Search

Chapter 36. Red Hat Enterprise Linux Atomic Host 7.3

download PDF

36.1. Atomic Host

OStree update:

New Tree Version: 7.3 (hash: 90c9735becfff1c55c8586ae0f2c904bc0928f042cd4d016e9e0e2edd16e5e97)
Changes since Tree Version 7.2.7 (hash: 347c3f5eb641e69fc602878c646cf42c4bcd5d9f36847a1f24ff8f3ec80f17b1)

Updated packages:

  • atomic-devmode-0.3.5-1.el7
  • cockpit-ostree-118-2.el7.x86_64
  • openscap-daemon-0.1.6-1.el7
  • ostree-2016.10-1.atomic.el7
  • redhat-release-atomic-host-7.3-20160824.0.atomic.el7.3
  • rpm-ostree-2016.9-1.atomic.el7
  • rpm-ostree-client-2016.9-1.atomic.el7

36.2. Extras

Updated packages:

  • atomic-1.12.5-2.el7
  • cockpit-118-2.el7
  • docker-1.10.3-57.el7
  • docker-distribution-2.5.0-1.el7 *
  • docker-latest-1.12.1-3.el7
  • flannel-0.5.5-1.el7
  • kubernetes-1.3.0-0.2.gitc5ee292.el7
  • oci-register-machine-0-1.9.gitaf6c129.el7
  • oci-systemd-hook-0.1.4-6.git337078c.el7
  • python-docker-py-1.9.0-1.el7
  • skopeo-0.1.14-0.6.el7

New packages:

  • etcd3-3.0.3-1.el7 *

The asterisk (*) marks packages which are available for Red Hat Enterprise Linux only.

36.2.1. Container Images

Updated:

  • Red Hat Enterprise Linux Container Image (rhel7/rhel)
  • Red Hat Enterprise Linux Atomic Tools Container Image (rhel7/rhel-tools)
  • Red Hat Enterprise Linux Atomic rsyslog Container Image (rhel7/rsyslog)
  • Red Hat Enterprise Linux Atomic sadc Container Image (rhel7/sadc)
  • Red Hat Enterprise Linux Atomic cockpit-ws Container Image (rhel7/cockpit-ws)
  • Red Hat Enterprise Linux Atomic etcd Container Image (rhel7/etcd)
  • Red Hat Enterprise Linux Atomic Kubernetes-controller Container Image (rhel7/kubernetes-controller-mgr)
  • Red Hat Enterprise Linux Atomic Kubernetes-apiserver Container Image (rhel7/kubernetes-apiserver)
  • Red Hat Enterprise Linux Atomic Kubernetes-scheduler Container Image (rhel7/kubernetes-scheduler)
  • Red Hat Enterprise Linux Atomic SSSD Container Image (rhel7/sssd) (Technology Preview)
  • Red Hat Enterprise Linux Atomic openscap Container Image (rhel7/openscap) (Technology Preview)

New:

  • Red Hat Enterprise Linux Atomic etcd3 Container Image (rhel7/etcd3) (Technology Preview)
  • Red Hat Enterprise Linux Atomic flannel Container Image (rhel7/flannel) (Technology Preview)

36.3. New Features

  • Features, previously available as a Technology Preview, are now fully supported

    The following features that have been available as a Technology Preview are now fully supported:

    • runc - runC is a lightweight, portable implementation of the the Open Container Format (OCF) that provides container runtime. The runc command-line tool can be used for spawning and running containers according to the Open Container Project (OCP) specification. Containers are started as a child process of runC and can be embedded into various other systems without having to run a docker daemon.
    • skopeo - The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files without using the docker daemon or the docker command. For detailed information, see the Red Hat Enterprise Linux Atomic Host 7 Getting Started with Containers Guide
    • atomic-devmode - The atomic-devmode package allows users to easily try the Red Hat Atomic Cloud Image. It adds a new GRUB2 menu item labeled Developer Mode which allows users to boot the system without having to set up cloud-init. When in Developer Mode, a root password will automatically be generated, and users will be logged automatically into an interactive session in which Cockpit is downloaded and started.
    • openscap - The Red Hat Enterprise Linux Atomic openscap Container Image contains the OpenSCAP-daemon, a service that performs SCAP scans of bare-metal machines, virtual machines and containers. Running the openscap container enables container vulnerability scanning with the atomic scan command. To install this new image, use:

      # atomic install rhel7/openscap

    Additionally, the openscap RPM available for Red Hat Enterprise Linux is also now fully supported.

  • System containers now available as a Technology Preview

    System containers provide a way to containerize services that need to run before the docker daemon is running. They use different technologies than the Docker-formatted containers, ostree for storage, runc for runtime, skopeo for searching and systemd for service management. Previously, such services were provided in the system as packages, or as part of the ostree in Atomic Host and containerizing them makes the system itself smaller. Red Hat provides the etcd and flannel services as system containers.

    Note that the new etcd system container image replaces the etcd Docker-formatted container that has been available until Red Hat Enterprise Linux Atomic Host 7.3. The new etcd3 container image provided with this release is a Docker-formatted image. For more information on system containers and how to run etcd and flannel, see Running System Containers.

  • Manual Kubernetes Cluster Configuration No Longer Supported

    The Kubernetes software that is available in Red Hat Enterprise Linux and Red Hat Enterprise Linux Atomic Host is packaged and configured differently than the Kubernetes included in OpenShift. We recommend you use the OpenShift version of Kubernetes for permanent setups and production use. The procedure described in Get Started Orchestrating Containers with Kubernetes should only be used as a convenient way to try out Kubernetes on an all-in-one RHEL or RHEL Atomic Host system.

    As of RHEL 7.3, support for the procedure for configuring a Kubernetes cluster (separate master and multiple nodes) directly on RHEL and RHEL Atomic Host has ended. For further details on Red Hat support for Kubernetes, see How are container orchestration tools supported with Red Hat Enterprise Linux?.

  • Cockpit features

    There are several new Cockpit features in this release. Some of these features are:

    • Support for two factor password authentication using PAM conversations
    • Webpack is used to build the Cockpit interface
    • Components can require a minimum Cockpit version
    • Forced password reset option enabled
    • Cockpit URLs can be proxied with a configured HTTP path prefix
    • SELinux audit failures can be diagnosed and solutions applied to the system
    • Storage can be configured for Docker containers and images
  • rhevm-guest-agent

    The rhevm-guest-agent container image is a Docker-formatted container that is used to run an agent inside of virtual machines on Red Hat Virtualization hosts. Communications between that agent and the Red Hat Virtualization Manager allows that manager to both monitor and change the state of the agent’s virtual machine.

    For more information about RHEV Guest Agent, see the RHEV Guest Agent Container section in the Red Hat Enterprise Linux Atomic Host Managing Containers Guide.

Red Hat logoGithubRedditYoutubeTwitter

Learn

Try, buy, & sell

Communities

About Red Hat Documentation

We help Red Hat users innovate and achieve their goals with our products and services with content they can trust.

Making open source more inclusive

Red Hat is committed to replacing problematic language in our code, documentation, and web properties. For more details, see the Red Hat Blog.

About Red Hat

We deliver hardened solutions that make it easier for enterprises to work across platforms and environments, from the core datacenter to the network edge.

© 2024 Red Hat, Inc.