| kata-irc-bot | <jiewen.yao> Hi Here is draft of TD-SHIM **staging** development process. (https://github.com/confidential-containers/td-shim/tree/staging) Since it is staging, we do not define too strict rule. We don’t want to block the development for long time. The development process will be revisited once we move to **main** branch. 1. Role a. Current Td-Shim *maintainer*: https://github.com/sameo (Apple), https://github.com/jyao1 (Intel) b. | 10:47 |
|---|---|---|
| kata-irc-bot | Proposed Td-Shim *reviewer*: https://github.com/c3d (RedHat), https://github.com/jiangliu (Alibaba), https://github.com/jodh-intel (Intel), more volunteer ? 2. CI Test a. Every PR SHALL pass CI. (Otherwise, it will not be reviewed and merged.) 3. Merge a. Every PR SHALL be approved by at least *1 person in maintainer or reviewer* list before it is merged. b. Every PR SHOULD be approved by at least *1 other company* before it is | 10:47 |
| kata-irc-bot | merged. c. In some cases, if a PR stays for *longer than 1 work week* without a reviewer from other company, it MAY be merged after it is approved by 1 maintainer. | 10:47 |
| kata-irc-bot | <christophe> Looks good to me. I'm a bit concerned about 3c, since it does not define "some cases". Insofar as you made a difference between SHALL and SHOULD for 3a vs 3b, I think that 3c either should be dropped, or added at end of 3b as a clarification for what it means. | 11:20 |
| kata-irc-bot | <jiewen.yao> right. 3c shall be at the end of 3b as clarification. | 11:56 |
| kata-irc-bot | <nike21oct> @fidencio Any guide to resolve this issue? | 13:39 |
| kata-irc-bot | <fidencio> Can you check on our BIOS that you have KVM support enabled? | 13:41 |
| kata-irc-bot | <fidencio> I have no idea about the VMWare / Vsock combination, as I think I never ever used VMWare before. | 13:42 |
| kata-irc-bot | <samuel.ortiz> @jiewen.yao Looks very reasonable to me! | 14:27 |
| kata-irc-bot | <nike21oct> Thanks @fidencio I will check the BIOS for KVM support enable or not , do you have any other process on cloud where I can setup and create kata container? | 15:16 |
| kata-irc-bot | <nike21oct> Hi all, Do we have any data prepared where we can see the advantages and disadvantages of using kata containers with standard containers? | 19:23 |
| kata-irc-bot | <nike21oct> @fidencio I have one question for you , is kata containers fast as previous normal conatiners? | 19:33 |
| kata-irc-bot | <nike21oct> I mean in terms of speed If I compare with normal containers | 19:33 |
| kata-irc-bot | <fidencio> It's slower to be created, as there's the overhead to have the VMM created and then create the container inside the VMM. But it's minimal. | 19:56 |
| kata-irc-bot | <fidencio> kubectl apply -f nginx.yaml here has a pod up on my single-node k8s cluster in 3~4 seconds. | 19:57 |
| kata-irc-bot | <fidencio> In the greater scheme of k8s, I'd say that's not noticeable | 19:58 |
| kata-irc-bot | <fidencio> Biggest advantage is the hw isolation layer provided by the VM. | 19:58 |
| kata-irc-bot | <fidencio> Please, take a look at: https://katacontainers.io/learn/ | 19:59 |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!