ProHoster > Blog > internet nhau > Kuburitswa kweXen 4.14 hypervisor

Kuburitswa kweXen 4.14 hypervisor

Mushure memwedzi misere yebudiriro yakabudiswa mahara hypervisor kusunungurwa xen 4.14. Makambani akadai saAlibaba, Amazon, AMD, Arm, Bitdefender, Citrix, EPAM Systems, Huawei neIntel vakatora chikamu mukuvandudza kuburitswa kutsva. Kuburitswa kwekuvandudzwa kwebazi reXen 4.14 kuchagara kusvika Ndira 24, 2022, uye kuburitswa kwezvigadziriso zvekusagadzikana kusvika Chikunguru 24, 2023.

Key change muXen 4.14:

  • Yakawedzera tsigiro yemhando nyowani yekushandisa Linux stubdomain, iyo inokutendera kuti uronge kuurayiwa pasi pemushandisi akaparadzana asina rusarura, kupatsanura zvikamu zvekuteedzera mudziyo kubva kuDom0. Kare, mu stubdomain mode, chete "qemu-traditional" modhi yemudziyo ndiyo yaishandiswa, iyo yaiganhura huwandu hwemidziyo yakatevedzerwa. Muenzaniso mutsva Linux stubomains yakagadzirwa nepurojekiti yeQUBES OS uye inotsigira kushandiswa kwevatyairi veemulation kubva pazvinoburitswa zvazvino zveQEMU, pamwe nehunyanzvi hwevaenzi hunowanikwa muQEMU.
  • Kune masisitimu ane Intel EPT tsigiro, tsigiro yekugadzira matavi akareruka (maforogo) emakina chaiwo anoitirwa kukurumidza kutariswa, semuenzaniso, yekuongorora malware kana fuzzing kuyedzwa. Aya maforogo anoshandisa ndangariro kugovana uye haakonese iyo mudziyo modhi.
  • Iyo live patch system yakawedzerwa kubatanidza kune hypervisor gungano identifiers uye funga nezve marongero anoiswa zvigamba kudzivirira zvigamba kuti zvisaiswa kugungano risiri iro kana mune isiriyo hurongwa.
  • Yakawedzerwa tsigiro yeCET (Intel Control-flow Enforcement Technology) ekuwedzera kudzivirira kubva kune zvakapambwa zvakavakwa uchishandisa kudzoka-yakatarisana programming (ROP, Return-Oriented Programming) maitiro.
  • Yakawedzera CONFIG_PV32 kuseta kudzima hypervisor rutsigiro kune 32-bit paravirtualized (PV) vashanyi uchichengetedza rutsigiro rwe64-bit avo.
  • Yakawedzerwa tsigiro yeHypervisor FS, pseudo-FS mune sysfs dhizaini yekuwana yakarongeka yemukati data uye marongero eiyo hypervisor, iyo isingade kupatsanura matanda kana kunyora hypercalls.
  • Zvinogoneka kumhanya Xen seyevaenzi sisitimu inomhanyisa Hyper-V hypervisor inoshandiswa muMicrosoft Azure cloud platform. Kumhanya Xen mukati meHyper-V inobvumidza iwe kushandisa yakajairika virtualization stack muAzure makore nharaunda uye inoita kuti zvikwanise kufambisa chaiwo michina pakati peakasiyana makore masisitimu.
  • Yakawedzera kugona kugadzira isingaite yevaenzi system ID (yaimbova maID aigadzirwa sequentially). Mazita anogona zvakare kuenderera mberi pakati peVM state kuchengetedza, kudzoreredza, uye kutama mashandiro.
  • Kugadzira otomatiki kwezvisungo zvemutauro weGo zvichibva pane libxl zvimiro zvinopihwa.
  • YeWindows 7, 8.x uye 10, tsigiro yeKDD yawedzerwa, chishandiso chekudyidzana neWinDbg debugger (Windows Debugger), iyo inobvumidza iwe kugadzirisa Windows nharaunda pasina kugonesa debugging mune yevaenzi OS.
  • Yakawedzerwa rutsigiro kune ese Raspberry Pi 4 mabhodhi akasiyana anotakura ne4GB uye 8GB RAM.
  • Yakawedzerwa rutsigiro rwe AMD EPYC processors codenamed "Milan".
  • Kuvandudzwa kwekuita kwe nested virtualization, iyo inomhanyisa Xen mukati meXen- kana Viridian-based vaenzi.
  • Mune emulation mode, tsigiro yeAVX512_BF16 mirairo inoitwa.
  • Iyo hypervisor musangano yakachinjirwa kushandisa Kbuild.

Source: opennet.ru

Voeg