Add Kata Containers runtimes to libpod.conf

This adds the Kata Containers runtimes to the libpod.conf and adds
additional documentation to it.

Signed-off-by: Sascha Grunert <sgrunert@suse.com>

1 files changed, 23 insertions, 0 deletions

diff --git a/libpod.conf b/libpod.conf
index 47f66ecc1..47563099c 100644
--- a/libpod.conf
+++ b/libpod.conf
@@ -146,6 +146,29 @@ crun = [
 	    "/usr/local/bin/crun",
 ]
 
+# Kata Containers is an OCI runtime, where containers are run inside lightweight
+# Virtual Machines (VMs). Kata provides additional isolation towards the host,
+# minimizing the host attack surface and mitigating the consequences of
+# containers breakout.
+# Please notes that Kata does not support rootless podman yet, but we can leave
+# the paths below blank to let them be discovered by the $PATH environment
+# variable.
+
+# Kata Containers with the default configured VMM
+kata-runtime = [
+    "/usr/bin/kata-runtime",
+]
+
+# Kata Containers with the QEMU VMM
+kata-qemu = [
+    "/usr/bin/kata-qemu",
+]
+
+# Kata Containers with the Firecracker VMM
+kata-fc = [
+    "/usr/bin/kata-fc",
+]
+
 # The [runtimes] table MUST be the last thing in this file.
 # (Unless another table is added)
 # TOML does not provide a way to end a table other than a further table being