Amazon
Rarraba yana samar da kwaya na Linux da ƙaramin tsarin tsarin, gami da abubuwan da ake buƙata kawai don gudanar da kwantena. Daga cikin fakitin da ke cikin aikin akwai tsarin sarrafa tsarin, ɗakin karatu na Glibc, da kayan aikin taro
Buildroot, GRUB bootloader, mai saita hanyar sadarwa
Ana sabunta rarrabawar ta atomatik kuma ana isar da ita ta sigar hoton tsarin da ba za a iya raba shi ba. An ware sassan diski guda biyu don tsarin, ɗayan wanda ya ƙunshi tsarin aiki, kuma ana kwafi sabuntawa zuwa na biyu. Bayan shigar da sabuntawa, bangare na biyu yana aiki, kuma a farkon, har sai sabuntawa na gaba ya zo, ana adana sigar da ta gabata ta tsarin, wanda zaku iya juyawa idan matsaloli suka taso. Ana shigar da sabuntawa ta atomatik ba tare da sa hannun mai gudanarwa ba.
Bambanci mai mahimmanci daga irin wannan rarraba kamar Fedora CoreOS, CentOS / Red Hat Atomic Mai watsa shiri shine babban mayar da hankali kan samarwa.
Tushen partition ana hawa karanta-kawai, kuma /etc settings partition ana hawa a tmpfs kuma a mayar da shi zuwa yadda yake a asali bayan an sake farawa. Gyaran fayiloli kai tsaye a cikin /etc directory, kamar /etc/resolv.conf da /etc/containerd/config.toml, ba a tallafawa - don adana saituna na dindindin, dole ne ku yi amfani da API ko matsar da ayyukan cikin kwantena daban.
Yawancin abubuwan haɗin tsarin an rubuta su a cikin Rust, wanda ke ba da fasalulluka masu aminci ga ƙwaƙwalwar ajiya don guje wa lahani da ke haifarwa ta hanyar samun damar ƙwaƙwalwar ajiya kyauta, ɓangarorin maƙasudin null, da wuce gona da iri. Lokacin ginawa ta tsohuwa, ana amfani da hanyoyin haɗin “-enable-default-pie” da “--enable-default-ssp” don ba da damar bazuwar sararin adireshi na fayilolin aiwatarwa (
Don fakitin da aka rubuta a cikin C/C++, an haɗa ƙarin tutoci
"-Wall", "-Werror=tsaro-tsaro", "-Wp,-D_FORTIFY_SOURCE=2", "-Wp,-D_GLIBCXX_ASSERTIONS" da "-fstack-karo-kariya".
Ana ba da kayan aikin ƙungiyar kwantena daban
source: budenet.ru