I-SUSE ishicilele i-prototype yesithathu yeplathifomu ye-ALP “Piz Bernina” (I-Adaptable Linux Platform), ebekwe njengeqhubiswano lokuthuthukiswa kokusatshalaliswa kwe-SUSE Linux Enterprise. Umehluko oyinhloko phakathi kwe-ALP ukuhlukaniswa kokusabalalisa okuyisisekelo kube izingxenye ezimbili: "i-OS yokusingatha" ehlutshiwe ukuze isebenze phezu kwehadiwe kanye nesendlalelo sokusekela izinhlelo zokusebenza, okuhloswe ngayo ukusebenza ezitsheni kanye nemishini ebonakalayo. I-ALP isungulwa kusetshenziswa inqubo yokuthuthukisa evulekile, lapho ukwakhiwa okumaphakathi nemiphumela yokuhlolwa itholakala esidlangalaleni kuwo wonke umuntu.
I-prototype yesithathu ihlanganisa amagatsha amabili ahlukene, okuthi ngendlela yawo yamanje afana nokuqukethwe, kodwa esikhathini esizayo azothuthuka ekuqondeni kwezindawo ezahlukene zokufaka isicelo futhi azohluka ezinsizakalweni abazihlinzekayo. Igatsha le-Bedrock, eliqondiswe ekusetshenzisweni ezinhlelweni zeseva, kanye negatsha elincane, eliklanyelwe ukwakha amasistimu avela efwini kanye nezinsiza ezincane ezisebenzayo, ziyatholakala ukuze zihlolwe. Imihlangano eseyilungile ilungiselelwa ukwakhiwa kwe-x86_64 (Bedrock, Micro). Ukwengeza, imibhalo yomhlangano iyatholakala (Bedrock, Micro) yezakhiwo ze-Aarch64, PPC64le kanye ne-s390x.
Isakhiwo se-ALP sisekelwe ekuthuthukisweni “ku-OS yokusingatha” yemvelo edingekile kancane ukusekela nokuphatha okokusebenza. Kuhlongozwa ukuthi kusetshenziswe zonke izinhlelo zokusebenza nezingxenye zesikhala somsebenzisi hhayi endaweni exubile, kodwa ezitsheni ezihlukene noma imishini ebonakalayo egijima phezu kwe-"host OS" futhi ihlukanisiwe komunye nomunye. Le nhlangano izovumela abasebenzisi ukuthi bagxile kuzinhlelo zokusebenza kanye nokugeleza komsebenzi okungacacile kude nemvelo yesistimu engaphansi kanye nehadiwe.
Umkhiqizo we-SLE Micro, ngokusekelwe ekuthuthukisweni kwephrojekthi ye-MicroOS, usetshenziswa njengesisekelo "se-OS yokusingatha". Ukuphatha okuphakathi nendawo, izinhlelo zokuphatha ukumisa Usawoti (ofakwe ngaphambilini) kanye no-Ansible (uyazikhethela) uyahlinzekwa. Amathuluzi e-Podman nama-K3s (Kubernetes) ayatholakala ukuze asebenzise iziqukathi ezingazodwa. Phakathi kwezingxenye zesistimu ezifakwe ezitsheni kukhona i-yast2, i-podman, i-k3s, indawo yokusebenzela, i-GDM (i-GNOME Display Manager) ne-KVM.
Phakathi kwezici zemvelo yesistimu, ukusetshenziswa okuzenzakalelayo kwe-disk encryption (FDE, I-Full Disk Encryption) enekhono lokugcina okhiye ku-TPM kuyashiwo. I-root partition ifakwe kumodi yokufunda kuphela futhi ayishintshi phakathi nokusebenza. Imvelo isebenzisa indlela yokufaka isibuyekezo se-athomu. Ngokungafani nezibuyekezo ze-athomu ezisekelwe ku-ostree ne-snap esetshenziswa ku-Fedora naku-Ubuntu, i-ALP isebenzisa umphathi wephakheji ojwayelekile kanye nendlela yokuthwebula isithombe ohlelweni lwefayela le-Btrfs esikhundleni sokwakha izithombe ezihlukene ze-athomu kanye nokukhipha ingqalasizinda eyengeziwe yokulethwa.
Kunemodi elungisekayo yokufakwa okuzenzakalelayo kwezibuyekezo (isibonelo, ungavumela ukufakwa okuzenzakalelayo kwamapeshi kuphela ngobungozi obubalulekile noma ubuyele ekuqinisekiseni ngokwenza ukufakwa kwezibuyekezo). Amapeshi abukhoma asekelwa ukuze kubuyekezwe i-Linux kernel ngaphandle kokuqalisa kabusha noma ukumisa umsebenzi. Ukuze ulondoloze ukusinda kwesistimu (ukuzilapha ngokwakho), isimo sokugcina esizinzile sirekhodwa kusetshenziswa izifinyezo ze-Btrfs (uma okudidayo kutholwa ngemva kokufaka izibuyekezo noma ukushintsha izilungiselelo, isistimu idluliselwa ngokuzenzakalela kusimo sangaphambilini).
Ipulatifomu isebenzisa isitaki sesoftware enezinguqulo eziningi - ngenxa yokusetshenziswa kweziqukathi, ungasebenzisa ngasikhathi sinye izinguqulo ezahlukahlukene zamathuluzi nezinhlelo zokusebenza. Isibonelo, ungasebenzisa izinhlelo ezisebenzisa izinguqulo ezihlukene zePython, Java, ne-Node.js njengokuncika, okwehlukanisa ukuncika okungahambelani. Ukuncika okuyisisekelo kunikezwa ngendlela yamasethi e-BCI (Izithombe Zesitsha Esiyisisekelo). Umsebenzisi angadala, abuyekeze futhi asuse izitaki zesofthiwe ngaphandle kokuthinta ezinye izindawo.
Ukuze kufakwe, isifakeli se-D-Installer sisetshenziswa, lapho okusetshenziswa kubonwa kuhlukaniswa nezingxenye zangaphakathi ze-YaST futhi kungenzeka kusetshenziswe ama-frontend ahlukahlukene, okuhlanganisa ne-frontend yokuphatha ukufakwa ngokusebenzisa isixhumi esibonakalayo sewebhu. Ukwenziwa kwamaklayenti e-YaST (i-bootloader, iSCSIClient, i-Kdump, i-firewall, njll.) ezitsheni ezihlukene kuyasekelwa.
Izinguquko ezinkulu kumfuziselo wesithathu we-ALP:
- Ukuhlinzeka Ngendawo Eyethenjwayo Yokusayinda yokwenza ikhompuyutha eyimfihlo, okuvumela ukucutshungulwa okuvikelekile kwedatha kusetshenziswa imishini yokuhlukanisa, ukubethela kanye nemishini ebonakalayo.
- Ukusetshenziswa kwehadiwe nesitifiketi sesikhathi sokusebenza ukuze kuqinisekiswe ubuqotho bemisebenzi eyenziwayo.
- Isisekelo sokusekela imishini ebonakalayo eyimfihlo (i-CVM, Umshini Obonakalayo Oyimfihlo).
- Ukuhlanganiswa kokusekelwa kweplathifomu ye-NeuVector ukuze kuqinisekiswe ukuvikeleka kweziqukathi, ukunquma ubukhona bezingxenye ezisengozini futhi kuhlonzwe umsebenzi oyingozi.
- Usekelo lwezakhiwo ze-s390x ngaphezu kwe-x86_64 ne-aarch64.
- Ikhono lokunika amandla ukubethela kwediski eligcwele (i-FDE, Ukubethelwa Kwediski Egcwele) esigabeni sokufaka ngokhiye abagcinwe ku-TPMv2 futhi ngaphandle kwesidingo sokufaka umushwana wokungena phakathi nokuqaliswa kokuqala. Ukusekelwa okulinganayo kukho kokubili ukubethela kwama-partitions avamile kanye nezingxenye ze-LVM (Logical Volume Manager).
Source: opennet.ru