CN111290815B - Method and system for fusing multi-mode virtual desktop of shared user environment, container and virtual machine - Google Patents
Method and system for fusing multi-mode virtual desktop of shared user environment, container and virtual machine Download PDFInfo
- Publication number
- CN111290815B CN111290815B CN202010070146.9A CN202010070146A CN111290815B CN 111290815 B CN111290815 B CN 111290815B CN 202010070146 A CN202010070146 A CN 202010070146A CN 111290815 B CN111290815 B CN 111290815B
- Authority
- CN
- China
- Prior art keywords
- service
- virtual
- virtual desktop
- isolation
- container
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/451—Execution arrangements for user interfaces
- G06F9/452—Remote windowing, e.g. X-Window System, desktop virtualisation
Abstract
The invention discloses a method and a system for fusing a multi-mode virtual desktop of a shared user environment, a container and a virtual machine, wherein in the method, the implementation step of a server for establishing the virtual desktop according to the service of a user comprises the steps of determining the virtual desktop mode of the service of the user; and creating a virtual desktop corresponding to the service according to the virtual desktop mode, wherein the created virtual desktop comprises at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container. The method does not depend on a specific CPU instruction set, can better play the characteristics of the CPU performance of the autonomous platform, can effectively improve the bearing density of a single server under the condition of ensuring the isolation, can reduce the use cost of a user, and provides powerful support for the popularization of virtual desktop products, particularly for landing on the basis of the autonomous hardware platform.
Description
Technical Field
The invention relates to the field of virtual desktops, cloud desktops and cloud computing, in particular to a method and a system for fusing a multi-mode virtual desktop of a shared user environment, a container and a virtual machine.
Background
The virtual desktop has the advantages of high deployment efficiency, centralized management, safe storage, dynamic regulation, energy conservation, environmental protection and the like, is developed rapidly, and is widely applied to various industries. The virtual desktop is a remote desktop service provided based on a virtualization technology, and is an important service mode of cloud computing. The virtualization technology is a decoupling technology for separating bottom physical equipment from an upper operating system and software, and constructs a virtual layer through a virtual monitor (Hypervisor) and manages the virtual layer to map physical resources into logical virtual resources, so that the use of the logical resources is almost not different from the use of the physical resources. Based on the virtualization technology, the virtual desktop realizes the unification of the desktop and the sharing of resources, enables the user side to be separated from the host computer, and realizes the cross-platform desktop system access at any time and any place through the thin client or any other equipment connected with the network. The traditional virtual desktop system is realized based on a virtualization technology, and a virtual machine means that one computer is virtualized into a plurality of logical computers through the virtualization technology. A plurality of logic computers are simultaneously operated on one computer, each logic computer can operate different operating systems, and application programs can operate in mutually independent spaces without mutual influence. The pure software virtualization scheme has serious performance loss and poor usability. The widely used CPU-based virtualization technology is a hardware solution, and a CPU supporting the virtualization technology has a particularly optimized instruction set to control a virtualization process, and through these instruction sets, a VMM can easily improve performance, and compared with a software virtualization implementation, the performance can be improved to a great extent, but a certain performance loss still exists. As shown in fig. 1 below, each virtual machine has a completely independent software environment including a kernel and an out-of-kernel environment. The processing capacity and the virtualization maturity of the CPU on the autonomous hardware platform are different from X86, which results in poor single-server virtual machine load density of the autonomous hardware platform.
A container is an operating system level virtualization method, which mainly relies on the operating system kernel's namespace, control groups, and other security mechanisms to achieve isolation of different operating system instances. As shown in fig. 2, each container shares the operating system kernel without additionally introducing a virtualization layer, and each container has a completely independent off-core environment, so that the performance of the container is close to that of a bare machine. The container is widely used due to the advantages of fast start, less occupied resources, fast deployment and the like, but the isolation is weaker than that of the virtualization technology.
The shared user environment is an isolation mechanism for different processes and user rights realized by depending on an operating system kernel. As shown in fig. 3, different access users share the operating system kernel and the underlying libraries outside the kernel, each of which may use the same or different applications, respectively, with separate personal data spaces. Aiming at a desktop use scene, different desktop session spaces are provided for an access user based on a shared user environment and other mechanisms of an operating system, so that the experience that the access user exclusively uses the operating system can be realized, but the isolation is weaker than that of a container and virtualization.
The three modes of virtualization, container, and shared user environment are shown in table 1 for a stand-alone bearer density and isolation pair.
