for cassandra test
349b899 metrics: Add Cassandra Kubernetes benchmark for kata metrics
c52d090 gha: static-checks: Move to the Azure instances
8815ed0 runtime: Remove config warnings
afe1a6a agent: support copying of directories and symlinks
ab13ef8 runtime: propagate configmap/secrets etc changes for remote-hyp
c074ec4 runtime: Copy shared files recursively
fdcd52f metrics: Add check containers are running in tensorflow mobilenet
36337ee metrics: Add check containers are up in tensorflow script
f700f9b metrics: Remove unused variable in tensorflow script
833cf7a metrics: Add check containers are running function
918c783 metrics: Add check containers are up in tensorflow mobilenet script
9d57a1f metrics: Use check containers are up in tensorflow script
1c84680 metrics: Add check containers are up in common script
d3e57cf metrics: Use collect_results function in tensorflow mobilenet test
286de04 metrics: Remove collect results function definition
9879709 metrics: Add common functions to the common script
4746fa3 docs: Specify supported Firecracker version using `versions.yaml`
cc922be versions: Update firecracker version to 1.4.0
39e67b0 dragonball: vsock add fifo/pipe stream support for passed fd hybridStream
473b0d3 metrics: compute tensorflow statistics
03d1fa6 ci: unencrypted-image: Fix build context
eb463b3 ci: unencrypted-image: Don't fail to build on s390x
a2d731a ci: create-confidential-image: Add dependent actions
d1a6296 metrics: Add nginx documentation to network README
498f7c0 metrics: Add nginx kubernetes yaml
f8a5255 metrics: Add network nginx benchmark
43fe5d1 ci: k8s: tees: Ensure PR_NUMBER is exported
54f6a78 ci: {{ pr-number }} should be {{ inputs.pr-number }}
034d7aa tests: k8s: Ensure the runtime classes are properly created
fac8ccf ci: Add build-and-publish-tee-confidential-unencrypted-image
ab5f603 ci: k8s: Add the image used for unencrypted confidential tests
1e8fe13 k8s: tests: Take advantage of `SHIMS` and `DEFAULT_SHIM` env vars
729b2dd agent: avoid creating new `Vec` instances when easily avoidable
aeaec9d tests: upgrade bats version
e664969 metrics: install kata once and run multiple checks
baabfa9 agent: refine implementation of mount related code
98ba211 agent: fix a bug in update_ephemeral_mounts()
5333618 agent: make add_storage() take &[Storage] instead of Vec<Storage>
37f3478 agent: simplify function online_cpu_memory()
d3c5422 agent: refine style of code related to sandbox
71a9f67 agent: avoid unwrap() in function do_remove_container()
84badd8 agent: avoid clone objects when possible
b23c5ed deps: Bump dependent crate versions
8632837 metrics: General improvements to mobilenet tensorflow test
3c319d8 metrics: Add iperf to gha run script
5b5caf8 gha: Add iperf network metrics
66db5b5 metrics: Add latency test to network README
c365724 agent: avoid unnecessary calls to `Arc::clone`
4fbe0a3 runtime: bind-mount mounted block device into container
7e1b194 runtime: add support for kata overlays
6c867d9 agent: add io.katacontainers.fs-opt.overlay-rw option
6163c35 agent: skip mount options that start with "io.katacontainers."
b2ff97a dragonball: use version 0.10.4 of `fuse-backend-rs`
845eeb4 agent: Allow clippy::redundant_clone in the unit tests
1163fc9 release: Revert kata-deploy changes after 3.2.0-rc0 release
3958a39 runtime-rs: Introduce directly attachable network
1e15369 metrics: Improve naming testing containers in launch times test
5dbe883 metrics: Clean kata components before start a metric test.
