Merge pull request #4308 from openSUSE/kata

Add Kata Containers runtimes to libpod.conf
2019-11-07 14:58:57 +01:00 · 2019-11-07 14:58:57 +01:00 · aad2904553
parent 2e2d82ce76 9fe9c4181a
commit aad2904553
1 changed files with 23 additions and 0 deletions
--- a/libpod.conf
+++ b/libpod.conf
@ -146,6 +146,29 @@ crun = [
 	    "/usr/local/bin/crun",
 ]

+# Kata Containers is an OCI runtime, where containers are run inside lightweight
+# Virtual Machines (VMs). Kata provides additional isolation towards the host,
+# minimizing the host attack surface and mitigating the consequences of
+# containers breakout.
+# Please notes that Kata does not support rootless podman yet, but we can leave
+# the paths below blank to let them be discovered by the $PATH environment
+# variable.
+
+# Kata Containers with the default configured VMM
+kata-runtime = [
+    "/usr/bin/kata-runtime",
+]
+
+# Kata Containers with the QEMU VMM
+kata-qemu = [
+    "/usr/bin/kata-qemu",
+]
+
+# Kata Containers with the Firecracker VMM
+kata-fc = [
+    "/usr/bin/kata-fc",
+]
+
 # The [runtimes] table MUST be the last thing in this file.
 # (Unless another table is added)
 # TOML does not provide a way to end a table other than a further table being