I-QEMU 6.0 ifika nezithuthukisi nokusekelwa kwe-ARM, izinketho zokuhlola nokuningi

Darkcrizt

Imizuzu ye-4

QEMU

Ukwethulwa kwe- inguqulo entsha yephrojekthi I-QEMU 6.0 lapho kwenziwa khona izinguquko ezingaphezu kwezingu-3300 ezisuka konjiniyela abangama-268 bezilungiselela futhi izinguquko zazo zifaka phakathi ukuthuthukiswa komshayeli, ukwesekwa kwamapulatifomu amasha kanye nezinketho zokuhlola.

Kulabo abangajwayele i-QEMU, kufanele wazi ukuthi yi-software ekuvumela ukuthi usebenzise uhlelo oluhlanganisiwe lweplatifomu yehardware kusistimu enokwakhiwa okuhluke ngokuphelele, ngokwesibonelo, ukusebenzisa uhlelo lwe-ARM kwi-PC ehambelana ne-x86.

Kumodi ye-virtualization ku-QEMU, ukusebenza kwekhodi ekusetshenzisweni kwe-sandbox kuseduze nohlelo lwehardware ngenxa yokwenziwa okuqondile kwemiyalo ku-CPU nokusetshenziswa kwe-Xen hypervisor noma imodyuli ye-KVM.

Izindaba eziyinhloko ze-QEMU 6.0

Kule nguqulo entsha yeQemu 6.0 I-emulator yokushayela ye-NVMe manje ihambisana nokucaciswa kwe-NVMe 1.4 futhi kufaka phakathi ukusekelwa kokuhlola kwezikhala zamagama eziklanyelwe, i-multipath I / O, nokubethela kokugcina kokuphela.

I-emulator ye-ARM ingeza ukusekelwa kobuciko be-ARMv8.1-M 'Helium' neprosesa yeCortex-M55, kanye ne-ARMv8.4 TTST, SEL2, kanye nemiyalo enwetshiwe ye-DIT. Ukungezwa kwamabhodi we-ARM mps3-an524 kanye ne-mps3-an547 nakho kwengeziwe. Ukulingiswa kwedivayisi okungeziwe kuyasetshenziswa kuma-xlnx-zynqmp, xlnx-versal, sbsa-ref, npcm7xx, namabhodi we-sabrelite.

Okwe-ARM kumvelo yomsebenzisi nezindlela zokulingisa ezingeni lesistimu, Ukusekelwa kwe-ARMv8.5 MTE kuyasetshenziswa (IMemTag, i-Memory Tagging Extension), ekuvumela ukuthi ubophele amathegi ekusebenzeni ngakunye kwemephu yememori futhi uhlele isheke lesikhombi lapho ufinyelela imemori, okumele ihlotshaniswe nomaki ofanele. Isandiso singasetshenziswa ukuvimba ukuxhashazwa kobungozi obubangelwa ukufinyelela kumabhulokhi enkumbulo asekhululiwe, ukugcwala kwebuffer, izingcingo zokuqala, nokusebenzisa ngaphandle komongo wamanje.

I-emulator engu-68k ingeza ukusekelwa kohlobo olusha lomshini olingisiwe we- "virt" usebenzisa amadivayisi we-virtio ukwandisa ukusebenza, ngenkathi i-emulator yokwakhiwa kwe-x86 ingeza amandla wokusebenzisa ubuchwepheshe be-AMD SEV-ES (ukuphepha kokubethela okuphephile) ukubethela amarejista weprosesa asetshenziswe ohlelweni lwezivakashi, okwenza okuqukethwe kwamarejista kungafinyeleleki endaweni yokubungaza uma uhlelo lwezivakashi lungavumeli ngokucacile ukufinyelela kuzo.

Futhi kuQemu 6.0 izinketho zokuhlola zengeziwe "-Machine x-remote" ne- "-device x-pci-proxy-dev" ukuhambisa ukulingisa kwedivayisi kuzinqubo zangaphandle. Kule modi, kusekelwa i-lsi53c895 SCSI adaptha kuphela.

Kanye ne imodyuli entsha ye-FUSE yokuthumela amadivayisi we-block, ikuvumela ukukhweza ingxenye yesimo sanoma iyiphi idivayisi ye-block esetshenziswe kusihambeli. Ukuthekelisa kwenziwa kusetshenziswa i-block-export-add-command ye-QMP noma kusetshenziswa inketho "- Export" ku-qemu-storage-daemon utility.

Ngakolunye uhlangothi, kushiwo ukuthi ama-Virtualofs abhekana nobuthakathaka:

  • I-CVE-2020-35517 - Ivumela ukufinyelela endaweni yokusingathwa kusuka kusistimu yezivakashi ngokwakha ifayela ledivayisi elikhethekile kusistimu yezivakashi ngumsebenzisi onelungelo enkombeni eyabiwe nemvelo yokusingathwa.
  • I-CVE-2021-20263 - Ibangelwa yisiphazamisi ekuphatheni izimfanelo ezinwetshiwe kunketho ye-'xattrmap ', futhi ingadala izimvume zokubhala nokukhuphuka kwelungelo ngaphakathi kwesihambeli kunganakwa.

Kwezinye izinguquko ezigqamile kule nguqulo entsha:

  • Kungezwe ukusekelwa kokuhlola kokudala izifinyezo zokuqukethwe kwe-RAM.
  • Kungezwe ukusekelwa kokulingisa ama-processor weQualcomm Hexagon nge-DSP.
  • I-classic code generator i-TCG (Tiny Code Generator) iyahambisana nezindawo zokubamba ze-MacOS kumasistimu ane-chip entsha ye-Apple M1 ARM.
  • I-emulator ye-RISC-V yamabhodi we-Microchip PolarFire asekela i-QSPI NOR flash.
  • I-Tricore emulator manje isekela imodeli entsha yamabhodi we-TriBoard alingisa i-Infineon TC27x SoC.
  • I-emulator ye-ACPI inika amandla okuqamba ama-adaptha enethiwekhi kumasistimu ezivakashi, ngaphandle kokuhleleka kokuxhunywa kwebhasi le-PCI.
  • IVirtiofs ingeza ukusekelwa kwenketho ye-FUSE_KILLPRIV_V2 yokuthuthukisa ukusebenza kwezivakashi.
  • I-VNC ingeza ukusekelwa kokubonakala kwesikhombisi nokusekelwa kokukalwa kokulungiswa kwesikrini ku-virtio-vga ngokuya ngosayizi wewindi.
  • I-QMP (QEMU Machine Protocol) ingeza ukusekelwa kokufinyelela okufana nokufana lapho wenza imisebenzi yokusekelayo.
  • I-emulator ye-USB ingeze amandla okusindisa ithrafikhi ekhiqizwe lapho isebenza namadivayisi e-USB kufayela elihlukile le-pcap ukuze lihlolwe kamuva eWireshark.
  • Isifinyezo esisha sokulayishwa kwe-QMP, isifinyezo kanye nokususa isifinyezo kungeziwe ukuphatha izifinyezo ze-qcow2.

Ekugcineni, uma ufuna ukwazi kabanzi ngayo, ungabheka imininingwane Kulesi sixhumanisi esilandelayo.


Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.