Addon: Kata

kjackal · August 9, 2021, 9:59am

Homepage: https://katacontainers.io/
From MicroK8s version: 1.22+
Supported arch: amd64

Kata Containers, is used to build a secure container runtime with lightweight virtual machines that feel and perform like containers, but provide stronger workload isolation using hardware virtualization technology as a second layer of defense. You can enable kata support with:

microk8s enable kata

The addon adds the kata runtimeClassName that allows you to specify what workloads should be started in Kata containers. For instance, the following manifest starts nginx in a Kata container:

apiVersion: v1
kind: Pod
metadata:
  labels:
    app: kata
  name: nginx-kata
spec:
  runtimeClassName: kata
  containers:
    - name: nginx
      image: nginx

By default the addon will install the Kata runtime via the kata-containers snap. Alternatively, you can set the path of the where kata runtime is installed using the --runtime-path argument. The path you provide should include the kata-runtime binary:

microk8s enable kata --runtime-path=/path/to/runtime

On multi-node clusters the microk8s enable kata has to be called on each node so that the kata runtime gets enabled ont the desired nodes.

lht · August 18, 2021, 12:16am

There is a typo. The example command flag --runtimepath= should be --runtime-path=.

kjackal · August 18, 2021, 8:30am

Thank you for spotting this. Fixed.

lht · August 19, 2021, 1:40am

I noticed another typo. In the last paragraph, microk8s enable addon should be microk8s enable kata.

mike-matera · July 23, 2023, 3:22pm

This addon is currently broken and should be removed from the list. The people at Kata are no longer supporting Snap installation and the last available Snap doesn’t work on Ubuntu 22.04. Here’s the warning they put on the Snap:

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ Warning: This snap is now unmaintained. For further details see Stop packaging a snap · Issue #6769 · kata-containers/kata-containers · GitHub @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

kjackal · July 24, 2023, 9:09am

We need to update the addon to have the --runtime-path as a required argument and stop trying to deploy the snap, It should be fairly easy, is anyone interested in giving this a try? This is the file that needs to be edited https://github.com/canonical/microk8s-community-addons/blob/main/addons/kata/enable Thank you

mike-matera · July 24, 2023, 4:04pm

Thanks for the reply! Kata no longer supports Ubuntu which is a huge drag. The only way to install it seems to be through their kata-deploy tool which doesn’t provide automatic updates and, based on what I see in the code below, is broken on Microk8s.

github.com

kata-containers/kata-containers/blob/ee57732fe08504773b1b5474f2248834ae1fbd66/tools/packaging/kata-deploy/kata-deploy/base/kata-deploy.yaml#L50C12-L50C12


      
          - name: containerd-conf

Even if Kata starts supporting Microk8s that’s similar to what they have for k3s, this addon is redundant as the kata-deploy script creates a runtime class which is all this addon does if we no longer have it installing Kata. Thoughts?

Konstantinos_Tsakalo · July 26, 2023, 7:28am

So as part of this addon we should submit to the kata project an overlay yaml similar to the ones found in https://github.com/kata-containers/kata-containers/tree/ee57732fe08504773b1b5474f2248834ae1fbd66/tools/packaging/kata-deploy/kata-deploy/overlays and then the addon should just be as easy as downloading and calling kata-deploy.

Topic		Replies	Views
MicroK8s 1.27 released! Announcements microk8s	0	772	April 12, 2023
MicroK8s v1.18 released! microk8s	0	2174	March 26, 2020
MicroK8s v1.22 released! Ecosystem microk8s	0	818	August 9, 2021
MicroK8s v1.20 released! microk8s	1	3240	December 16, 2020
MicroK8s v1.16 released! microk8s	1	1069	September 28, 2019

Addon: Kata

Related Topics