3b45060 metrics: Add latency server yaml
9bb8451 metrics: Add latency client yaml
64fdb98 metrics: Add network latency test
a81ad3b runtime-rs: Add block device handling in cloud hypervisor
3230dec kata-deploy: Use host's systemctl
1b21a46 docs: Use control-plane term instead of master
28e5e9c runtime-rs: fix number of queues handling in dragonball share fs device
f1d8de9 runk: Allow runk to launch a container without pid namespace
Signed-off-by: Fabiano Fidêncio <[email protected]>
metrics: Add iperf udp benchmark
…anch-bump # Kata Containers 3.3.0-alpha0
This is needed in order to properly run the CIs in branches that are not the main one, as the kata-deploy.yaml file on those branches do not have the `latest` tag, but rather the latest stable release. Fixes: kata-containers#8274 Signed-off-by: Fabiano Fidêncio <[email protected]>
…onfig-toml-endpoints agent: no endpoint blocking from agent-config.toml
This PR adds the parallel udp iperf3 benchmark for network metrics. Fixes kata-containers#8277 Signed-off-by: Gabriela Cervantes <[email protected]>
kata-manager currently adds default config which currently is qemu. Add config for clh as well to containerd configuration. This should allow new users to get started with clh using kata-manager. Also add config related to enabling privileged_without_host_devices. Always good to have this config enabled when users try to run privileged containers so that devices from host are not inadverdantly passed to the guest. Fixes: kata-containers#8280 Signed-off-by: Archana Shinde <[email protected]>
…kata-deploy-regex-on-repo-version-update release: Adapt the CIs using the kata-deploy image
hub is now deprecated, which has been causing issues with our release process. Let's move to the GH cli (https://cli.github.com/manual), and unblock this release. **NOTE**: This commit is purposefully not touching anywhere else hub is used, as that would require more time and investigation to do the switch, and right now we just want to unblock the release. Fixes: kata-containers#8286 Signed-off-by: Fabiano Fidêncio <[email protected]>
This is to skip a flaky test `create_tmpfs()` on s390x until a root cause is identified and fixed. Fixes: kata-containers#4248 Signed-off-by: Hyounggyu Choi <[email protected]>
…se-gh-cli-instead-of-hub actions: release: Use GH cli instead of hub
Otherwise we'll face issues like:
```
Run tag=$(echo $GITHUB_REF | cut -d/ -f3-)
tag=$(echo $GITHUB_REF | cut -d/ -f3-)
tarball="kata-static-$tag-amd64.tar.xz"
mv kata-static.tar.xz "$GITHUB_WORKSPACE/${tarball}"
pushd $GITHUB_WORKSPACE
echo "uploading asset '${tarball}' for tag: ${tag}"
GITHUB_TOKEN=*** gh release upload "${tag}" "${tarball}"
popd
shell: /usr/bin/bash -e {0}
~/work/kata-containers/kata-containers ~/work/kata-containers/kata-containers
uploading asset 'kata-static-3.3.0-alpha0-amd64.tar.xz' for tag: 3.3.0-alpha0
failed to run git: fatal: not a git repository (or any of the parent directories): .git
```
Fixes: kata-containers#8286 (or better, just a follow up of that)
Signed-off-by: Fabiano Fidêncio <[email protected]>
It's been released for a while now, and we need to keep consistency between what we used. Signed-off-by: Fabiano Fidêncio <[email protected]>
Fixes: kata-containers#8293 Signed-off-by: Zizheng Bian <[email protected]>
Balloon device manager adds balloon device metrics to METRICS when a device is created and remove metrics when a device is dropped. Fixes: kata-containers#7248 Signed-off-by: Songqian Li <[email protected]>
…nsure-gh-is-used-from-a-git-repo release: Always use actions/checkout to ensure we're in a git repo
metrics: Add parallel udp iperf3 benchmark
Fixes: kata-containers#7248 Signed-off-by: Songqian Li <[email protected]>
…ster runtime-rs: fix a typo in device manager
The config template file for clh is in the new format for runtime-rs. It is a result of merging the new format file and options supportted by cloud-hypervisor. Some config options from the golang runtime are missing as they may not be currently supported by the rust runtime. An example of this is the selinux options, rate limiting options as these are not currently supported or verified with the rust runtime. Fixes: kata-containers#8249 Signed-off-by: Archana Shinde <[email protected]>
The default kernel params passed to any hypervisor except dragonball is empty. Signed-off-by: Archana Shinde <[email protected]>
AArch64: runtime: use pcie root port to do pci/pcie device hotplug
…metrics dragonball: add metrics support for balloon device
