This repository has been archived by the owner on May 12, 2021. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 302
Kata images
James O. D. Hunt edited this page Mar 21, 2019
·
14 revisions
- Comparing Rootfs images with initrd images
- Why images use an init daemon
- systemd as the image init daemon
This page provides information on Kata Containers "mini O/S" images.
Comparison of running Kata with a image= entry with running Kata with an initrd= entry in the configuration.toml configuration file.
| Feature | systemd-specific | Available in image | Available in initrd | Notes |
|---|---|---|---|---|
Agent log messages with use_vsock=true
|
yes | yes | no | Uses kata-journald-host-redirect.service. |
| Debug console | yes | yes | no | |
| Guest time sync | yes | yes | no | Uses chrony. |
| Static tracing | yes | yes | no | Currently relies on kata-agent.service to shutdown VM. |
| Start agent | "yes" but easy to change | yes | yes |
kata-agent is the init daemon in an initrd image. |
- Ability to manage services.
- Allows users to add additional services to custom images.
- De facto Linux init daemon.
- Avoids having to "re-invent the wheel" by implementing additional functionality in the agent - just drop in a standard service.
- Automatically handles mounting standard mounts (
/dev, etc). - Leverage systemd boot time performance improvements from Clear Linux.
- Allows underlying osbuilder distro to be changed with minimal impact on the environment.
- Large binary - bloats image.
- Large potential attack surface.