Table 1: the three modes carry density and isolation contrast.
| Virtualization | Container with a lid | Shared user environment | |
| Density of single machine | Weak (weak) | In | High strength |
| Isolation capability | High strength | In | Weak |
Currently, most virtual desktop manufacturers provide virtual desktop solutions based on virtualization technologies, a few manufacturers such as Huashi and Shenfei provide virtual desktop solutions for sharing user environments based on Windows Server multi-user environments, and Citrix provides multi-user virtual desktop solutions based on Windows Server and Linux. Virtualization and sharing user environments are at two extremes in bearing density and isolation. If the problems of management scheduling and the like need to be solved by fusing the virtualization, the container and the shared user environment, no virtual desktop solution for fusing the virtualization, the container and the shared user environment is provided by manufacturers. Therefore, the problem that the single machine bearing density and the isolation capability are difficult to be considered exists in the current shared user environment, container and virtual machine scene.
Disclosure of Invention
The technical problems to be solved by the invention are as follows: the invention provides a method and a system for fusing a multi-mode virtual desktop of a shared user environment, a container and a virtual machine, aiming at the problems in the prior art, by utilizing the characteristics that the container and the shared user environment do not depend on a specific CPU instruction set, the applicability on various platforms is stronger, and the CPU performance of an autonomous platform can be better exerted, and on the basis of meeting a certain isolation requirement, through fusing the virtual desktop of the virtual machine, the container and the shared user environment, the bearing density of a single server can be effectively improved under the condition of ensuring the isolation, the use cost of a user can be reduced, and powerful support is provided for the popularization of virtual desktop products, particularly for landing on the basis of a domestic autonomous hardware platform.
In order to solve the technical problems, the invention adopts the technical scheme that:
a method for fusing multi-mode virtual desktops sharing user environment, containers and virtual machines is provided, wherein the implementation steps of creating the virtual desktops by a server according to the user service comprise:
1) determining a virtual desktop mode of a user's service;
2) and creating a virtual desktop corresponding to the service according to the virtual desktop mode, wherein the created virtual desktop comprises at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container.
Optionally, the detailed steps of step 1) include:
1.1) analyzing the service scene type related to the service of the user, if the service scene type is a single service scene, skipping and executing the step 1.2), and if the service scene type is a multi-service scene coexisting, skipping and executing the step 1.3);
1.2) obtaining the isolation requirement of the user service, and if the isolation requirement is strong, judging that the virtual desktop mode of the user service is a virtual desktop of a virtual machine; if the isolation requirement is medium, judging that the virtual desktop mode of the service of the user is a container virtual desktop; if the isolation requirement is weak, judging that the virtual desktop mode of the user service is a shared user environment virtual desktop; skipping to execute the step 2);
1.3) obtaining the isolation requirement among the service scenes and the isolation requirement of the service in each service scene:
if the isolation requirement among the service scenes is strong, different virtual machines are adopted to carry out first-layer isolation aiming at different service scenes, and each service scene subjected to first-layer isolation by adopting different virtual machines is as follows: if the isolation requirement of the service in the service scene is strong, continuously adopting different virtual machines to carry out first-layer isolation on the service in the service scene, so that the virtual desktop modes of the service in the service scene are virtual desktop of the virtual machines; if the isolation requirement of the service in the service scene is middle, performing second-step isolation on the service in the service scene by adopting different containers in the virtual machine isolated in the first layer, so that the virtual desktop mode of the service in the service scene is a container virtual desktop in the virtual machine; if the isolation requirement of the service in the service scene is weak, performing second-step isolation on the service in the service scene by adopting different shared user environments in the virtual machine isolated in the first layer, so that the virtual desktop mode of the service in the service scene is the shared user environment virtual desktop in the virtual machine;
if the isolation requirement among the service scenes is medium, different containers are adopted for carrying out first-layer isolation aiming at different service scenes, and each service scene subjected to first-layer isolation by adopting different containers is as follows: if the isolation requirement of the service in the service scene is medium, continuing to adopt different containers to carry out first-layer isolation on the service in the service scene, so that the virtual desktop modes of the service in the service scene are all container virtual desktops in the virtual machine; if the isolation requirement of the service in the service scene is weak, performing second-layer isolation on the service in the service scene by adopting different shared user environments in a first-layer isolated container, so that the virtual desktop mode of the service in the service scene is the shared user environment virtual desktop in the container;
if the isolation requirement among the service scenes is weak, different shared user environments are adopted for carrying out first-layer isolation aiming at different service scenes, and different shared user environments are continuously adopted for carrying out first-layer isolation aiming at the services in each service scene, so that the virtual desktop modes of the services in each service scene are shared user environment virtual desktops.
Optionally, step 1) is preceded by a step of authenticating the identity of the user creating the virtual desktop, and if and only if the identity is authenticated, step 1) is skipped to; otherwise, end and exit.
