According to the official openEuler, openEuler 20.03 LTS SP2 was officially released on July 14. This version incorporates many features of the innovative version of the Euler operating system. These innovative features have been verified by users and enhanced. It can run in a production environment with stable operating performance and excellent performance.
Developers from China Unicom, China Telecom, and Huawei have ported OpenStack Queen and Rocky versions to the Euler operating system. So far, the Euler operating system currently supports the following OpenStack versions: Victoria, Queen, and Rocky three versions.
What’s New:
Memory grading extension etMem
- Supports unified management of multiple memories and storage media, and smooth expansion of system capacity. For services that are memory-sensitive and have obvious internal thermal access, memory costs are significantly reduced under the same performance.
- Hot and cold page identification: Through the kernel state memory page free and idle statistics mechanism, it can accurately identify the hot and cold distribution of process memory page access.
- The elimination strategy is configurable: It provides a configuration interface and can customize the memory page hot and cold grading strategy.
- Smooth expansion: Cold pages are automatically swapped out to expanded memory, and the software deployed on it runs compatible without changing and adapting the programming mode.
- Multi-media expansion support: Supports multiple media such as SCM, XL Flash, NVMe SSD, etc. as expansion memory, and specifies the memory hot and cold layering scheme according to the access speed of the media itself, so as to achieve the purpose of expanding memory and reducing performance loss.
Enhanced virtualization capabilities and maintainable measurement capabilities
- Increase the capability expansion of Hot Migration Pro to improve the maintainable and measurable capability.
- Hot Migration Pro features: Enhance hot migration multifid to support TLS to ensure data security during migration; support parallel compression of hot migration data to improve migration performance; increase statistics on data page access frequency to support the advance prediction of hot migration data.
- Performance debugging tool (vmtop): You can dynamically view the resource usage of the virtual machine in real-time, including CPU usage, memory usage and other information. Added extension to support x86_64 architecture.
- IO suspension support: IO will automatically retry by default when an error occurs, and a warning will be reported when it expires.
- The RISC-V architecture supports virtualized hot migration.
StratoVirt, a lightweight virtual runtime
- Increase elastic memory, large page function, system call filtering function, and enhance the IO subsystem to improve performance and stability.
- Flexible memory support: According to the memory requirements of the workload, memory allocation and recycling are realized. The virtio-balloon memory recycling speed can reach 3GB/sec.
- Large page support: Provides large page support under the lightweight framework, which can provide continuous physical memory pages for lightweight virtual machines and improve the efficiency of virtual machine memory access.
- System call filtering: Simplify the device model and increase system call filtering support. In the simplest configuration, only 35 system calls are needed, effectively reducing the system attack surface.
- IO subsystem enhancement Supports multi-channel concurrent IO capabilities to improve performance; supports IO-QOS capabilities to enhance the flexibility and stability of virtual machine IO traffic management.
Secret computing programming framework secGear
- secGear Unified Confidential Computing Programming Framework provides an easy-to-use development kit, including secure areas (using secGear programming will divide the system into secure areas and non-secure areas), life cycle management, secure development libraries, code-assisted generation tools, code construction and Signature tools, security capabilities, and security service component implementation schemes. It can be used in a variety of scenarios, such as trust loops, secret state databases, multi-party computing, and AI security protection.
- Service layer: Provide complete security services running on the security side
- Middleware layer: Provides a set of protocol interfaces to meet users’ basic security applications
- Basic layer: Provides a wealth of enclave development interfaces or tools, and supports C POSIX APIs and standard OpenSSL interfaces on the security side. Users can freely develop security applications based on these interfaces
OpenStack Queens/Rocky support
- OpenStack Queens/Rocky is a massively scalable, standardized and unified cloud management operating system. For more features, please refer to the official release notes of OpenStack Queens/Rocky. oepkg provides a software package download service.
- Integrated OpenStack Queens/Rocky version: Enable Infrastructure as a Service (IaaS) solution.
- Enhance block storage service capabilities: Add advanced functions such as capacity expansion, snapshots, and virtual machine image cloning.
- Enhance containerized deployment and network capabilities: Better integration with containers.
- Added extended service support: Support extended services such as control panel management, bare metal deployment, and cloud resource tracking.
