Ngemuva kwezinyanga eziyisishiyagalombili zokuthuthuka, i-hypervisor yamahhala i-Xen 4.16 isikhishwe. Izinkampani ezifana ne-Amazon, Arm, Bitdefender, Citrix kanye ne-EPAM Systems zibambe iqhaza ekuthuthukisweni kokukhishwa okusha. Ukukhishwa kwezibuyekezo zegatsha le-Xen 4.16 kuzohlala kuze kube uJuni 2, 2023, kanye nokushicilelwa kokulungiswa kobungozi kuze kube umhla ka-2 Disemba 2024.
Izinguquko ezibalulekile ku-Xen 4.16:
- Umphathi we-TPM, oqinisekisa ukusebenza kwama-chips abonakalayo okugcina okhiye be-cryptographic (vTPM), asetshenziswe ngesisekelo se-TPM evamile ebonakalayo (Imojuli Yengxenyekazi Ethembekile), ilungisiwe ukuze isebenzise ukusekelwa kokucaciswa kwe-TPM 2.0.
- Ukuncika okwengeziwe kusendlalelo se-PV Shim esisetshenziselwa ukuqalisa izihambeli ezingashintshiwe ze-paravirtualized (PV) ezindaweni ze-PVH ne-HVM. Ukuqhubekela phambili, ukusetshenziswa kwezihambeli ze-32-bit paravirtualized kuzokwenzeka kuphela kumodi ye-PV Shim, okuzonciphisa inani lezindawo ku-hypervisor ezingase ziqukathe ubungozi.
- Kwengezwe amandla okuqalisa kumadivayisi e-Intel ngaphandle kwesibali-sikhathi esihlelekayo (PIT, Isibali sikhathi Esihlelekayo).
- Kuhlanzwe izingxenye eziphelelwe yisikhathi, kwamisa ukwakha ikhodi ezenzakalelayo ethi "qemu-xen-traditional" kanye ne-PV-Grub (isidingo salezi zimfoloko eziqondene ne-Xen sanyamalala ngemva kokuba izinguquko ezisekelwe i-Xen zidluliselwe esakhiweni esikhulu se-QEMU ne-Grub).
- Ezivakashini ezinokwakheka kwe-ARM, usekelo lokuqala lwezibali zokuqapha ukusebenza olubonakalayo selusetshenzisiwe.
- Ukusekelwa okuthuthukisiwe kwemodi ye-dom0less, okukuvumela ukuthi ugweme ukusebenzisa indawo ye-dom0 ekuqaleni imishini ebonakalayo Ekuqaleni kwenqubo yokuqalisa iseva, lezi zinguquko zenze kwaba nokusekelwa kwezinhlelo ze-ARM ezingama-64-bit ezine-firmware ye-EFI.
- Usekelo oluthuthukisiwe lwamasistimu we-ARM angu-64-bit asekelwe ku-big.LITTLE architecture, ehlanganisa ama-cores anamandla kodwa alambele amandla nokusebenza okuphansi kodwa ama-cores awonga amandla engeziwe ku-chip eyodwa.
Ngesikhathi esifanayo, i-Intel yashicilela ukukhululwa kwe-Cloud Hypervisor 20.0 hypervisor, eyakhelwe ngesisekelo sezingxenye zephrojekthi ehlangene ye-Rust-VMM, lapho, ngaphezu kwe-Intel, i-Alibaba, i-Amazon, i-Google ne-Red Hat nayo ibamba iqhaza. I-Rust-VMM ibhalwe ngolimi lwe-Rust futhi ikuvumela ukuthi udale ama-hypervisors aqondene nomsebenzi. I-Cloud Hypervisor ingesinye se-hypervisor esihlinzeka ngomshini wokuqapha wezinga eliphezulu (VMM) osebenza phezu kwe-KVM futhi olungiselelwe imisebenzi yamafu. Ikhodi yephrojekthi iyatholakala ngaphansi kwelayisensi ye-Apache 2.0.
I-Cloud Hypervisor igxile ekusebenziseni ukusatshalaliswa kwesimanje Linux Ukusebenzisa amadivayisi e-paravirtualized asekelwe ku-Virtio. Imigomo eyinhloko ihlanganisa ukuphendula okuphezulu, ukusetshenziswa kwememori okuphansi, ukusebenza okuphezulu, ukucushwa okulula, kanye nama-vector okuhlasela ancishisiwe. Ukusekelwa kokulingisa kuncishisiwe, kugxilwe ku-paravirtualization. Njengamanje, kusekelwa izinhlelo ze-x86_64 kuphela, kodwa kuhlelwa ukwesekwa kwe-AArch64. Kusekelwa kuphela ukwakhiwa kwe-64-bit okwamanje kwezivakashi. LinuxUkucushwa kwe-CPU, imemori, i-PCI, kanye ne-NVDIMM kwenziwa ngesikhathi senqubo yokwakha. Ukufuduka kwemishini ebonakalayo phakathi amaseva.
Enguqulweni entsha:
- Okwezakhiwo ze-x86_64 ne-arch64, kufika kumasegimenti e-PCI angu-16 manje avunyelwe, okwandisa inani eliphelele lamadivayisi e-PCI avunyelwe ukusuka ku-31 kuya ku-496.
- Usekelo lokubopha ama-CPU abonakalayo kuma-CPU cores (CPU pinning) selusetshenzisiwe. Ku-vCPU ngayinye, manje sekungenzeka ukuchaza isethi elinganiselwe yama-CPU asokhaya lapho ukusetshenziswa kuvunyelwe khona, okungaba usizo lapho kwenziwa imephu ngokuqondile (1:1) izinsiza zokusingatha nesivakashi noma lapho usebenzisa umshini obonakalayo endaweni ethile ye-NUMA.
- Ukusekelwa okuthuthukisiwe kwe-I/O virtualization. Isifunda ngasinye se-VFIO manje singafakwa kumephu kumemori, okunciphisa inani lokuphuma komshini obonakalayo futhi kuthuthukise ukusebenza kokudlulisela idivayisi emshinini wokubuka.
- Ekhodini yokugqwala, kwenziwe umsebenzi wokubuyisela izigaba ezingaphephile ngokunye ukusetshenziswa okwenziwa ngemodi ephephile. Ezigabeni ezingaphephile ezisele, amazwana anemininingwane angeziwe achaza ukuthi kungani ikhodi engaphephile esele ingabhekwa njengephephile.
Source: opennet.ru