Optionally, before step 1), a processing step of performing connection load balancing on all servers is further included, and the detailed steps include: the method comprises the steps of firstly detecting the number of virtual desktops of all servers currently bearing various virtual desktop modes, then selecting the server with the least number of virtual desktops as a target server for creating the virtual desktops according to the service of a user, wherein the step of creating the virtual desktops by the server according to the service of the user specifically means that the target server creates the virtual desktops according to the service of the user.
In addition, the present invention also provides a system for fusing multi-mode virtual desktops for sharing a user environment, a container, and a virtual machine, comprising a server with a virtual desktop hypervisor, the virtual desktop hypervisor comprising:
the mode analysis program unit is used for determining a virtual desktop mode of a service of a user;
and the virtual desktop creating program unit is used for creating a virtual desktop corresponding to the service according to the virtual desktop mode, and the created virtual desktop comprises at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container.
In addition, the present invention provides a system for fusing multimodal virtual desktops for a shared user environment, a container, and a virtual machine, comprising a server with a virtual desktop hypervisor, the server programmed or configured to perform the steps of the method for fusing multimodal virtual desktops for a shared user environment, a container, and a virtual machine.
In addition, the present invention also provides a system for fusing multi-mode virtual desktops for sharing a user environment, a container, and a virtual machine, comprising a server with a virtual desktop management program, the server including at least a microprocessor and a memory, and the memory having stored thereon a computer program programmed or configured to perform the method for fusing multi-mode virtual desktops for sharing a user environment, a container, and a virtual machine.
Furthermore, the present invention also provides a computer readable storage medium having stored thereon a computer program programmed or configured to perform the method of fusing multimodal virtual desktops for sharing user environments, containers, and virtual machines.
Compared with the prior art, the invention has the following advantages: the implementation steps of the server for creating the virtual desktop according to the service of the user comprise the steps of determining the virtual desktop mode of the service of the user; the virtual desktop corresponding to the service is created according to the virtual desktop mode, and the created virtual desktop comprises at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container, the invention utilizes the characteristics that the container and the shared user environment do not depend on a specific CPU instruction set, the applicability on various platforms is stronger, and the CPU performance of the autonomous platform can be better exerted, on the basis of meeting certain isolation requirements, the virtual desktop integrating the virtual machine, the container and the shared user environment can effectively improve the bearing density of a single server under the condition of ensuring isolation, can reduce the use cost of users, and provides powerful support for virtual desktop product popularization, particularly landing on the basis of a domestic autonomous hardware platform.
Drawings
Fig. 1 is a schematic diagram of a system architecture of a conventional virtual machine.
Fig. 2 is a schematic diagram of a system architecture of a conventional container.
FIG. 3 is a diagram of a system architecture of a conventional shared user environment.
FIG. 4 is a schematic diagram of a basic flow of a method according to an embodiment of the present invention.
FIG. 5 is a diagram illustrating a multi-mode virtual desktop assembly according to an embodiment of the invention.
FIG. 6 is a diagram illustrating how a multi-mode virtual desktop assembly is expanded according to an embodiment of the present invention.
FIG. 7 is a diagram illustrating a system architecture of a multi-mode virtual desktop system according to an embodiment of the present invention.
FIG. 8 is a block diagram of a multi-mode virtual desktop management system according to an embodiment of the present invention.
Detailed Description
As shown in fig. 4, in the method for fusing a multi-mode virtual desktop sharing a user environment, a container and a virtual machine according to this embodiment, the implementation step of creating a virtual desktop by a server according to a service of a user includes:
1) determining a virtual desktop mode of a user's service;
2) and creating a virtual desktop corresponding to the service according to the virtual desktop mode, wherein the created virtual desktop comprises at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container.
The virtual desktop created in this embodiment includes at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in a virtual machine, a shared user environment virtual desktop in a virtual machine, and a shared user environment virtual desktop in a container, so that a combination manner of three operation modes of a shared user environment, a container, and a virtual machine is as shown in fig. 5. Because the isolation achieved by the virtualization technology is strongest, each virtual machine completely has an own kernel and an extra-kernel environment, and therefore the inside of the virtual machine can also run a container and share a user environment. The container realizes the isolation of the out-of-core operating environment through a kernel mechanism, and the shared user environment depends on the isolation among processes, so the shared user environment can also operate in the container. The container and the shared user environment can also be directly operated on the host, and at the moment, because performance loss caused by virtualization does not exist, the container and the shared user environment scheme can achieve the performance close to that of a bare computer. In addition, the virtual desktop of the user environment in the container in the virtual machine may be further extended, as shown in fig. 6, in this case, the method may include, for the virtual desktop on one virtual machine: the virtual machine comprises four virtual desktops, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container in the virtual machine.