Add the hypervisor security details to the output of the `kata-runtime env` and `kata-ctl env` commands so the user can see, amongst other things, the value of `confidential_guest`. Fixes: kata-containers#8313. Signed-off-by: James O. D. Hunt <[email protected]>
…wed_hypervisor_annotations kata-deploy: Set a default value for ALLOWED_HYPERVISOR_ANNOTATIONS
dragonball: Uniform the spelling of Virtio
…ervisor-cherry-picks CC: Remote hypervisor merge to main
…ger-install-a-given-kata-tarball utils: kata-manager: Allow installing kata from a given tarball
…-volume runtime: Introduce `KataVirtualVolume` structure into go runtime
The vhost-user connection management logic will be used by the upcoming features: vhost-user-net, vhost-user-blk and vhost-user-fs. Fixes: kata-containers#8448 Signed-off-by: Liu Jiang <[email protected]> Signed-off-by: Qinqi Qu <[email protected]> Signed-off-by: Huang Jianan <[email protected]>
The test utils will be used by the upcoming feature tests: vhost-user-net, vhost-user-blk and vhost-user-fs. Signed-off-by: Beiyue <[email protected]> Signed-off-by: Huang Jianan <[email protected]>
…n-dm runtime-rs: bringing virtio-fs device in device-manager
- statically linked qemu requires slof.bin to run, hence remove it from blacklist - By default, initrd is used for Power, modify the configuration.toml accordingly Fixes: kata-containers#8458 Signed-off-by: Amulyam24 <[email protected]>
Since the release is not yet out for ppc64le, build oras from source and use it. Fixes: kata-containers#8458 Signed-off-by: Amulyam24 <[email protected]>
Backport the erofs patch from linux kernel to solve the error kata-containers#8083 Fixes: kata-containers#8083 Signed-off-by: ChengyuZhu6 <[email protected]> Co-authored-by: Gao Xiang <[email protected]>
…eneral dragonball: add vhost-user connection management logic
…rust-runtime-to-kata-deploy tests: k8s: Allow passing rust-runtime env var to kata-deploy
kernel: backport erofs patch to 6.1.52 guest kernel
metrics: Fix result finding in tensorflow benchmark
In the case of Cloud Hypervisor running on arm64 architecture, only arm AMBA UART (pl011) is supported as the TTY. Consequently, when enabling Hypervisor debug mode, it's essential to configure the console as "ttyAMA0" rather than "ttyS0 Fixes: kata-containers#8381 Signed-off-by: briwan01 <[email protected]>
…nfigmap_update_propagation runtime: Fix configmap/secrets updates with FS sharing disabled
The snapshotter will place `KataVirtualVolume` information into 'rootfs.options' and commence with the prefix 'io.katacontainers.volume='. The purpose of this commit is to transform the encapsulated KataVirtualVolume data into device information. Fixes: kata-containers#8495 Signed-off-by: ChengyuZhu6 <[email protected]> Co-authored-by: Feng Wang <[email protected]> Co-authored-by: Samuel Ortiz <[email protected]> Co-authored-by: Wedson Almeida Filho <[email protected]>
To enhance the construction and administration of `Katavirtualvolume` storages, this commit expands the 'sharedFile' structure to manage both rootfs storages(`containerStorages`) including `Katavirtualvolume` and other data volumes storages(`volumeStorages`). NOTE: `volumeStorages` is intended for future extensions to support Kubernetes data volumes. Currently, `KataVirtualVolume` is exclusively employed for container rootfs, hence only `containerStorages` is actively utilized. Signed-off-by: ChengyuZhu6 <[email protected]>
1) Extract function `handleBlockVolume` to create Storage only. 2) Add functions to handle KataVirtualVolume device and construct corresponding storages. Signed-off-by: ChengyuZhu6 <[email protected]>
1) Creating storage for all `io.katacontainers.volume=` messages in rootFs.Options, and then aggregates all storages into `containerStorages`. 2) Creating storage for other data volumes and push them into `volumeStorages`. Signed-off-by: ChengyuZhu6 <[email protected]>
…pc64le Adds workflows for building kata static tarball and releasing it. Fixes: kata-containers#8458 Signed-off-by: Amulyam24 <[email protected]>
This PR adds workflow to run containerd tests on Power as a part of CI migration. Fixes: kata-containers#8500 Signed-off-by: Amulyam24 <[email protected]>
github: add workflows for building and publishing kata artefacts on ppc64le
…_volume runtime: Pass `KataVirtualVolume` to the guest as devices in go runtime
…ners CODEOWNERS: Expand scope
gha: add cri-containerd workflow for ppc64le
danmihai1
approved these changes
Dec 7, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This adds all the commits from upstream between our current main and the base of my new branch at https://github.com/microsoft/kata-containers/tree/sprt/upstream-main-fork
To be merged with "Rebase and merge" to keep the history clean.