I-Kata Containers 3.0 ibandakanya inkxaso ye-GPU, i-Linux 5.19.2, i-QEMU 6.2.0 kunye nokunye

Darkcrizt

Imizuzu ye4

Izikhongozeli zeKata

Izikhongozeli zeKata zibonelela ngexesha lokuqhuba isikhongozeli esikhuselekileyo kunye noomatshini abakhaphukhaphu benyani

Emva kweminyaka emibini yophuhliso, I-Kata Containers 3.0 ikhutshwe iprojekthi, ephuhlisayo isitaki sokucwangcisa izikhongozeli ezibalekayo usebenzisa i-insulation ngokusekwe kwiindlela ezipheleleyo ze-virtualization.

Embindini weKata lixesha lokuqhuba, elibonelela ngokukwazi ukwenza oomatshini ababambeneyo abasebenzisa i-hypervisor epheleleyo, kunokusebenzisa izikhongozeli zemveli ezisebenzisa i-Linux kernel kwaye zibekwe zodwa zisebenzisa izithuba zamagama kunye namaqela.

Ukusetyenziswa koomatshini benyani kuvumela ukufikelela kwinqanaba eliphezulu lokhuseleko olukhusela ngokuchasene nokuhlaselwa okubangelwa kukuxhatshazwa kobuthathaka kwi-Linux kernel.

Malunga Izikhongozeli Kata

Izikhongozeli zeKata igxile ekudityanisweni kweziseko zophuhliso ezizimeleyo yezikhongozeli esele zikhona ezikwaziyo ukusebenzisa ezi matshini zikhoyo ukuphucula ukhuseleko lwezikhongozeli zemveli.

Le projekthi ibonelela ngeendlela zokwenza oomatshini benyani abakhaphukhaphu bahambelane nezakhelo ezahlukeneyo zokuzahlula izitya, iiplatifti ze-orchestration, kunye neenkcukacha ezifana ne-OCI, i-CRI, kunye ne-CNI. Ukudityaniswa kunye neDocker, Kubernetes, QEMU kunye ne-OpenStack ziyafumaneka.

Umdibaniso kunye neenkqubo zolawulo lwesikhongozeliOku kuphunyezwa ngokusebenzisa umaleko olinganisa ulawulo lwesikhongozeli, leyo, nge-interface ye-gRPC kunye ne-proxy ekhethekileyo, ifikelela kwi-arhente yolawulo kumatshini wenyani. Njenge-hypervisor, ukusetyenziswa kwe-Dragonball Sandbox kuyaxhaswa (i-container-optimized edition ye-KVM) ene-QEMU, kunye ne-Firecracker kunye ne-Cloud Hypervisor. Ubume benkqubo bubandakanya i-daemon yokuqalisa kunye ne-arhente.

I-arhente sebenzisa imifanekiso yesikhongozeli echazwe ngumsebenzisi kwifomati ye-OCI yeDocker kunye neCRI yeKubernetes. Ukunciphisa ukusetyenziswa kwememori, kusetyenziswa indlela ye-DAX kunye neteknoloji ye-KSM isetyenziselwa ukukhupha iindawo zememori ezifanayo, ukuvumela izibonelelo zenkqubo yokusingatha ukuba kwabelwane ngazo kunye neenkqubo ezahlukeneyo zeendwendwe ukudibanisa nenkqubo eqhelekileyo yethempleyithi yokusingqongileyo.

Izinto ezintsha eziphambili zeKata Containers 3.0

Kwinguqulelo entsha elinye ixesha lokusebenza liyacetywa (i-runtime-rs), eyenza ukhuko olusongayo, olubhalwe ngolwimi lweRust (ixesha lokusetyenziswa elinikiweyo ngasentla libhalwe ngolwimi lwesiGo). ixesha lokubaleka ixhasa i-OCI, i-CRI-O kunye ne-Containerd, eyenza ihambelane neDocker kunye neKubernetes.

Olunye utshintsho olubalaseleyo kolu guqulelo lutsha lwe-Kata Containers 3.0 kukuba ngoku unenkxaso ye-GPU. Oku iquka inkxaso ye-Virtual Function I/O (VFIO), eyenza isixhobo sePCIe esikhuselekileyo, esingenalo ilungelo kunye nabalawuli besithuba somsebenzisi.

Kuyacaciswa ukuba inkxaso ephunyeziweyo yokutshintsha izicwangciso ngaphandle kokutshintsha ifayile yoqwalaselo engundoqo ngokutshintsha iibhloko kwiifayile ezahlukeneyo ezibekwe kwi "config.d/" directory. Amalungu omhlwa asebenzisa ithala leencwadi elitsha ukusebenza ngeendlela zefayile ngokukhuselekileyo.

Kwakhona, Iprojekthi entsha ye-Kata Containers iye yavela. YiMigqomo eyiMfihlo, umthombo ovulekileyo we-Cloud-Native Computing Foundation (CNCF) yeprojekthi yebhokisi yesanti. Esi siphumo sesikhongozeli sodwa se-Kata Containers sidibanisa i-Entrusted Execution Environments (TEE) isiseko.

Ye- Olunye utshintsho ezibalaseleyo:

  • I-hypervisor entsha ye-dragonball esekwe kwi-KVM kunye ne-rust-vmm iye yacetywa.
  • Inkxaso eyongeziweyo yeqela le-v2.
  • inxalenye ye-virtiofsd (ebhalwe ku-C) endaweni yayo yi-virtiofsd-rs (ibhalwe kwiRust).
  • Inkxaso eyongeziweyo yokwahlulwa kwebhokisi yesanti kumacandelo e-QEMU.
  • I-QEMU isebenzisa i-io_uring API ye-asynchronous I/O.
  • Inkxaso ye-Intel TDX (i-Trusted Domain Extensions) ye-QEMU kunye ne-Cloud-hypervisor iphunyeziwe.
  • Amacandelo ahlaziyiweyo: QEMU 6.2.0, Cloud-hypervisor 26.0, Firecracker 1.1.0, Linux 5.19.2.

Gqibela yabo banomdla weprojekthi, kufuneka uyazi ukuba yenziwe yi-Intel kunye ne-Hyper edibanisa iMigqomo ecacileyo kunye ne-runV technologies.

Ikhowudi yeprojekthi ibhalwe kwi-Go and Rust kwaye ikhutshwe phantsi kwelayisensi ye-Apache 2.0. Ukuphuhliswa kweprojekthi kulawulwa liqela elisebenzayo elenziwe phantsi kwentlangano ezimeleyo ye-OpenStack Foundation.

Unokufumana okungakumbi malunga nayo ukulandela ikhonkco.


Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Uxanduva lwedatha: UMiguel Ángel Gatón
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.