In this embodiment, the detailed steps of step 1) include:
1.1) analyzing the service scene type related to the service of the user, if the service scene type is a single service scene, skipping and executing the step 1.2), and if the service scene type is a multi-service scene coexisting, skipping and executing the step 1.3);
1.2) obtaining the isolation requirement of the user service, and if the isolation requirement is strong, judging that the virtual desktop mode of the user service is a virtual desktop of a virtual machine; if the isolation requirement is medium, judging that the virtual desktop mode of the service of the user is a container virtual desktop; if the isolation requirement is weak, judging that the virtual desktop mode of the user service is a shared user environment virtual desktop; skipping to execute the step 2);
1.3) obtaining the isolation requirement among the service scenes and the isolation requirement of the service in each service scene:
if the isolation requirement among the service scenes is strong, different virtual machines are adopted to carry out first-layer isolation aiming at different service scenes, and each service scene subjected to first-layer isolation by adopting different virtual machines is as follows: if the isolation requirement of the service in the service scene is strong, continuously adopting different virtual machines to carry out first-layer isolation on the service in the service scene, so that the virtual desktop modes of the service in the service scene are virtual desktop of the virtual machines; if the isolation requirement of the service in the service scene is middle, performing second-step isolation on the service in the service scene by adopting different containers in the virtual machine isolated in the first layer, so that the virtual desktop mode of the service in the service scene is a container virtual desktop in the virtual machine; if the isolation requirement of the service in the service scene is weak, performing second-step isolation on the service in the service scene by adopting different shared user environments in the virtual machine isolated in the first layer, so that the virtual desktop mode of the service in the service scene is the shared user environment virtual desktop in the virtual machine;
if the isolation requirement among the service scenes is medium, different containers are adopted for carrying out first-layer isolation aiming at different service scenes, and each service scene subjected to first-layer isolation by adopting different containers is as follows: if the isolation requirement of the service in the service scene is medium, continuing to adopt different containers to carry out first-layer isolation on the service in the service scene, so that the virtual desktop modes of the service in the service scene are all container virtual desktops in the virtual machine; if the isolation requirement of the service in the service scene is weak, performing second-layer isolation on the service in the service scene by adopting different shared user environments in a first-layer isolated container, so that the virtual desktop mode of the service in the service scene is the shared user environment virtual desktop in the container;
if the isolation requirement among the service scenes is weak, different shared user environments are adopted for carrying out first-layer isolation aiming at different service scenes, and different shared user environments are continuously adopted for carrying out first-layer isolation aiming at the services in each service scene, so that the virtual desktop modes of the services in each service scene are shared user environment virtual desktops.
The summary of steps 1.2) and 1.3) is shown in table 1:
table 1: and isolating scheme tables of different service scenes.
As can be seen from table 1 and step 1.2), in this embodiment, for the case where the service scene type is a single service scene: and if the service scene needs a strong isolation mechanism, generating the virtual machine by using a virtualization mode. If the business scenario has moderate isolation requirements and high performance requirements, the virtual machine is generated by using the container mode. And if the service scene has low isolation requirement and the maximum performance is required to be exerted, generating the virtual machine by using the shared user environment mode. As can be seen from table 1 and step 1.3), in this embodiment, for the case that the service scene types are multiple service scenes coexisting: if a plurality of service scenes coexist and each service scene is required to have certain isolation, and the isolation requirement inside the service scene is lower and the maximum performance is required to be exerted, different service scenes are isolated by using a container mode, and the same service scene runs in a shared user environment. If a plurality of service scenes coexist and a strong isolation mechanism is required to be used among the services, and the requirement on the internal isolation of the service scenes is moderate, a virtualization mode is used for isolating different service scenes, and the same service scenes are isolated through a container mode. If a plurality of service scenes coexist and a strong isolation mechanism is required to be used among the services, and the requirement on the internal isolation of the service scenes is low, different service scenes are isolated by using a virtualization operation mode, and the same service scene operates in a shared user environment. If a plurality of service scenes coexist and the isolation between services is different, flexible combination can be performed based on the mode that the shared user environment runs in the container and the container runs in the virtual machine. Fig. 7 is a system architecture diagram of a multi-mode virtual desktop in which a shared user environment, a container, and a virtual machine are integrated, according to which a virtual desktop in a virtual environment, a container, and a shared user environment can be flexibly combined according to actual service scene requirements. The embodiment is realized by depending on the existing virtual desktop system, the bottom layer is a hardware platform and a host system, and the hardware platform can be based on an X86 chip or an autonomous chip. The multi-mode virtual desktop method fusing the shared user environment, the container and the virtual machine is responsible for generating different virtual desktop environments. The session management in the system architecture is responsible for calling the method to generate a corresponding virtual desktop environment according to the configuration of an administrator, and the virtual desktop transmission protocol module is responsible for providing virtual desktops in modes of a virtual machine, a container, a shared user environment and the like for a terminal user. The virtual desktop transmission protocol is realized through a network, and the equipment access module is responsible for establishing a link for network access between the terminal and the virtual desktop system. The cluster management module is a core component for realizing the cluster function, and can effectively guarantee the high availability and continuity of the virtual desktop function.
