- 1 Virtualization
- 1.1 Improved VNC Authentication for Virtual Machine Management
- 1.2 Improved Graphical Console for Virtual Machines
- 1.3 KVM PCI Device Assignment
- 1.4 SVirt Mandatory Access Control
- 1.5 Other Improvements
- 1.6 Xen Kernel Support
Virtualization in Fedora 11 includes major changes, and new features, that continue to support KVM, Xen, and many other virtual machine platforms.
Improved VNC Authentication for Virtual Machine Management
Fedora 11 introduces the ability to use the
VNC connection to
QEMU virtual machines.
SASL is a pluggable
system, allowing many different authentication mechanisms to be configured
without changing the application code. The use of
combination with existing
TLS encryption support, will allow clients like
to securely connect to remote virtual machine consoles hosted on Fedora
servers. In environments where Kerberos is deployed, this further allows for
secure single sign on to the
VNC server. This new authentication
capability obsoletes the traditional
VNC password scheme which
is not sufficiently secure.
For further details refer to the Virtualization VNC Authentication wiki page
Improved Graphical Console for Virtual Machines
Previous Fedora virtual guest consoles were limited to a screen
resolution of 800x600, and the
PS2 mouse pointer operated in
relative coordinate mode. This prevented the guest pointer from tracking
the local client pointer one for one.
Fedora 11 provides more accurate mouse pointer positioning and higher
screen resolutions for virtual machine consoles.
Fedora 11 guests default to a screen resolution of at least 1024x768,
and are provided with a
USB tablet in absolute coordinate
mode. This results in a mouse pointer which tracks the local client pointer one
For further details refer to the Improved Graphical Console for Virtual Guests wiki page
KVM PCI Device Assignment
Fedora 11 expands its virtualization capabilities to include
KVM PCI device assignment support.
KVM users can now give virtual machines exclusive access to physical PCI devices using Fedora's virtualization toools, including the Virtual Machine Manager application.
For further details refer to the KVM PCI Device Assignment wiki page.
SVirt Mandatory Access Control
Fedora 11 integrates SELinux's Mandatory Access Control with Virtualization. Virtual machines can now be much more effectively isolated from the host and one another, giving the increased assurance that security flaws cannot be exploited by malicious guests.
For further details refer to the SVirt Mandatory Access Control wiki page.
Fedora also includes the following virtualization improvements:
libvirt Updated to 0.6.1
libvirt package provides an API and tools to interact with the virtualization capabilities of recent versions of Linux (and other OSes). The
libvirt software is designed to be a common denominator among all virtualization technologies with support for the following:
- The Xen hypervisor on Linux and Solaris hosts.
- The QEMU emulator
- The KVM Linux hypervisor
- The LXC Linux container system
- The OpenVZ Linux container system
- Storage on IDE/SCSI/USB disks, FibreChannel, LVM, iSCSI, and NFS
New features and improvements since 0.4.6:
- new APIs for Node device detach reattach and reset
- sVirt mandatory access control support
- thread safety of the API and event handling
- allow QEmu domains to survive daemon restart
- extended logging capabilities
- support copy-on-write storage volumes
- support of storage cache control options for QEmu/KVM
- driver infrastructure and locking
- Test driver infrastructure
- parallelism in the daemon and associated config
- virsh help cleanups
- logrotate daemon logs
- more regression tests
- QEmu SDL graphics
- add --version flag to daemon
- memory consumption cleanup
- QEmu pid file and XML states for daemon restart
- gnulib updates
- PCI passthrough for KVM
- generic internal thread API
- RHEL-5 specific Xen configure option and code
- save domain state as string in status file
- add locking to all API entry points
- new ref counting APIs
- IP address for Xen bridges
- driver format for disk file types
- improve QEmu/KVM tun/tap performances
- enable floppies for Xen fully virt
- support VNC password settings for QEmu/KVM
- qemu driver version reporting
There were also dozens of cleanups, documentation enhancements, portability and bug fixes. For further details refer to: http://www.libvirt.org/news.html
virt-manager Updated to 0.6.1
virt-manager package provides a GUI implementation of
New features and improvements since 0.6.0:
- VM disk and network stats reporting (Guido Gunther)
- VM Migration support (Shigeki Sakamoto)
- Support for adding sound devices to an existing VM
- Enumerate host devices attached to an existing VM
- Allow specifying a device model when adding a network device to an existing VM
- Combine the serial console view with the VM Details window
- Allow connection to multiple VM serial consoles
- Bug fixes and many minor improvements.
For further details refer to:
virtinst Updated to 0.400.2
python-virtinst package contains tools for installing and manipulating multiple VM guest image formats.
New features and improvements since 0.400.0:
--original-xml, allows cloning a guest from an xml file, rather than require an existing, defined guest.
--import, allows creating a guest from an existing disk image, bypassing any OS install phase.
--host-device, for connecting a physical host device to the guest.
- Allow specifying 'cache' value via
--diskoptions (Ben Kochie)
vmxformat support to
- Add disk checksum support to
- Enhanced URL install support: Debian Xen paravirt, Ubuntu kernel and boot.iso, Mandriva kernel, and Solaris Xen Paravirt (Guido Gunther, John Levon, Cole Robinson)
- Expanded test suite
- Numerous bug fixes, cleanups, and improvements
For further details refer to:
Xen Updated to 3.3.1
Fedora 11 supports booting as a domU guest, but will not function as a dom0 host until such support is provided in the upstream kernel. Support for a
pv_ops dom0 is targeted for Xen 3.4.
Changes since 3.3.0:
- Xen 3.3.1 is a maintenance release in the 3.3 series.
For further details refer to:
- http://www.xen.org/download/roadmap.html -- Xen roadmap
- http://xenbits.xen.org/paravirt_ops/patches.hg/ -- paravirt_ops patch queue
Xen Kernel Support
kernel package in Fedora 11 supports booting as a guest domU, but will not function as a dom0 until such support is provided upstream. The most recent Fedora release with dom0 support is Fedora 8.
Booting a Xen domU guest within a Fedora 11 host requires the KVM based
xenner. Xenner runs the guest kernel and a small Xen emulator together as a KVM guest.
For more information refer to: