.. _kata: Kata Containers\* ################# This tutorial describes how to install, configure, and run `Kata Containers`_ on |CL-ATTR|. .. contents:: :local: :depth: 1 Description *********** Kata Containers is an open source project developing a lightweight implementation of :abbr:`VMs (Virtual Machines)` that offer the speed of containers and the security of VMs. Prerequisites ************* This tutorial assumes you have installed |CL| on your host system. For detailed instructions on installing |CL| on a bare metal system, follow the :ref:`bare metal installation tutorial`. If you have Clear Containers installed on your |CL| system, then follow the :ref:`migrate Clear Containers to Kata Containers tutorial`. Update |CL| with the following command: .. code-block:: bash sudo swupd update Install Kata Containers *********************** Kata Containers is included in the :file:`containers-virt` bundle. To install the framework: #. Install the containers-virt bundle: .. code-block:: bash sudo swupd bundle-add containers-virt #. Reload and restart the Docker\* systemd service. .. code-block:: bash sudo systemctl daemon-reload sudo systemctl restart docker Run Kata Containers ******************* To use kata as the runtime for an individual container, add :command:`--runtime=kata-runtime` to the :command:`docker run` command. For example: .. code-block:: bash sudo docker run --runtime=kata-runtime -ti busybox sh To use kata as the default runtime for all Docker containers: #. Set the default runtime for the Docker daemon: .. note:: The method below uses a systemd drop-in configuration to add a command-line (CLI) parameter to the Docker daemon for setting the *default-runtime*. Alternatively, the default runtime can be set in the `Docker daemon configuration file `_. The Docker daemon will not start if the *default-runtime* configuration in set multiple locations. .. code-block:: bash sudo mkdir -p /etc/systemd/system/docker.service.d/ cat <