OpenShift Virtualization

Jan 1, 0001

Definition

OpenShift Virtualization is a feature of Red Hat OpenShift that enables the deployment and management of virtual machines (VMs) alongside containerized applications within the same Kubernetes platform. This integration allows for a unified infrastructure where both VMs and containers can coexist, facilitating the modernization of legacy applications and the seamless transition to cloud-native architectures.

Secure Settings Example

apiVersion: kubevirt.io/v1
kind: VirtualMachine
metadata:
  name: secure-vm
spec:
  running: true
  template:
    spec:
      domain:
        devices:
          disks:
          - disk:
              bus: virtio
            name: containerdisk
        resources:
          requests:
            memory: "4Gi"
      volumes:
      - containerDisk:
          image: kubevirt/cirros-container-disk-demo
        name: containerdisk
      securityContext:
        runAsNonRoot: true
        capabilities:
          drop:
          - ALL

Insecure Settings Example

apiVersion: kubevirt.io/v1
kind: VirtualMachine
metadata:
  name: insecure-vm
spec:
  running: true
  template:
    spec:
      domain:
        devices:
          disks:
          - disk:
              bus: virtio
            name: containerdisk
        resources:
          requests:
            memory: "4Gi"
      volumes:
      - containerDisk:
          image: kubevirt/cirros-container-disk-demo
        name: containerdisk
      securityContext:
        runAsNonRoot: false
        capabilities:
          add:
          - NET_ADMIN
          - SYS_TIME

OpenShift Virtualization

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter