I-SUSE ishicilele i-prototype yesibili ye-ALP "Punta Baretti" (I-Adaptable Linux Platform), ebekwe njengeqhubiswano lokuthuthukiswa kokusatshalaliswa kwe-SUSE Linux Enterprise. Umehluko oyinhloko phakathi kwe-ALP ukuhlukaniswa kokusatshalaliswa okuyisisekelo kube izingxenye ezimbili: "i-OS yokusingatha" ehlutshiwe ukuze isebenze phezu kwehadiwe kanye nesendlalelo sokusekela izinhlelo zokusebenza, okuhloswe ngaso ukusebenza ezitsheni nasemishinini ebonakalayo. Imihlangano ilungiselelwe ukwakhiwa kwe-x86_64. I-ALP isungulwa kusetshenziswa inqubo yokuthuthukisa evulekile, lapho izakhiwo eziphakathi nendawo nemiphumela yokuhlolwa itholakala esidlangalaleni kuwo wonke umuntu.
Isakhiwo se-ALP sisekelwe ekuthuthukisweni “ku-OS yokusingatha” yemvelo edingekile kancane ukusekela nokuphatha okokusebenza. Kuhlongozwa ukuthi kusetshenziswe zonke izinhlelo zokusebenza nezingxenye zesikhala somsebenzisi hhayi endaweni exubile, kodwa ezitsheni ezihlukene noma imishini ebonakalayo egijima phezu kwe-"host OS" futhi ihlukanisiwe komunye nomunye. Le nhlangano izovumela abasebenzisi ukuthi bagxile kuzinhlelo zokusebenza kanye nokugeleza komsebenzi okungacacile kude nemvelo yesistimu engaphansi kanye nehadiwe.
Umkhiqizo we-SLE Micro, ngokusekelwe ekuthuthukisweni kwephrojekthi ye-MicroOS, usetshenziswa njengesisekelo "se-OS yokusingatha". Ukuphatha okuphakathi nendawo, izinhlelo zokuphatha ukumisa Usawoti (ofakwe ngaphambilini) kanye no-Ansible (uyazikhethela) uyahlinzekwa. Amathuluzi e-Podman nama-K3s (Kubernetes) ayatholakala ukuze asebenzise iziqukathi ezingazodwa. Phakathi kwezingxenye zesistimu ezifakwe ezitsheni kukhona i-yast2, i-podman, i-k3s, indawo yokusebenzela, i-GDM (i-GNOME Display Manager) ne-KVM.
Phakathi kwezici zemvelo yesistimu, ukusetshenziswa okuzenzakalelayo kwe-disk encryption (FDE, I-Full Disk Encryption) enekhono lokugcina okhiye ku-TPM kuyashiwo. I-root partition ifakwe kumodi yokufunda kuphela futhi ayishintshi phakathi nokusebenza. Imvelo isebenzisa indlela yokufaka isibuyekezo se-athomu. Ngokungafani nezibuyekezo ze-athomu ezisekelwe ku-ostree ne-snap esetshenziswa ku-Fedora naku-Ubuntu, i-ALP isebenzisa umphathi wephakheji ojwayelekile kanye nendlela yokuthwebula isithombe ohlelweni lwefayela le-Btrfs esikhundleni sokwakha izithombe ezihlukene ze-athomu kanye nokukhipha ingqalasizinda eyengeziwe yokulethwa.
Kunemodi elungisekayo yokufakwa okuzenzakalelayo kwezibuyekezo (isibonelo, ungavumela ukufakwa okuzenzakalelayo kwamapeshi kuphela ngobungozi obubalulekile noma ubuyele ekuqinisekiseni ngokwenza ukufakwa kwezibuyekezo). Amapeshi abukhoma asekelwa ukuze kubuyekezwe i-Linux kernel ngaphandle kokuqalisa kabusha noma ukumisa umsebenzi. Ukuze ulondoloze ukusinda kwesistimu (ukuzilapha ngokwakho), isimo sokugcina esizinzile sirekhodwa kusetshenziswa izifinyezo ze-Btrfs (uma okudidayo kutholwa ngemva kokufaka izibuyekezo noma ukushintsha izilungiselelo, isistimu idluliselwa ngokuzenzakalela kusimo sangaphambilini).