In this embodiment, step 1) is preceded by a step of performing identity authentication on a user creating the virtual desktop, and if and only if the user performs the identity authentication, the step 1) is skipped to be executed; otherwise, end and exit.
In this embodiment, step 1) further includes a processing step of performing connection load balancing on all servers, and the detailed steps include: the method comprises the steps of firstly detecting the number of virtual desktops of all servers currently bearing various virtual desktop modes, then selecting the server with the least number of virtual desktops as a target server for creating the virtual desktops according to the service of a user, wherein the step of creating the virtual desktops by the server according to the service of the user specifically means that the target server creates the virtual desktops according to the service of the user.
Fig. 8 is a diagram illustrating an implementation of a typical structure of the system according to this embodiment, where Manager is a virtual desktop management program, and the virtual desktop management program is used as a management console of the virtual desktop system to provide management functions such as identity authentication, connection management, and load balancing. The connection channel service Broker is responsible for establishing an access path from the client to each virtual desktop protocol, and is an optional component. The various protocol agent services Broker is responsible for interfacing the virtual machine, container, and shared desktop virtual desktop protocols with the connectivity channel service Broker. Each desktop protocol adaptation end is an adaptation module of a virtual desktop protocol aiming at the desktop protocol in the environment of a virtual machine, a container and a shared user. The client can connect to corresponding different virtual desktop environments using different remote desktop protocols through the connection channel service. The virtual desktop management program selects a corresponding virtual desktop control module according to the configuration: if the virtual desktop of the virtual machine is the virtual desktop of the virtual machine, calling a VMController of a virtual machine management service to establish a corresponding virtual machine; if the virtual desktop is the container virtual desktop, calling a container management service RunCController to create a corresponding container; and if the virtual desktop of the shared user environment is the shared user environment virtual desktop, calling a shared environment management service ShareController to create the shared user environment.
In order to verify the method of the embodiment, in the embodiment, a test is performed based on a Huawei TaiShan 2280V2 platform, 150 container virtual desktops, 1 virtual machine virtual desktop, and 10 shared user environment virtual desktops are started, an online video playing test is performed in the virtual desktops through a browser, and it is found through the test that the CPU utilization rate of a server is less than 60%, and each virtual desktop operates well. Based on the hardware platform starting the virtual desktop of the virtual machine, the user experience is acceptable, the running number is about 40 virtual machines, and the virtual desktop bearing density of the general X86 server virtual machine is about 50 virtual machines. The virtual desktop of the virtual machine can run an application with a higher security level, 10 virtual desktops of the shared user environment can run applications without requirements on isolation, and 150 virtual desktops of the container can run applications with certain isolation requirements, so that the bearing density of the virtual desktops can be effectively improved on the premise of ensuring the isolation. Therefore, the method effectively improves the virtual desktop bearing density of a single server on the premise of guaranteeing safety isolation, reduces the use cost of users, and provides powerful support for virtual desktop product popularization, especially landing on the basis of an autonomous hardware platform.
In summary, the multi-mode virtual desktop method in which the user environment, the container, and the virtual machine are shared in a converged manner in this embodiment provides a technical solution that is more compromised between security and cost. The traditional virtual desktop based on virtualization implementation has stronger isolation and security but slightly lower bearing density of a single server. In scenes such as offices, business halls, government halls, reading rooms, service windows and the like, the use requirements of all virtual desktops are single and have the same security level, the requirements of mutual isolation are not obvious, and the service density of the virtual desktops can be improved through containers and shared user environments. The fused multi-mode virtual desktop service can realize that the virtual desktop service is selected according to the isolation requirement, for example, the virtual desktop with high security level is operated in the virtual machine, the container instance virtual desktop with moderate security level and moderate isolation requirement is operated in the virtual machine, and the shared user environment virtual desktop with moderate security level and no isolation requirement is operated in the virtual machine. The method has the advantages that the single server can be used, the application with high security level can also be run through the virtual machine, meanwhile, the container is used for running the application with moderate security level and the shared user environment is used for running the application with general security level, and the bearing density of the virtual desktop can be effectively improved on the premise of guaranteeing the isolation.
