ASL 2.2 Virtualization Notes

From Atomicorp Wiki
Revision as of 13:16, 2 June 2011 by Mshinn (Talk | contribs)

Jump to: navigation, search

Contents

Supported Virtualization Technologies

ASL 2.2 will work with the following Virtualization technologies:

 vserver
 kvm/qemu
 lguest
 VMWare(TM)
 Xen
 Virtuozzo
 OpenVZ


This means that you can run ASL on a virtualized machine using these technologies. Not all of the features of ASL will work with every technology. The following article defines the levels as follows:

  • Full Support: All ASL features will work
  • Built in Virtualization: All ASL features will work, plus ASL can act as a virtualization host.
  • Works With: All ASL features will work, except for features in the ASL kernel. These technologies either do not allow the replacement of the kernel (VPS) or do not work with the ASL kernel (Xen). You can not install or use the ASL kernel with these technologies.

Full Support

ASL has full support for the following virtualization technologies:

 vserver
 kvm/qemu
 lguest
 VMWare(TM)
 Xen

You can install ASL and the ASL kernel inside virtualized guests using these technologies.

Built in Virtualization

 vserver
 kvm/qemu
 lguest

You can install ASL and the ASL kernel inside virtualized guests using these technologies.

You can also use ASL to create virtual machines using these technologies. This means you can use ASL for your virtualization needs.

Works With

ASL will also work with the following virtualization technologies, however you can not install the ASL kernel (these technologies do not allow the installation of any kernel inside a VPS, these technologies do not have kernels inside the VPS itself.:

 Virtuozzo
 OpenVZ

On these systems you should expect ASL to report various vulnerabilities in the kernel. VPS users share one kernel, the hosts kernel. If the host has not installed ASL on the host system you will see vulnerabilities in the kernel. These are not false positives but are in fact vulnerabilities in those kernels. When using a virtualized machine with these technologies various other behaviours will occur, and they are covered in the article ASL#ASL_inside_a_VPS.

We recommend you encourage your hosting provider to install ASL on the host system too.

Development Path

  • OpenVz/Virtuozzo: We are currently exploring the addition of OpenVZ natively to the ASL kernel. This will allow all OpenVZ containers to be protected by the single ASL host kernel.
  • Xen Server: We are currently exploring support for native Xen support in the ASL kernel, where the ASL kernel will act as the Xen server.
  • Xen Client: The ASL kernel works inside Xen.
Personal tools