Skip to content

Release v0.6.1

Compare
Choose a tag to compare
@rodnymolina rodnymolina released this 08 Apr 00:32
· 202 commits to master since this release
v0.6.1
51c9872

Official Packages

📦 sysbox-ce_0.6.1-0.linux_amd64.deb
📦 sysbox-ce_0.6.1-0.linux_arm64.deb

Changelog

  • Added support for ID-mapped overlayfs lower layers; eliminates need for shiftfs and Sysbox rootfs chown; requires kernel 5.19+.
  • Have Sysbox perform shiftfs and ID-mapping functional checks during init (issue #596).
  • Fixed rootfs cloning to prevent inode leakage (for hosts with kernel < 5.19 and no shiftfs) (issue #570).
  • Added support for Kubernetes v1.24 to v1.26.
  • Added --disable-inner-image-preload flag to sysbox-mgr (speeds up Sysbox container startup).
  • Added --syscont-mode flag to sysbox-mgr; allows Sysbox to work in system container mode (default) or regular container mode; the latter is meant for running microservices with stronger isolation.
  • Added --disable-shiftfs-on-fuse flag to sysbox-mgr; prevents Sysbox from mounting shiftfs on top of FUSE-backed filesystems (some of which don't work with shiftfs).
  • Added few optimizations to expedite I/O operations in procfs/sysfs emulated resources.
  • Enhanced life-cycle management of Sysbox daemons in Systemd-free scenarios.
  • Prevented concurrent execution of Sysbox daemons (multi-instance problem).
  • Improved the handling of ungraceful shutdown scenarios.
  • Eliminated Sysbox dependencies on configfs kernel module presence.
  • Fixed emulation of /sys/module/nf_conntrack/parameters inside containers.
  • Added emulation of /sys/devices/virtual/dmi branch inside containers (for hosts where this or inner resources is not present).
  • Hide /sys/kernel/security inside containers (issue #662)
  • Don't assign more capabilities to the container than those given to Sysbox itself.
  • Don't fail in kernel distros without /lib/modules/.
  • Increased the pods-per-node limit from 16 to 4K (Sysbox-CE now matches Sysbox-EE on this regard).
  • Extended kubelet config-detection process to multiple drop-in files in sysbox-deploy-k8s daemon-set.
  • Incorporated taints during sysbox-deploy-k8s installation process.
  • Fixed issue preventing sysbox-deploy-k8s installation in rke2 environments (issue #614).
  • Fixed issue preventing proper sysbox-deploy-k8s installation in Azure (issue #612).

Checksums

$ sha256sum sysbox-ce_0.6.1-0.linux_amd64.deb
d57dc297c60902d4f7316e4f641af00a2a9424e24dde88bb2bb7d3bc419b0f04  sysbox-ce_0.6.1-0.linux_amd64.deb

$ sha256sum sysbox-ce_0.6.1-0.linux_arm64.deb
28121f48a6d482bb94f2e8a23c1469e1930e0ef2c703dd9db7405764cfd827c6  sysbox-ce_0.6.1-0.linux_arm64.deb