In addition, the present embodiment further provides a system for fusing a multi-mode virtual desktop of a shared user environment, a container, and a virtual machine, including a server with a virtual desktop manager, where the virtual desktop manager includes:
the mode analysis program unit is used for determining a virtual desktop mode of a service of a user;
and the virtual desktop creating program unit is used for creating a virtual desktop corresponding to the service according to the virtual desktop mode, and the created virtual desktop comprises at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container.
In addition, the present embodiment also provides a system for fusing multi-mode virtual desktops sharing user environments, containers and virtual machines, comprising a server with a virtual desktop manager, the server being programmed or configured to perform the steps of the aforementioned method for fusing multi-mode virtual desktops sharing user environments, containers and virtual machines.
In addition, the present embodiment also provides a system for fusing multi-mode virtual desktops sharing a ue, a container, and a virtual machine, comprising a server with a virtual desktop management program, wherein the server at least comprises a microprocessor and a memory, and the memory stores thereon a computer program programmed or configured to execute the aforementioned method for fusing multi-mode virtual desktops sharing a ue, a container, and a virtual machine.
Further, the present embodiments also provide a computer readable storage medium having stored thereon a computer program programmed or configured to perform the aforementioned method of fusing multimodal virtual desktops of a shared user environment, a container, and a virtual machine.
The above description is only a preferred embodiment of the present invention, and the protection scope of the present invention is not limited to the above embodiments, and all technical solutions belonging to the idea of the present invention belong to the protection scope of the present invention. It should be noted that modifications and embellishments within the scope of the invention may occur to those skilled in the art without departing from the principle of the invention, and are considered to be within the scope of the invention.
Claims (7)
1. A method for fusing multi-mode virtual desktops sharing a user environment, a container and a virtual machine is characterized in that an implementation step of creating a virtual desktop according to the service of a user by a server comprises the following steps:
1) determining a virtual desktop mode of a user's service;
2) creating a virtual desktop corresponding to the service according to the virtual desktop mode, wherein the created virtual desktop comprises at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container;
the detailed steps of the step 1) comprise:
1.1) analyzing the service scene type related to the service of the user, if the service scene type is a single service scene, skipping and executing the step 1.2), and if the service scene type is a multi-service scene coexisting, skipping and executing the step 1.3);
1.2) obtaining the isolation requirement of the user service, and if the isolation requirement is strong, judging that the virtual desktop mode of the user service is a virtual desktop of a virtual machine; if the isolation requirement is medium, judging that the virtual desktop mode of the service of the user is a container virtual desktop; if the isolation requirement is weak, judging that the virtual desktop mode of the user service is a shared user environment virtual desktop; skipping to execute the step 2);
1.3) obtaining the isolation requirement among the service scenes and the isolation requirement of the service in each service scene:
if the isolation requirement among the service scenes is strong, different virtual machines are adopted to carry out first-layer isolation aiming at different service scenes, and each service scene subjected to first-layer isolation by adopting different virtual machines is as follows: if the isolation requirement of the service in the service scene is strong, continuously adopting different virtual machines to carry out first-layer isolation on the service in the service scene, so that the virtual desktop modes of the service in the service scene are virtual desktop of the virtual machines; if the isolation requirement of the service in the service scene is middle, performing second-step isolation on the service in the service scene by adopting different containers in the virtual machine isolated in the first layer, so that the virtual desktop mode of the service in the service scene is a container virtual desktop in the virtual machine; if the isolation requirement of the service in the service scene is weak, performing second-step isolation on the service in the service scene by adopting different shared user environments in the virtual machine isolated in the first layer, so that the virtual desktop mode of the service in the service scene is the shared user environment virtual desktop in the virtual machine;
if the isolation requirement among the service scenes is medium, different containers are adopted for carrying out first-layer isolation aiming at different service scenes, and each service scene subjected to first-layer isolation by adopting different containers is as follows: if the isolation requirement of the service in the service scene is medium, continuing to adopt different containers to carry out first-layer isolation on the service in the service scene, so that the virtual desktop modes of the service in the service scene are all container virtual desktops in the virtual machine; if the isolation requirement of the service in the service scene is weak, performing second-layer isolation on the service in the service scene by adopting different shared user environments in a first-layer isolated container, so that the virtual desktop mode of the service in the service scene is the shared user environment virtual desktop in the container;
if the isolation requirement among the service scenes is weak, different shared user environments are adopted for carrying out first-layer isolation aiming at different service scenes, and different shared user environments are continuously adopted for carrying out first-layer isolation aiming at the services in each service scene, so that the virtual desktop modes of the services in each service scene are shared user environment virtual desktops.
2. The method for fusing multi-mode virtual desktops for sharing user environments, containers and virtual machines according to claim 1, further comprising a step of authenticating a user creating the virtual desktop before step 1), and performing step 1) if and only if the user creates the virtual desktop is authenticated; otherwise, end and exit.
3. The method for fusing multi-mode virtual desktops sharing user environments, containers and virtual machines according to claim 1, further comprising a processing step of performing connection load balancing on all servers before step 1), wherein the detailed steps comprise: the method comprises the steps of firstly detecting the number of virtual desktops of all servers currently bearing various virtual desktop modes, then selecting the server with the least number of virtual desktops as a target server for creating the virtual desktops according to the service of a user, wherein the step of creating the virtual desktops by the server according to the service of the user specifically means that the target server creates the virtual desktops according to the service of the user.
4. A system for fusing multimodal virtual desktops of a shared user environment, containers, and virtual machines, comprising a server with a virtual desktop hypervisor, the virtual desktop hypervisor comprising:
the mode analysis program unit is used for determining a virtual desktop mode of a service of a user;
the virtual desktop creating program unit is used for creating a virtual desktop corresponding to the service according to the virtual desktop mode, and the created virtual desktop comprises at least one of a virtual machine virtual desktop, a container virtual desktop, a shared user environment virtual desktop, a container virtual desktop in the virtual machine, a shared user environment virtual desktop in the virtual machine and a shared user environment virtual desktop in the container;
the detailed step of determining the virtual desktop mode of the user's traffic comprises:
1.1) analyzing the service scene type related to the service of the user, if the service scene type is a single service scene, skipping and executing the step 1.2), and if the service scene type is a multi-service scene coexisting, skipping and executing the step 1.3);
1.2) obtaining the isolation requirement of the user service, and if the isolation requirement is strong, judging that the virtual desktop mode of the user service is a virtual desktop of a virtual machine; if the isolation requirement is medium, judging that the virtual desktop mode of the service of the user is a container virtual desktop; if the isolation requirement is weak, judging that the virtual desktop mode of the user service is a shared user environment virtual desktop; skipping to execute the step 2);
1.3) obtaining the isolation requirement among the service scenes and the isolation requirement of the service in each service scene:
if the isolation requirement among the service scenes is strong, different virtual machines are adopted to carry out first-layer isolation aiming at different service scenes, and each service scene subjected to first-layer isolation by adopting different virtual machines is as follows: if the isolation requirement of the service in the service scene is strong, continuously adopting different virtual machines to carry out first-layer isolation on the service in the service scene, so that the virtual desktop modes of the service in the service scene are virtual desktop of the virtual machines; if the isolation requirement of the service in the service scene is middle, performing second-step isolation on the service in the service scene by adopting different containers in the virtual machine isolated in the first layer, so that the virtual desktop mode of the service in the service scene is a container virtual desktop in the virtual machine; if the isolation requirement of the service in the service scene is weak, performing second-step isolation on the service in the service scene by adopting different shared user environments in the virtual machine isolated in the first layer, so that the virtual desktop mode of the service in the service scene is the shared user environment virtual desktop in the virtual machine;
if the isolation requirement among the service scenes is medium, different containers are adopted for carrying out first-layer isolation aiming at different service scenes, and each service scene subjected to first-layer isolation by adopting different containers is as follows: if the isolation requirement of the service in the service scene is medium, continuing to adopt different containers to carry out first-layer isolation on the service in the service scene, so that the virtual desktop modes of the service in the service scene are all container virtual desktops in the virtual machine; if the isolation requirement of the service in the service scene is weak, performing second-layer isolation on the service in the service scene by adopting different shared user environments in a first-layer isolated container, so that the virtual desktop mode of the service in the service scene is the shared user environment virtual desktop in the container;
if the isolation requirement among the service scenes is weak, different shared user environments are adopted for carrying out first-layer isolation aiming at different service scenes, and different shared user environments are continuously adopted for carrying out first-layer isolation aiming at the services in each service scene, so that the virtual desktop modes of the services in each service scene are shared user environment virtual desktops.
5. A system for fusing multimodal virtual desktops sharing a user environment, a container and a virtual machine, comprising a server with a virtual desktop manager, wherein the server is programmed or configured to perform the steps of the method for fusing multimodal virtual desktops sharing a user environment, a container and a virtual machine of any one of claims 1-3.
6. A system for fusing multimodal virtual desktops sharing a user environment, a container and a virtual machine, comprising a server with a virtual desktop manager, wherein the server comprises at least a microprocessor and a memory, and wherein the memory has stored thereon a computer program programmed or configured to perform the method of fusing multimodal virtual desktops sharing a user environment, a container and a virtual machine according to any one of claims 1 to 3.
7. A computer-readable storage medium having stored thereon a computer program programmed or configured to perform the method of fusing multimodal virtual desktops of a shared user environment, a container and a virtual machine according to any one of claims 1 to 3.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010070146.9A CN111290815B (en) | 2020-01-21 | 2020-01-21 | Method and system for fusing multi-mode virtual desktop of shared user environment, container and virtual machine |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010070146.9A CN111290815B (en) | 2020-01-21 | 2020-01-21 | Method and system for fusing multi-mode virtual desktop of shared user environment, container and virtual machine |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111290815A CN111290815A (en) | 2020-06-16 |
| CN111290815B true CN111290815B (en) | 2022-08-02 |
Family
ID=71030006
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010070146.9A Active CN111290815B (en) | 2020-01-21 | 2020-01-21 | Method and system for fusing multi-mode virtual desktop of shared user environment, container and virtual machine |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111290815B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112764943B (en) * | 2020-12-31 | 2021-09-28 | 橙色云互联网设计有限公司 | Information processing method, system, electronic device, and computer-readable storage medium |
| CN115437728A (en) * | 2021-06-03 | 2022-12-06 | 华为云计算技术有限公司 | Cloud desktop setting method, system and equipment |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104050013B (en) * | 2014-05-22 | 2018-08-10 | 中兴通讯股份有限公司 | virtual desktop processing method, device and virtual desktop server |
| US10169056B2 (en) * | 2016-08-31 | 2019-01-01 | International Business Machines Corporation | Effective management of virtual containers in a desktop environment |
| CN112074812A (en) * | 2018-05-04 | 2020-12-11 | 茨特里克斯系统公司 | Computer system providing hierarchical display remoting with user and system prompt optimization and related methods |
| CN110032413B (en) * | 2019-03-05 | 2021-08-31 | 华为技术有限公司 | Desktop virtualization method, related equipment and computer storage medium |
| CN110633122A (en) * | 2019-09-19 | 2019-12-31 | 北京朋创天地科技有限公司 | Virtual desktop management system and method |
-
2020
- 2020-01-21 CN CN202010070146.9A patent/CN111290815B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN111290815A (en) | 2020-06-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11029990B2 (en) | Delivering a single end user experience to a client from multiple servers | |
| US10698717B2 (en) | Accelerator virtualization method and apparatus, and centralized resource manager | |
| US10073709B2 (en) | Session monitoring of virtual desktops in a virtual machine farm | |
| US10146566B2 (en) | Enabling virtual desktop connections to remote clients | |
| CN107707622B (en) | Method and device for accessing desktop cloud virtual machine and desktop cloud controller | |
| US9864754B2 (en) | Virtual desktop infrastructure private cloud | |
| US8973098B2 (en) | System and method for virtualized resource configuration | |
| US20160335738A1 (en) | System and Method for Distributed Virtualization of GPUs in Desktop Cloud | |
| US20120331032A1 (en) | Remote Presentation Session Connectionless Oriented Channel Broker | |
| US8387114B2 (en) | Secure workload partitioning in a server environment | |
| US20110296234A1 (en) | Virtual machine i/o multipath configuration | |
| US20100257269A1 (en) | Method and System for Migrating Processes Between Virtual Machines | |
| CN108491278B (en) | Method and network device for processing service data | |
| EP4002138A1 (en) | Native cloud computing via network segmentation | |
| CN111290815B (en) | Method and system for fusing multi-mode virtual desktop of shared user environment, container and virtual machine | |
| KR20080106908A (en) | Migrating a virtual machine that owns a resource such as a hardware device | |
| US9104452B2 (en) | Hybrid remote sessions | |
| US8813252B2 (en) | Request based license mode selection | |
| CN101895531B (en) | Client equipment, multimedia data unloading system and unloading method | |
| US20140126371A1 (en) | Flow switch and operating method thereof | |
| US20150373478A1 (en) | Virtual machine based on a mobile device | |
| CN114422456B (en) | Task processing method and device | |
| KR20160101283A (en) | Server Device and Method for outputting High Definition Video in a Virtual Environment | |
| CN109240768A (en) | The operation method and system of virtual machine under a kind of mixed computing model | |
| CN108833519A (en) | A kind of storage cluster method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information | ||
| CB02 | Change of applicant information |
Address after: 4 / F, Qilin science and Technology Park, No.20, Qiyun Road, high tech Zone, Changsha City, Hunan Province, 410000 Applicant after: Hunan Qilin Xin'an Technology Co.,Ltd. Address before: 4 / F, Qilin science and Technology Park, No.20, Qiyun Road, high tech Zone, Changsha City, Hunan Province, 410000 Applicant before: HUNAN KYLIN XINAN TECHNOLOGY Co.,Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |