3.2.0.azl1

Release Notes

• Reliability fixes for tarfs driver (ex. support for directories with many files in container images)
• Improved handling of images that have layers with special symlinks (tarfsindex crate)
• Add support to handle SMB mounts in the guest VM to work with the cc-azurefile-csi driver
• Improved agent shutdown behavior
• Use PCI segments 1+ for blk devices. This adds support for container images with more than 31 layers
• Remove opa and replaced with regorus
  • Improves policy diagnosis and debugging
• Improved cleanup behavior of clh process where sometimes the process would occasionally linger after requesting to kill it

What's Changed

• tarfs reliability fixes by @wedsonaf in #160
• Adapt code for vanilla Kata by @sprt in #154
• tarindex: Add special symlink name handling by @miz060 in #159
• Add support to handle SMB mounts by @arc9693 in #169
• agent: shutdown vm on exit when agent is used as init process by @Redent0r in #179
• runtime: agent: use PCI segments 1+ for blk devices by @danmihai1 in #183
• agent: use regorus instead of opa by @danmihai1 in #184
• clh: isClhRunning waits for full timeout when clh exits by @Redent0r in #182
• rootfs: Stop building and shipping OPA by @Redent0r in #187

Full Changelog: 3.2.0.azl0...3.2.0.azl1

Limitations and important notes

• This release requires genpolicy release 3.2.0.azl0.genpolicy1 and onwards