Ipulatifomu isebenzisa isitaki sesoftware enezinguqulo eziningi - ngenxa yokusetshenziswa kweziqukathi, ungasebenzisa ngasikhathi sinye izinguqulo ezahlukahlukene zamathuluzi nezinhlelo zokusebenza. Isibonelo, ungasebenzisa izinhlelo ezisebenzisa izinguqulo ezihlukene zePython, Java, ne-Node.js njengokuncika, okwehlukanisa ukuncika okungahambelani. Ukuncika okuyisisekelo kunikezwa ngendlela yamasethi e-BCI (Izithombe Zesitsha Esiyisisekelo). Umsebenzisi angadala, abuyekeze futhi asuse izitaki zesofthiwe ngaphandle kokuthinta ezinye izindawo.
Izinguquko eziyinhloko ku-prototype yesibili ye-ALP:
- Kusetshenziswa isifaki se-D-Installer, lapho isixhumi esibonakalayo somsebenzisi sihlukaniswa nezingxenye zangaphakathi ze-YaST futhi kungenzeka kusetshenziswe ama-frontend ahlukahlukene, okuhlanganisa ne-frontend yokuphatha ukufakwa ngokusebenzisa isixhumi esibonakalayo sewebhu. I-interface eyisisekelo yokuphatha ukufakwa yakhiwe kusetshenziswa ubuchwepheshe bewebhu futhi ifaka isibambi esinikeza ukufinyelela kumakholi e-D-Bus nge-HTTP, kanye nesixhumi esibonakalayo sewebhu ngokwaso. Ukuxhumana kwewebhu kubhalwe nge-JavaScript kusetshenziswa uhlaka lwe-React kanye nezingxenye ze-PatternFly. Ukuqinisekisa ukuvikeleka, i-D-Installer isekela ukufakwa kuma-partitions abethelwe futhi ikuvumela ukuthi usebenzise i-TPM (I-Trusted Platform Module) ukuze ususe ukubethela ukwahlukanisa kokuqalisa, usebenzisa okhiye abagcinwe ku-chip ye-TPM esikhundleni samaphasiwedi.
- Ukusetshenziswa okunikwe amandla kwamanye amaklayenti e-YaST (i-bootloader, iSCSIClient, i-Kdump, i-firewall, njll.) ezitsheni ezihlukene. Izinhlobo ezimbili zeziqukathi zisetshenzisiwe: ezilawulayo zokusebenza ne-YaST kumodi yombhalo, ku-GUI kanye nesixhumi esibonakalayo Sewebhu, nezivivinyo zokuthumela umbhalo ngokuzenzakalelayo. Amamojula amaningi nawo ashintshwa ukuze asetshenziswe kumasistimu anezibuyekezo zokwenziwayo. Ukuze kuhlanganiswe ne-openQA, ilabhulali ye-libyui-rest-api enokuqaliswa kwe-REST API iyaphakanyiswa.
- Ukusetshenziswa okusetshenzisiwe esitsheni seplathifomu ye-Cockpit, ngesisekelo lapho kwakhiwe khona ukusebenzelana kwewebhu komkhiqizi nesifaki.
- Kungenzeka ukusebenzisa i-full-disk encryption (i-FDE, i-Full Disk Encryption) ekufakweni phezulu kwemishini evamile, hhayi nje ezinhlelweni ze-virtualization kanye nezinhlelo zamafu.
- I-GRUB2 isetshenziswa njenge-bootloader eyinhloko.
- Ukulungiselelwa okungeziwe kokuphakela iziqukathi zokwakha i-firewall (i-firewalld-container) kanye nokuphathwa okumaphakathi kwamasistimu namaqoqo (warewulf-container).
Source: opennet.ru