Tus tshiab version ntawm Bottlerocket 1.2.0, distro rau AWS ntim, twb tau tso tawm lawm

Lub community launch txog cov tshiab version ntawm Lub raj mis 1.2.0, uas yog Linux kev faib khoom uas tau tsim nrog kev koom tes ntawm Amazon kom khiav cov thawv cais tau zoo thiab nyab xeeb. Qhov hloov tshiab no yog tus yam ntxwv los ntawm kev ua kom ntau dua uKev hloov kho tshiab ntawm pob khoom, txawm hais tias nws tseem los nrog qee qhov kev hloov pauv tshiab.

Cov chaw xa khoom Nws yog tus yam ntxwv los ntawm kev muab cov duab system tsis tuaj yeem pom tau txais tshiab thiab atomically hloov kho uas suav nrog Linux ntsiav thiab qhov system ib puag ncig tsawg tshaj plaws uas suav nrog tsuas yog cov khoom tsim nyog los khiav ntim.

Txog Bottlerocket

Ib puag ncig ua rau siv tus thawj tswj hwm systemd, Glibc library, Buildroot, bootloader GRUB, tus phem network teeb tsa, lub sijhawm thawv rau kev cais cov thawv, lub platform Kubernetes, AWS-iam-authenticator, thiab tus neeg sawv cev Amazon ECS.

Cov cuab yeej tsim khoom ntim tau xa mus rau hauv lub thawv tswj hwm cais uas tau qhib los ntawm lub neej ntawd thiab tswj hwm los ntawm AWS SSM tus sawv cev thiab API. Lub hauv paus duab tsis muaj lub plhaub hais kom ua, SSH server, thiab txhais lus (Piv txwv, tsis muaj Python lossis Perl) - Cov cuab yeej tswj hwm thiab cov cuab yeej debugging tau hloov mus rau lwm lub thawv muab kev pabcuam, uas tau xiam vim tsis ua haujlwm.

Qhov txawv qhov tseem ceeb nrog kev hwm rau kev faib khoom zoo sib xws xws li Fedora CoreOS, CentOS / Red Hat Atomic Host yog thawj qhov tseem ceeb hauv kev muab kev nyab xeeb tshaj plaws nyob rau hauv cov ntsiab lus ntawm kev ua kom lub zog tiv thaiv cov kev hem thawj, uas ua rau nws nyuaj rau siv qhov tsis txaus ntseeg hauv cov txheej txheem ua haujlwm thiab ua kom lub thawv cais tawm.

Cov ntim tau tsim los siv cov txheej txheem Linux kernel cov txheej txheem: cgroups, namespaces, thiab seccomp. Rau kev cais cais ntxiv, kev faib khoom siv SELinux hauv "daim ntawv thov" hom.

Muab faib hauv paus tau teeb tsa nyeem nkaus xwb thiab kev teeb tsa muab faib / etc tau teeb tsa ntawm tmpfs thiab rov qab los rau nws lub xeev qub tom qab rov pib dua. Hloov kho ncaj qha ntawm cov ntaub ntawv hauv /lwm cov npe, xws li /etc/resolv.conf thiab /etc/containerd/config.toml, kom txuag chaw tas mus li, siv API, lossis txav kev ua haujlwm cais cov ntim, tsis txaus siab. Txog kev txheeb xyuas qhov tseeb ntawm qhov ncaj ncees ntawm ntu hauv paus, dm-verity module tau siv thiab yog tias kev sim hloov kho cov ntaub ntawv raug kuaj pom ntawm qib thaiv cov cuab yeej, lub kaw lus tau rov pib dua.

Feem ntau ntawm cov kab ke ua ke tau muab sau ua lus Rust, uas muab txoj hauv kev nyab xeeb ua haujlwm nrog nco, tso cai rau koj kom tsis txhob muaj kev phom sij tshwm sim los ntawm kev nkag mus rau thaj chaw nco tom qab nws raug tso tawm, dereferencing null pointers, thiab dhau qhov txwv txwv.

Lub ntsiab tshiab tshiab ntawm Bottlerocket 1.2.0

Hauv qhov tshiab ntawm Bottlerocket 1.2.0 ntau qhov hloov tshiab tau tshaj tawm ntawm cov pob khoom uas hloov kho tshiab ntawm Rust versions thiab dependencies, host-ctr, qhov hloov kho tshiab ntawm lub thawv tswj hwm lub neej ntawd thiab ntau yam pob khoom thib peb.

Ntawm ib feem ntawm qhov tshiab, nws sawv ntawm Bottlerocket 1.2.0 yog qhov ntawd ntxiv kev txhawb nqa rau lub thawv duab txiav iav, nrog rau kev muaj peev xwm siv tau daim ntawv pov thawj tus kheej (CA) thiab qhov ntsuas kom muaj peev xwm teeb tsa tus tswv tsev npe.

TopologyManagerPolicy thiab topologyManagerScope teeb tsa rau kubelet kuj tau ntxiv, ntxiv rau kev txhawb nqa rau kernel compression siv zstd algorithm.

Ntawm qhov tod tes muab lub peev xwm rau khau raj qhov system rau hauv cov tshuab virtual VMware hauv OVA (Qhib Virtualization Format) hom ntawv.

Ntawm lwm yam hloov uas sawv tawm los ntawm qhov tshiab version:

  • Hloov kho tshiab ntawm aws-k8s-1.21 kev faib khoom nrog txhawb rau Kubernetes 1.21.
  • Tshem tawm kev txhawb nqa rau aws-k8s-1.16.
  • Kev siv cov tsiaj qus los thov rp_filter rau kev cuam tshuam yog zam
  • Kev tsiv teb tsaws tau raug hloov los ntawm v1.1.5 rau v1.2.0

Thaum kawg yog koj txaus siab xav paub ntxiv txog nws ntawm cov ntawv tshiab no, koj tuaj yeem tshawb xyuas cov ntsiab lus hauv qab no txuas. Ntxiv rau qhov ntawd koj tseem tuaj yeem sab laj cov ntaub ntawv rau koj teeb tsa thiab tuav ntawm no.


Cov ntsiab lus ntawm tsab xov xwm ua raws li peb cov ntsiab cai ntawm kev tswj hwm kev ncaj nceesCov. Tshaj tawm ib qho yuam kev nyem no.

Yog thawj tus tuaj tawm tswv yim

Tso koj saib

Koj email chaw nyob yuav tsis tsum luam tawm. Yuav tsum tau teb cov cim nrog *

*

*

  1. Lub luag haujlwm rau cov ntaub ntawv: Miguel Ángel Gatón
  2. Lub hom phiaj ntawm cov ntaub ntawv: Tswj SPAM, kev tswj xyuas tawm tswv yim.
  3. Sau raws cai: Koj kev tso cai
  4. Kev sib txuas lus ntawm cov ntaub ntawv: Cov ntaub ntawv yuav tsis raug xa mus rau lwm tus neeg thib peb tsuas yog los ntawm kev txiav txim siab raug cai.
  5. Cov ntaub ntawv khaws cia: Cov Ntaub Ntawv khaws tseg los ntawm Occentus Networks (EU)
  6. Txoj Cai: Txhua lub sijhawm koj tuaj yeem txwv, rov qab thiab tshem tawm koj cov ntaub ntawv.