Introduction Hypervisor Xen 4.15

After eight months of development Published release free hypervisor xen 4.15 . The development of a new issue was attended by companies such as Amazon, Arm, BitDefender, Citrix and Epam Systems. Release of updates for Xen 4.15 will last until October 8, 2022, and the publication of corrections of vulnerabilities before April 8 2024.

Key Changes in Xen 4.15:

  • For the ARM platform, the experimental features of the device models on the DOM0 host system are implemented, which allows emulate arbitrary hardware devices for guest systems based on Arm architecture. For ARM also supported support for SMMUV3 (System Memory Management Unit), allowing to improve safety and reliability of devices on arm systems.
  • Added the ability to use IPT hardware tracing mechanism (Intel Processor Trace), starting with CPU Intel Broadwell, to export data from guest systems to debug utilities running on the side of the host system. For example, you can use VMI Kernel Fuzzer or DRAKVUF SANDBOX .
  • Added support for Viridian (Hyper-V) environment to run guest systems using more than 64 VCPUs.
  • In the process of XenStored and Oxenstored, experimental support for Live updates, allowing to deliver and apply vulnerabilities without restarting host environment.
  • Upgraded layer PV Shim used to run unmodified ferrictualized guest systems (PV) in PVH and HVM environments, allowing you to provide The work of oldest guest systems in more secure environments providing stricter insulation. The new version has improved support for the launch of PV guest systems in environments that support only HVM mode. The layer size is reduced, thanks to the reduction of the HVM code specific.
  • Added support for unified boot images, which make it possible to create system images, including XEN components. Similar images are decorated in the form of a single binary file for EFI, which can be used to load the operating Xen system directly from the EFI boot manager without intermediate bootloaders, such as GRUB. The image includes such XEN components as hypervisor, kernel for host environment (DOM0), Initrd, Xen Kconfig, XSM and Device Tree settings.
/Media reports.