Difference between revisions of "ASL 3.0 Virtualization Notes"
m (→Built in Virtualization) |
m |
||
(11 intermediate revisions by 2 users not shown) | |||
Line 1: | Line 1: | ||
− | + | = Supported Virtualization Technologies = | |
+ | |||
+ | ASL 3.0 is no longer supported, please use ASL 3.2 and see the ASL 3.2 Virtualization Notes: | ||
+ | |||
+ | https://www.atomicorp.com/wiki/index.php/ASL_3.2_Virtualization_Notes | ||
ASL 3.0 is designed to work with the following Virtualization technologies: | ASL 3.0 is designed to work with the following Virtualization technologies: | ||
Line 16: | Line 20: | ||
* '''Built in Virtualization''': All ASL features will work, plus ASL can act as a virtualization host. | * '''Built in Virtualization''': All ASL features will work, plus ASL can act as a virtualization host. | ||
* '''Supported and works with''': All ASL features will work, except for features in the ASL kernel. These technologies either do not allow the replacement of the kernel (VPS) or do not work with the ASL kernel (Xen). You can not install or use the ASL kernel with these technologies. | * '''Supported and works with''': All ASL features will work, except for features in the ASL kernel. These technologies either do not allow the replacement of the kernel (VPS) or do not work with the ASL kernel (Xen). You can not install or use the ASL kernel with these technologies. | ||
+ | * '''Beta Support''': All ASL features should work, however this should be consider a beta. These features are in testing, and following testing will be rolled into the supported builds. | ||
== Full Support == | == Full Support == | ||
Line 27: | Line 32: | ||
[http://lguest.ozlabs.org/ lguest] | [http://lguest.ozlabs.org/ lguest] | ||
[http://www.vmware.com VMWare(TM)] | [http://www.vmware.com VMWare(TM)] | ||
+ | |||
+ | You can install ASL and the ASL kernel '''inside''' virtualized guests using these technologies, and all the features will work. | ||
+ | |||
+ | == Kernel not supported == | ||
+ | |||
+ | All Features work. Kernel is not supported with this platform. | ||
+ | |||
[http://www.xen.org/ Xen] | [http://www.xen.org/ Xen] | ||
− | + | The latest ASL kernels, 2.6.32.60-35 and up, contain new protections against attacks on the kernel itself. Xen does not support these enhancements. Therefore, you can not use the latest ASL kernels with Xen. | |
+ | |||
+ | You can use an older kernel with Xen. 2.6.32.59-28 and older do not contain these new kernel protections, and should work with Xen. | ||
== Built in Virtualization == | == Built in Virtualization == | ||
Line 43: | Line 57: | ||
You can install ASL and the ASL kernel inside virtualized guests using these technologies. | You can install ASL and the ASL kernel inside virtualized guests using these technologies. | ||
− | == | + | == Kernel-less environments == |
All ASL features work, however '''these technologies do not allow the installation of a kernel as a guest.''' | All ASL features work, however '''these technologies do not allow the installation of a kernel as a guest.''' | ||
Line 56: | Line 70: | ||
We recommend you encourage your hosting provider to install ASL on the host system too. | We recommend you encourage your hosting provider to install ASL on the host system too. | ||
− | = | + | = In Development = |
− | + | ||
− | + | ||
− | * Xen Server: We are currently exploring support for native Xen support in the ASL kernel, where the ASL kernel will act as the Xen server. | + | * Xen Server: We are currently exploring support for native Xen support in the ASL kernel, where the ASL kernel will act as the Xen server. ASL is supported as a guest inside a Xen master server. |
Latest revision as of 15:31, 24 May 2013
Contents |
[edit] Supported Virtualization Technologies
ASL 3.0 is no longer supported, please use ASL 3.2 and see the ASL 3.2 Virtualization Notes:
https://www.atomicorp.com/wiki/index.php/ASL_3.2_Virtualization_Notes
ASL 3.0 is designed to work with the following Virtualization technologies:
vserver kvm/qemu lguest VMWare(TM) Xen Virtuozzo OpenVZ
This means that you can run ASL on a virtualized machines using these technologies. The following article defines the levels of feature support as follows:
- Full Support: All ASL features will work
- Built in Virtualization: All ASL features will work, plus ASL can act as a virtualization host.
- Supported and works with: All ASL features will work, except for features in the ASL kernel. These technologies either do not allow the replacement of the kernel (VPS) or do not work with the ASL kernel (Xen). You can not install or use the ASL kernel with these technologies.
- Beta Support: All ASL features should work, however this should be consider a beta. These features are in testing, and following testing will be rolled into the supported builds.
[edit] Full Support
All Features work.
ASL has full support for the following virtualization technologies:
vserver kvm/qemu lguest VMWare(TM)
You can install ASL and the ASL kernel inside virtualized guests using these technologies, and all the features will work.
[edit] Kernel not supported
All Features work. Kernel is not supported with this platform.
Xen
The latest ASL kernels, 2.6.32.60-35 and up, contain new protections against attacks on the kernel itself. Xen does not support these enhancements. Therefore, you can not use the latest ASL kernels with Xen.
You can use an older kernel with Xen. 2.6.32.59-28 and older do not contain these new kernel protections, and should work with Xen.
[edit] Built in Virtualization
All ASL Features work. You can also use ASL to create virtual machines using these technologies.
vserver kvm/qemu lguest
This means you can use ASL for your virtualization needs if you use the above virtualization technologies for your virtual machines.
You can install ASL and the ASL kernel inside virtualized guests using these technologies.
[edit] Kernel-less environments
All ASL features work, however these technologies do not allow the installation of a kernel as a guest.
Therefore, you can not install the ASL kernel inside one of these virtual servers, as these technologies do not allow the installation of any kernel inside a VPS. Specifically, these technologies do not have kernels inside the VPS itself and instead, virtual machines/servers share one kernel provided by the host:
Virtuozzo OpenVZ
On these systems you should expect ASL to report various vulnerabilities in the kernel. VPS users share one kernel, the hosts kernel. If the host has not installed ASL on the host system you will see vulnerabilities in the kernel. These are not false positives but are in fact vulnerabilities in those kernels. When using a virtualized machine with these technologies various other behaviours will occur, and they are covered in the article ASL#ASL_inside_a_VPS.
We recommend you encourage your hosting provider to install ASL on the host system too.
[edit] In Development
- Xen Server: We are currently exploring support for native Xen support in the ASL kernel, where the ASL kernel will act as the Xen server. ASL is supported as a guest inside a Xen master server.