Investigation: Use Kata containers with hypervisors (e.g. qemu, firecracker) to provide container build and run capability inside workspace

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Work on this issue
• Close this issue

MR: Pending

Description

Kata containers is an open source container runtime, building lightweight virtual machines that seamlessly plug into the containers ecosystem. Currently supported hypervisors with Kata Containers include:

• qemu
• cloud-hypervisor
• firecracker
• ACRN

Explore how we can use Kata containers(with any support hypervisors to be able to run sudo inside the workspace and how howe we can then use it for building and running containers inside the workspace.

Acceptance Criteria

• User can run sudo commands inside the workspace - e.g. apt update/sudo apt update.
• User can build containers from Dockerfile inside the workspace.
• User can run a container inside the workspace.
• The solution should not result in privilege escalation.

Technical Requirements

TODO: Fill out or delete [If applicable, please list out any technical requirements for this feature/enhancement.]

Design Requirements

TODO: Fill out or delete [If applicable, please provide a link to the design specifications for this feature/enhancement.]

Impact Assessment

TODO: Fill out or delete [Please describe the impact this feature/enhancement will have on the user experience and/or the product as a whole.]

User Story

TODO: Fill out or delete [Provide a user story to illustrate the use case for this feature/enhancement. Include examples to help communicate the intended functionality.]