Ukukhishwa kokusatshalaliswa kwe-Photon OS 5.0 Linux kushicilelwe, okuhloswe ngayo ukuhlinzeka ngendawo yokubamba encane yokusebenzisa izinhlelo zokusebenza ezitsheni ezingazodwa. Le phrojekthi ithuthukiswa ngabakwa-VMware futhi kuthiwa ifanele ukusetshenziswa kwezicelo zezimboni, okuhlanganisa nezinye izithuthukisi zokuphepha, futhi ihlinzeka ngokulungiswa okuthuthukile kwe-VMware vSphere, iMicrosoft Azure, i-Amazon Elastic Compute, kanye nezindawo ze-Google Compute Engine. Imibhalo engumthombo yezingxenye ezenzelwe i-Photon OS inikezwa ngaphansi kwelayisensi ye-GPLv2 (ngaphandle kwelabhulali ye-libtdnf, evulwe ngaphansi kwelayisensi ye-LGPLv2.1). Izithombe esezilungile ze-ISO kanye ne-OVA zihlinzekwa nge-x86_64, ARM64, amasistimu we-Raspberry Pi namapulatifomu amafu ahlukahlukene ngaphansi kwesivumelwano somsebenzisi esihlukile (EULA).
Uhlelo lukuvumela ukuthi usebenzise amafomethi amaningi weziqukathi, okuhlanganisa amafomethi e-Docker, Rocket kanye Nengadi, futhi lusekela amapulatifomu e-orchestration anjenge-Mesos ne-Kubernetes. Ukuphatha isofthiwe nokufaka izibuyekezo, isebenzisa inqubo yangemuva ye-pmd (Photon Management Daemon) kanye nekhithi yayo yamathuluzi ye-tdnf, ehambisana nomphathi wephakheji ye-YUM futhi enikeza imodeli yokuphatha umjikelezo wokuphila wokusabalalisa okusekelwe ephaketheni. Uhlelo futhi luhlinzeka ngamathuluzi okufaka kalula iziqukathi zohlelo lokusebenza kusuka ezindaweni zonjiniyela (njengalezo ezisebenzisa i-VMware Fusion ne-VMware Workstation) kuya ezindaweni zokukhiqiza zamafu.
I-Systemd isetshenziselwa ukuphatha amasevisi esistimu. I-kernel yakhiwe ngokulungiselelwa kwe-VMware hypervisor futhi ihlanganisa izilungiselelo zokuqinisa ukuphepha ezinconywe i-Kernel Self-Protection Project (KSPP). Lapho wakha amaphakheji, izinketho ze-compiler ezikhulisa ukuphepha zisetshenziswa. Ikhithi yokusabalalisa yakhiwe ngezinguqulo ezintathu: okuncane (538MB, kufaka phakathi amaphakheji wesistimu ayisisekelo kanye nesikhathi sokusebenza seziqukathi ezigijima), eyakhelwe abathuthukisi (i-4.3GB, ihlanganisa amaphakheji engeziwe okuthuthukisa nokuhlola izinhlelo ezilethwa ezitsheni) futhi yakhelwe imisebenzi egijima ngaphakathi. isikhathi sangempela (683MB, iqukethe i-kernel enamapeshi angu-PREEMPT_RT okusebenzisa izinhlelo zesikhathi sangempela).
Ukuthuthukiswa okubalulekile ekukhishweni kwe-Photon OS 5.0:
- Ukwesekwa okwengeziwe kwezinhlelo zefayela le-XFS ne-BTRFS.
- Ukwengezwa okungeziwe kokumisa i-VPN WireGuard, imizila eminingi, i-SR-IOV (I-Single Root Input/Output Virtualization), ukudala nokumisa amadivaysi abonakalayo, kwakha i-NetDev, VLAN, VXLAN, Bridge, Bond, VETH (Virtual Ethernet) ku-Network Configuration Manager. inqubo, MacVLAN/MacVTap, IPvlan/IPvtap kanye nemigudu (IPIP, SIT, GRE, VTI). Ububanzi bemingcele yedivayisi yenethiwekhi etholakalayo ukuze icushwe futhi bubukwe bunwetshiwe.
- Ukusekelwa kokumisa igama lomethuleli, i-TLS, i-SR-IOV, i-Tap ne-Tun interface yengeziwe kunqubo ye-PMD-Nextgen (Photon Management Daemon).
- I-Network-event-broker ingeze amandla okushintsha idatha yenethiwekhi ngefomethi ye-JSON.
- Ikhono lokwakha iziqukathi ezingasindi lingeziwe kunsizakalo ye-cntrctl.
- Ukwesekwa okungeziwe kwamaqoqo v2, angasetshenziswa, isibonelo, ukukhawulela inkumbulo, i-CPU, kanye nokusetshenziswa kwe-I/O. Umehluko oyinhloko phakathi kwamaqoqo v2 kanye ne-v1 ukusetshenziswa kwesigaba samaqoqo esivamile kuzo zonke izinhlobo zezinsiza, esikhundleni sezigaba ezihlukene zokwabiwa kwe-CPU, ukuphathwa kwememori, kanye ne-I/O.
- Kwengezwe amandla okusebenzisa ukulungisa ku-Linux kernel ngaphandle kokumisa umsebenzi nangaphandle kokuqalisa kabusha (Kernel Live Patching).
- Usekelo olungeziwe lokuvikela iziqukathi ngezinqubomgomo ze-SELinux.
- Kwengezwe amandla okudala iziqukathi ngaphandle komsebenzisi wempande.
- Ukwesekwa okwengeziwe kwezakhiwo ze-ARM64 ze-linux-esx kernel.
- Ukwesekwa okwengeziwe kwe-PostgreSQL DBMS. Amagatsha 13, 14 kanye ne-15 asekelwe.
- Kumphathi wephakeji ye-tdnf, ukusekelwa kwemiyalo yokusebenza nomlando wezinguquko (uhlu, ukubuyisela emuva, hlehlisa futhi wenze kabusha) kwengeziwe, umyalo wokumaka usuqalisiwe.
- Isifaki sengeze usekelo lwemibhalo ebizwa esiteji ngaphambi kokuthi kuqale ukufakwa. Kwengezwe insiza ukukhiqiza izithombe zangokwezifiso ze-initrd.
- Ukwesekwa okwengeziwe kwemodi yokuhlukanisa ethi "A/B", edala izingxenye ezimbili ezifanayo zezimpande kudrayivu - esebenzayo kanye ne-passive. Isibuyekezo esisha sifakwe ku-partition ye-passive ngaphandle kokuphazamisa ukusebenza kwesisebenzayo. Khona-ke ama-partitions ayashintshwa - ukwahlukanisa ngesibuyekezo esisha kuqala ukusebenza, futhi ukwahlukanisa okusebenzayo kwangaphambilini kufakwa kumodi yokwenziwa futhi kulinde ukufakwa kwesibuyekezo esilandelayo. Uma kukhona okungahambanga kahle ngemva kokubuyekezwa, ukuhlehliswa kwenguqulo yangaphambilini kungenziwa.
- Izinguqulo zephakheji ezibuyekeziwe, isb. , Hamba 6.1.10.
Source: opennet.ru