Zovomerezeka kutulutsidwa kwa zida zokonzekera ntchito yazotengera zakutali , woyang'anira zotengera ndi pafupifupi FS poyerekezera muzotengera / proc, / sys ndi choyimira chowoneka bwino cha cgroupfs kuti chigawidwe popanda kuthandizira malo am'magulu. Nthambi 4.0 imayikidwa ngati chithandizo chanthawi yayitali, zosintha zomwe zimapangidwa kwazaka 5.
LXC ndi nthawi yogwiritsira ntchito zotengera zonse zamakina ndi zotengera za OCI. LXC imaphatikizapo laibulale ya liblxc, zida zothandizira (lxc-create, lxc-start, lxc-stop, lxc-ls, etc.), ma tempulo opangira zomangira ndi seti ya zomangira za zilankhulo zosiyanasiyana zamapulogalamu. Kudzipatula kumachitika pogwiritsa ntchito njira zokhazikika za Linux kernel. Kupatula njira, ipc network stack, uts, ID za ogwiritsa ntchito ndi malo okwera, njira yopangira mayina imagwiritsidwa ntchito. cgroups amagwiritsidwa ntchito kuchepetsa chuma. Kuti muchepetse mwayi ndikuchepetsa mwayi wofikira, mawonekedwe a kernel monga mbiri ya Apparmor ndi SELinux, mfundo za Seccomp, Chroots (pivot_root) ndi kuthekera zimagwiritsidwa ntchito. Kodi LXC m'chinenero cha C ndikugawidwa pansi pa chilolezo cha GPLv2.
LXD ndi chowonjezera ku LXC, CRIU ndi QEMU chomwe chimagwiritsidwa ntchito kuyang'anira zotengera ndi makina enieni pa seva imodzi kapena zingapo. Ngati LXC ndi chida chochepa chosinthira pamlingo wa zotengera zamtundu uliwonse, ndiye kuti LXD imakhazikitsidwa ngati njira yakumbuyo yomwe imavomera zopempha pa netiweki kudzera pa REST API ndikukulolani kuti mupange masinthidwe owopsa omwe amayikidwa pagulu la ma seva angapo.
Zosungirako zosiyanasiyana zosungirako zimathandizidwa (mtengo wolozera, ZFS, Btrfs, LVM), zithunzi zokhala ndi kagawo kakang'ono, kusuntha kwamoyo kwa zotengera kuchokera pamakina kupita kwina, ndi zida zosungira zithunzi. Kodi LXD mu Go ndikugawidwa pansi pa layisensi ya Apache 2.0.
Chinsinsi mu LXC 4.0:
- Dalaivala adalembedwanso kuti agwire ntchito ndi gulu. Thandizo lowonjezera lautsogoleri wamagulu ogwirizana (cgroup2). Kuwonjezera magwiridwe antchito afiriji, komwe mutha kuyimitsa ntchito pagulu ndikumasula kwakanthawi zinthu zina (CPU, I/O, komanso ngakhale kukumbukira) kuti mugwire ntchito zina;
- Zomangamanga zokhazikitsidwa zoyitanira mafoni amtundu;
- Thandizo lowonjezera la "pidfd" kernel subsystem, yopangidwira kuthana ndi vuto la kugwiritsanso ntchito PID (pidfd imalumikizidwa ndi njira inayake ndipo sikusintha, pomwe PID imatha kulumikizidwa ndi njira ina ikatha njira yomwe ikugwiridwa ndi PIDyo) ;
- Kupanga bwino ndikuchotsa zida zapaintaneti, komanso mayendedwe awo pakati pa ma network subsystem namespaces;
- Kutha kusuntha zida zama netiweki opanda zingwe (nl80211) m'mitsuko kwakhazikitsidwa.
Chinsinsi mu LXD 4.0:
- Thandizo lowonjezera poyambitsa osati zotengera zokha, komanso makina enieni;
- Kugawa ma seva a LXD, lingaliro la polojekiti laperekedwa lomwe limathandizira kasamalidwe kamagulu a zotengera ndi makina enieni. Pulojekiti iliyonse imatha kuphatikiza zotengera zake, makina enieni, zithunzi, mbiri ndi magawo osungira. Mogwirizana ndi mapulojekiti, mutha kukhazikitsa zoletsa zanu ndikusintha makonda;
- Thandizo lowonjezera la intercepting system limayitanitsa zotengera;
- Kukhazikitsa kosunga zosunga zobwezeretsera zachilengedwe ndikubwezeretsanso kuchokera kwa iwo;
- Kulengedwa kwachidziwitso chazithunzi za malo ndi magawo osungirako kumaperekedwa ndi luso lokhazikitsa moyo wa chithunzithunzi;
- API Yowonjezera yowunikira momwe netiweki ilili (zambiri za netiweki ya lxc);
- Thandizo lowonjezera , FS yeniyeni yopangira mapu okwera kumalo ogwiritsira ntchito;
- Mitundu yatsopano ya ma adapter network "ipvlan" ndi "routed" yaperekedwa;
- Zowonjezera zakumbuyo zogwiritsira ntchito kusungirako kwa CephFS;
- Thandizo la kubwereza kwazithunzi ndi masanjidwe amitundu yambiri akhazikitsidwa pamagulu;
- Kuwonjezedwa kwa gawo lothandizira kupeza (RBAC);
- Thandizo lowonjezera la CGroup2;
- Anawonjezera kuthekera kokonza adilesi ya MAC ndikuzindikira adilesi yochokera ku NAT;
- API Yowonjezera yoyendetsera zomangira za DHCP (zobwereketsa);
- Thandizo lowonjezera la Nftables.
Source: opennet.ru