1、Towards Secure Container Infrastructure on RISC-V:The Development from RustVMM to Kata-Containers,中国科学院软件研究所虚拟化工程师Kata-Containers MaintainerCloud-Hypervisor Maintainer Rust-VMM Infra Maintainer,2025/11/15,何若轻,CONTENT,目录,01,Roadmap,Roadmap Stage One,A bottom up,usable,maintainable and dependable soft
2、ware stack on RISC-V platforms.Orchestrated by KubernetesSecured by Kata-ContainersSpeedup by Cloud-HypervisorPowered by RustVMMOn openEuler RISC-V,Roadmap Stage Two,A fully supported,reliable and prosperous virtualization software ecosystem of RISC-V.Enabling RISC-V to compete with x86 and ARM in b
3、oth Virtualization&Cloud Native software ecosystem.,CONTENT,目录,02,Work Progress,Work Progress-RustVMM,We initiated this work in Apr 2024 while we were trying to support StratoVirt to work on RISC-V 64-bit architecture.We found that kvm-bindings and kvm-ioctls,the two crates from RustVMM community ne
4、ed to be supported before works in StratoVirt could be pushed forward.,Work Progress-RustVMM,As aforementioned that the actual hardware is not yet made available for us,how the CI should be designed to look after RISC-V code becomes a problem.,Work Progress Cloud-Hypervisor,This is a dependency grap
5、h of Cloud-Hypervisor,which shows the inter-connection of crates of Cloud-Hypervisor and RustVMM.,Stage 1 RISC-V Support Cloud-Hypervisor,CI Status Cloud-Hypervisor,Here again,CI for H extension based software like Cloud-Hypervisor need special design and handling.We adopted similar approach used in
6、 RustVMM community.,Stage 2 RISC-V Support Cloud-Hypervisor,Cloud-Hypervisor v45 and onwards now supports direct boot of RISC-V Linux,but there are still many feature gaps.,Work Progress Kata-Containers,We have now worked out a full Rust-ba