Kuburitswa kweiyo Kata Containers 3.2 purojekiti yakaburitswa, ichigadzira stack yekuronga kuurayiwa kwemidziyo uchishandisa yekuzviparadzanisa nevamwe zvichibva pane yakazara-yakazara virtualization maitiro. Iyo purojekiti yakagadzirwa neIntel neHyper nekubatanidza Clear Containers uye runV matekinoroji. Iyo kodhi yeprojekiti yakanyorwa muGo and Rust, uye yakagoverwa pasi peiyo Apache 2.0 rezinesi. Kuvandudzwa kwechirongwa ichi kunotariswa neboka rinoshanda rakagadzirwa pasi pesangano rakazvimirira reOpenStack Foundation, iro rinosanganisira makambani akaita seCanonical, China Mobile, Dell/EMC, EasyStack, Google, Huawei, NetApp, Red Hat, SUSE neZTE. .
Kata yakavakirwa panguva yekumhanya, iyo inokutendera iwe kuti ugadzire compact chaiyo michina inomhanya uchishandisa yakazara hypervisor, pachinzvimbo chekushandisa echinyakare midziyo inoshandisa yakajairwa Linux kernel uye yakaparadzaniswa uchishandisa namespaces uye cgroups. Iko kushandiswa kwemashini chaiwo kunotendera iwe kuti uwane yakakwira nhanho yekuchengetedza iyo inodzivirira kubva kurwiswa kunokonzerwa nekushandiswa kwekusagadzikana muLinux kernel.
Kata Containers yakatarisana nekubatanidzwa mune iripo yekuzviparadzanisa yemidziyo zvivakwa nekugona kushandisa akafanana chaiwo muchina kusimudzira kuchengetedzwa kwemidziyo yechinyakare. Iyo purojekiti inopa maitiro ekuona kuenderana kweakareruka chaiwo muchina ane akasiyana ega ega masisitimu, midziyo orchestration mapuratifomu uye zvakatemwa zvakaita seOCI (Open Container Initiative), CRI (Container Runtime Interface) uye CNI (Container Networking Interface). Zvishandiso zviripo zvekubatanidza neDocker, Kubernetes, QEMU uye OpenStack.
Kubatanidzwa nemasisitimu ekutarisira midziyo kunowanikwa uchishandisa dhizaini inoteedzera manejimendi emidziyo, iyo inowana manejimendi ekutonga mumushini chaiwo kuburikidza negRPC interface uye yakakosha proxy. Mukati memamiriro ekunze, ayo anotangwa neiyo hypervisor, yakanyatso optimized Linux kernel inoshandiswa, ine chete yakaderera seti yekugona kunodiwa.
Se hypervisor, inotsigira kushandiswa kweDragonball Sandbox (iyo edition yeKVM yakagadziridzwa midziyo) ine QEMU toolkit, pamwe neFirecracker uye Cloud Hypervisor. Iyo sisitimu nharaunda inosanganisira yekutanga daemon uye mumiririri. Iyo mumiririri inopa kuurayiwa kwemushandisi-yakatsanangurwa mudziyo mifananidzo muOCI fomati yeDocker uye CRI yeKubernetes. Kana ichishandiswa pamwe chete neDocker, muchina wakasiyana chaiwo unogadzirwa kune yega yega mudziyo, i.e. Iyo nharaunda inomhanya pamusoro peiyo hypervisor inoshandiswa kune nested kuvhurwa kwemidziyo.
Kuderedza kushandiswa kwekuyeuka, iyo DAX nzira inoshandiswa (yakananga kupinda kune faira system, kudarika peji cache pasina kushandisa block device level), uye kudhindisa nzvimbo dzakafanana dzekuyeuka, teknolojia yeKSM (Kernel Samepage Merging) inoshandiswa, iyo inokubvumira. kuronga kugovaniswa kweanotambira system zviwanikwa uye kubatana kune akasiyana masisitimu evaenzi kugovera yakajairika system nharaunda template.
Mushanduro itsva:
- Pamusoro pekutsigira kweiyo AMD64 (x86_64) yekuvaka, kuburitswa kunopihwa kune iyo ARM64 (Aarch64) uye s390 (IBM Z) zvivakwa. Tsigiro yeiyo ppc64le architecture (IBM Simba) iri mukusimudzira.
- Kuronga kuwanikwa kwemifananidzo yemidziyo, iyo Nydus 2.2.0 faira system inoshandiswa, inoshandisa kero yemukati yekubatana kwakanaka nemifananidzo yakajairwa. Nydus inotsigira pa-iyo-inobhururuka kurodha yemifananidzo (kurodha chete pazvinenge zvichidikanwa), inopa kudzokororwa kweiyo duplicate data, uye inogona kushandisa akasiyana backend kuchengetedza chaiko. POSIX kuenderana kunopihwa (yakafanana neComposefs, iyo Nydus kuita inosanganisa kugona kweOverlayFS neEROFS kana FUSE module).
- Iyo Dragonball virtual muchina maneja yakasanganiswa mune chikuru chimiro cheKata Containers chirongwa, icho chave kugadzirwa mune yakajairika repository.
- A debugging basa rakawedzerwa kune kata-ctl utility yekubatanidza kune chaiyo muchina kubva munzvimbo inotambira.
- GPU manejimendi masimba akawedzerwa uye tsigiro yakawedzerwa yekuendesa maGPU kumidziyo yekuvanzika komputa (Yakavanzika Container), iyo inopa encryption yedata, ndangariro uye kuuraya mamiriro ekudzivirira pakaitika kukanganisa kwenzvimbo inotambira kana hypervisor.
- Iyo subsystem yekutarisira zvishandiso zvinoshandiswa mumidziyo kana sandbox nharaunda yakawedzerwa kuRuntime-rs. Inotsigira kushanda nevfio, block, network uye mamwe marudzi emidziyo.
- Kuenderana neOCI Runtime 1.0.2 uye Kubernetes 1.23.1 inopihwa.
- Inokurudzirwa kushandisa kuburitsa 6.1.38 ine zvigamba seLinux kernel.
- Budiriro yakatamiswa kubva pakushandisa iyo Jenkins inoenderera mberi yekubatanidza system kuenda kuGitHub Zviito.
Source: opennet.ru