@bergwolf bergwolf released this Nov 23, 2018 · 74 commits to master since this release

Release 1.4.0

agent Changes


  • Return agent details and capabilities to runtime in GetGuestDetails grpc call.
  • Support guest rootfs image based hooks.


proxy Changes


  • Number of golang threads are now throttled so that kata-proxy does not take too many pids.


runtime Changes


  • Enable host cgroups support to restrict qemu process and vcpu threads.
  • Enable support for macvlan and ipvlan networking.
  • Add support for new machine type virt introduced by the NEMU project.
  • VM factory network interfaces are now hotplugged by default so that guests have the default network connectivity.
  • When creating new containers, memory resource is checked and hotplugged on demand.
  • A new NetInterworkingModel none is added and it works with tap endpoint types so that enlighted CNI plugins can add tap devices to a sandbox directly, bypassing host network namespaces and thus provide better performance with less network setup complexity.
  • A new NetInterworkingModel tcfilter is added. It bridges host netns veth and guest tap device with TC filters.
  • Guest rootfs image can now have a guest_hook_path to save a bunch of prestart/poststart/prestop/poststop hook binaries, and they will be executed in the guest at specified container life cycle point accordingly.
  • Add several sandbox level APIs in preparation of the upcoming containerd-shim-v2 support.


shim Changes

Highlight changes:

  1. Number of golang threads are now throttled so that each kata-shim process does not take too many pids.


Compatibility with Docker

Kata Containers 1.4.0 is compatible with Docker v18.06-ce

Compatibility with CRI-O

Kata Containers 1.4.0 is compatible with CRI-O fa540c8e806d28c2cbcd157bdf8acf2b20990ab6

Compatibility with cri-containerd

Kata Containers 1.4.0 is compatible with cri-contaienrd 54b1c00b3b307b0fadd10c02d9467a6545c2c4d5

OCI Runtime Specification

Kata Containers 1.4.0 support the OCI Runtime Specification v1.0.0-rc5

Compatibility with Kubernetes

Kata Containers 1.4.0 is compatible with Kubernetes 1.12.2-00

Kata Linux Containers image

Agent version: 1.4.0

Default Image Guest OS:

description: |
Root filesystem disk image used to boot the guest virtual
url: https://github.com/kata-containers/osbuilder
name: fedora
version: latest
name: centos
version: latest
name: clearlinux
version: "20640"
image-type: clearlinux

Default Initrd Guest OS:

description: |
Root filesystem initrd used to boot the guest virtual
url: https://github.com/kata-containers/osbuilder
name: alpine
version: "3.7"
name: alpine
version: "3.7"
name: alpine
version: "3.7"

Kata Linux Containers Kernel

Kata Containers 1.4.0 suggest to use the Linux kernel v4.14.67
See the kernel suggested Guest Kernel patches
See the kernel suggested Guest Kernel config


Follow the Kata installation instructions:

Issues & limitations

More information Limitations