Ngemuva kwezinyanga eziyisishiyagalombili zokuthuthuka, i-hypervisor yamahhala i-Xen 4.16 isikhishwe. Izinkampani ezifana ne-Amazon, Arm, Bitdefender, Citrix kanye ne-EPAM Systems zibambe iqhaza ekuthuthukisweni kokukhishwa okusha. Ukukhishwa kwezibuyekezo zegatsha le-Xen 4.16 kuzohlala kuze kube uJuni 2, 2023, kanye nokushicilelwa kokulungiswa kobungozi kuze kube umhla ka-2 Disemba 2024.
Izinguquko ezibalulekile ku-Xen 4.16:
- Umphathi we-TPM, oqinisekisa ukusebenza kwama-chips abonakalayo okugcina okhiye be-cryptographic (vTPM), asetshenziswe ngesisekelo se-TPM evamile ebonakalayo (Imojuli Yengxenyekazi Ethembekile), ilungisiwe ukuze isebenzise ukusekelwa kokucaciswa kwe-TPM 2.0.
- Ukuncika okwengeziwe kusendlalelo se-PV Shim esisetshenziselwa ukuqalisa izihambeli ezingashintshiwe ze-paravirtualized (PV) ezindaweni ze-PVH ne-HVM. Ukuqhubekela phambili, ukusetshenziswa kwezihambeli ze-32-bit paravirtualized kuzokwenzeka kuphela kumodi ye-PV Shim, okuzonciphisa inani lezindawo ku-hypervisor ezingase ziqukathe ubungozi.
- Kwengezwe amandla okuqalisa kumadivayisi e-Intel ngaphandle kwesibali-sikhathi esihlelekayo (PIT, Isibali sikhathi Esihlelekayo).
- Kuhlanzwe izingxenye eziphelelwe yisikhathi, kwamisa ukwakha ikhodi ezenzakalelayo ethi "qemu-xen-traditional" kanye ne-PV-Grub (isidingo salezi zimfoloko eziqondene ne-Xen sanyamalala ngemva kokuba izinguquko ezisekelwe i-Xen zidluliselwe esakhiweni esikhulu se-QEMU ne-Grub).
- Ezivakashini ezinokwakheka kwe-ARM, usekelo lokuqala lwezibali zokuqapha ukusebenza olubonakalayo selusetshenzisiwe.
- Usekelo oluthuthukisiwe lwemodi ye-dom0less, ekuvumela ukuthi ugweme ukusebenzisa indawo ye-dom0 lapho uqala imishini ebonakalayo ekuqaleni kwe-server boot. Izinguquko zenze kwaba nokwenzeka ukusebenzisa ukwesekwa kwezinhlelo ze-ARM ezingama-64 nge-firmware ye-EFI.
- Usekelo oluthuthukisiwe lwamasistimu we-ARM angu-64-bit asekelwe ku-big.LITTLE architecture, ehlanganisa ama-cores anamandla kodwa alambele amandla nokusebenza okuphansi kodwa ama-cores awonga amandla engeziwe ku-chip eyodwa.
Ngesikhathi esifanayo, i-Intel yashicilela ukukhululwa kwe-Cloud Hypervisor 20.0 hypervisor, eyakhelwe ngesisekelo sezingxenye zephrojekthi ehlangene ye-Rust-VMM, lapho, ngaphezu kwe-Intel, i-Alibaba, i-Amazon, i-Google ne-Red Hat nayo ibamba iqhaza. I-Rust-VMM ibhalwe ngolimi lwe-Rust futhi ikuvumela ukuthi udale ama-hypervisors aqondene nomsebenzi. I-Cloud Hypervisor ingesinye se-hypervisor esihlinzeka ngomshini wokuqapha wezinga eliphezulu (VMM) osebenza phezu kwe-KVM futhi olungiselelwe imisebenzi yamafu. Ikhodi yephrojekthi iyatholakala ngaphansi kwelayisensi ye-Apache 2.0.
I-Cloud Hypervisor igxile ekusebenziseni ukusabalalisa kwe-Linux yesimanje kusetshenziswa amadivaysi e-virtio-based paravirtualized. Phakathi kwezinjongo eziyinhloko ezishiwo yilezi: ukusabela okuphezulu, ukusetshenziswa kwememori okuphansi, ukusebenza okuphezulu, ukumisa okwenziwe lula kanye nokunciphisa ama-vectors okuhlasela okungenzeka. Ukwesekwa kokulingisa kugcinwa kukuncane futhi kugxilwe ku-paravirtualization. Okwamanje kuphela amasistimu we-x86_64 asekelwayo, kodwa ukusekelwa kwe-AArch64 kuhlelwa. Kuzinhlelo zezivakashi, kusekelwa kuphela ukwakhiwa kwe-Linux okungamabhithi angu-64. I-CPU, inkumbulo, i-PCI kanye ne-NVDIMM amisiwe esigabeni somhlangano. Kungenzeka ukuthutha imishini ebonakalayo phakathi kwamaseva.
Enguqulweni entsha:
- Okwezakhiwo ze-x86_64 ne-arch64, kufika kumasegimenti e-PCI angu-16 manje avunyelwe, okwandisa inani eliphelele lamadivayisi e-PCI avunyelwe ukusuka ku-31 kuya ku-496.
- Usekelo lokubopha ama-CPU abonakalayo kuma-CPU cores (CPU pinning) selusetshenzisiwe. Ku-vCPU ngayinye, manje sekungenzeka ukuchaza isethi elinganiselwe yama-CPU asokhaya lapho ukusetshenziswa kuvunyelwe khona, okungaba usizo lapho kwenziwa imephu ngokuqondile (1:1) izinsiza zokusingatha nesivakashi noma lapho usebenzisa umshini obonakalayo endaweni ethile ye-NUMA.
- Ukusekelwa okuthuthukisiwe kwe-I/O virtualization. Isifunda ngasinye se-VFIO manje singafakwa kumephu kumemori, okunciphisa inani lokuphuma komshini obonakalayo futhi kuthuthukise ukusebenza kokudlulisela idivayisi emshinini wokubuka.
- Ekhodini yokugqwala, kwenziwe umsebenzi wokubuyisela izigaba ezingaphephile ngokunye ukusetshenziswa okwenziwa ngemodi ephephile. Ezigabeni ezingaphephile ezisele, amazwana anemininingwane angeziwe achaza ukuthi kungani ikhodi engaphephile esele ingabhekwa njengephephile.
Source: opennet.ru