Kamfanin Oracle na farko barga saki (UEK R6), tsawaita gina kwaya ta Linux, wanda aka sanya don amfani a cikin rarraba Oracle Linux a matsayin madadin daidaitaccen kunshin kernel daga Red Hat Enterprise Linux. Ana samun kernel don gine-ginen x86_64 da ARM64 (aarch64). Madogaran kwaya, gami da rarrabuwa zuwa faci guda ɗaya, a cikin ma'ajiyar Oracle Git na jama'a.
Unbreakable Enterprise Kernel 6 ya dogara ne akan kwaya (UEK R5 ya dogara ne akan kernel 4.14), wanda aka sabunta tare da sababbin siffofi, ingantawa da gyare-gyare, kuma an gwada shi don dacewa da yawancin aikace-aikacen da ke gudana akan RHEL, kuma an inganta shi musamman don aiki tare da software na masana'antu da kayan aikin Oracle. An shirya shigarwa da fakitin src tare da kernel UEK R6 don Linux Oracle и . An daina goyan bayan reshen 6.x; don amfani da UEK R6, dole ne ku sabunta tsarin zuwa Oracle Linux 7 (babu wani cikas ga amfani da wannan kwaya a cikin nau'ikan RHEL, CentOS da Linux na Kimiyya).
Maɓalli Kernel 6 na Kasuwanci mara karye:
- Fadada tallafi don tsarin dangane da gine-ginen 64-bit ARM (aarch64).
- An aiwatar da goyan bayan duk fasalulluka na Cgroup v2.
- An aiwatar da tsarin ktask don daidaita ayyuka a cikin kwaya wanda ke cinye mahimman albarkatun CPU. Misali, ta amfani da ktask, daidaita ayyukan aiki don share jeri na shafukan ƙwaƙwalwar ajiya ko aiwatar da jerin inodes za a iya shirya;
- An kunna sigar kswapd mai kamanceceniya don aiwatar da musanyar shafi na ƙwaƙwalwar ajiya ba tare da bata lokaci ba, rage adadin musanyawa kai tsaye (daidaitacce). Yayin da adadin shafukan ƙwaƙwalwar ajiyar kyauta ke raguwa, kswapd yana yin bincike don gano shafukan da ba a yi amfani da su ba waɗanda za a iya 'yantar dasu.
- Taimako don tabbatar da amincin hoton kwaya da firmware ta amfani da sa hannu na dijital lokacin loda kernel ta amfani da tsarin Kexec (loda kernel daga tsarin da aka riga aka ɗora).
- An inganta aikin tsarin sarrafa ƙwaƙwalwar ajiyar ƙwaƙwalwar ajiya, an inganta ingantaccen aikin share ƙwaƙwalwar ajiya da shafukan cache, kuma an inganta aikin samun dama ga shafukan ƙwaƙwalwar ajiya mara izini (laifi na shafi).
- An faɗaɗa tallafin NVDIMM, wannan ƙwaƙwalwar ajiyar na'urar yanzu ana iya amfani da ita azaman RAM na gargajiya.
- An yi canji zuwa tsarin lalata mai ƙarfi DTrace 2.0, wanda don amfani da eBPF kernel subsystem. DTrace yanzu yana gudana a saman eBPF, kama da yadda kayan aikin gano Linux ke gudana akan saman eBPF.
- An inganta tsarin fayil ɗin OCFS2 (Oracle Cluster File System).
- Ingantattun tallafi don tsarin fayil ɗin Btrfs. Ƙara ikon yin amfani da Btrfs akan ɓangarorin tushen. An ƙara wani zaɓi ga mai sakawa don zaɓar Btrfs lokacin tsara na'urori. Ƙara ikon sanya fayilolin musanyawa akan ɓangarorin tare da Btrfs. Btrfs ya ƙara tallafi don matsawa ta amfani da algorithm na ZStandard.
- Ƙarin tallafi don keɓancewa don asynchronous I/O - io_uring, wanda sananne ne don goyon bayan sa don jefa ƙuri'a na I/O da ikon yin aiki tare da ko ba tare da buffer ba. Dangane da aiki, io_uring yana kusa da SPDK kuma yana gaba da libaio sosai lokacin aiki tare da kunna ƙuri'a. Don amfani da io_uring a ƙarshen aikace-aikacen da ke gudana a cikin sararin mai amfani, an shirya ɗakin karatu na liburing, yana ba da ɗauri mai girma akan ƙirar kwaya;
- Ƙara goyon bayan yanayin don ɓoye ɓoye cikin sauri.
- Ƙara goyon baya don matsawa ta amfani da algorithm (zstd).
- Tsarin fayil na ext4 yana amfani da tambarin lokaci 64-bit a cikin filayen superblock.
- XFS ya haɗa da kayan aikin don ba da rahoton matsayin mutuncin tsarin fayil yayin aiki da samun matsayi akan aiwatar da fsck akan tashi.
- TCP tsoho an canza shi zuwa "" maimakon "Mai Saurin Yiwuwa" lokacin aika fakiti. An kunna tallafin GRO (Generic Receive Offload) don UDP. Ƙara goyon baya don karɓa da aika fakitin TCP a cikin yanayin kwafin sifili.
- Ana aiwatar da ka'idar TLS a matakin kernel (KTLS), wanda yanzu ana iya amfani dashi ba kawai don aikawa ba, har ma don bayanan da aka karɓa.
- An kunna azaman abin baya don Tacewar zaɓi ta tsohuwa
ntables. An ƙara tallafi na zaɓi . - Ƙara goyon baya ga tsarin tsarin XDP (eXpress Data Path), wanda ke ba da damar gudanar da shirye-shiryen BPF akan Linux a matakin direba na cibiyar sadarwa tare da damar samun dama ga fakitin fakitin DMA kai tsaye kuma a mataki kafin skbuff buffer ya keɓe ta hanyar cibiyar sadarwa.
- Ingantattun kuma kunna lokacin amfani da UEFI Secure Boot yanayin , wanda ke iyakance tushen mai amfani zuwa kernel kuma yana toshe hanyoyin UEFI Secure Boot bypass. Misali, a cikin yanayin kullewa, samun dama ga / dev/mem, / dev/kmem, / dev/port, /proc/kcore, debugfs, yanayin debug kprobes, mmiotrace, tracefs, BPF, PCMCIA CIS (Tsarin Bayanan Katin), wasu musaya yana iyakance ACPI da rijistar MSR na CPU, an toshe kira zuwa kexec_file da kexec_load, an hana yanayin bacci, amfani da DMA don na'urorin PCI yana iyakance, an hana shigo da lambar ACPI daga masu canjin EFI, ba'a yin amfani da tashoshin I/O. an yarda, gami da canza lambar katsewa da tashar I/O don tashar tashar jiragen ruwa.
- Ƙara goyon baya don ingantaccen IBRS (Ingantattun Hasashen Ƙuntataccen Hasashen Reshe na kai tsaye), wanda ke ba ku damar daidaitawa da kuma kashe aiwatar da hasashe na umarni yayin sarrafa katsewa, kiran tsarin, da masu sauya mahallin. Tare da Ingantattun tallafin IBRS, ana amfani da wannan hanyar don karewa daga harin Specter V2 maimakon Retpoline, saboda yana ba da damar yin aiki mafi girma.
- Inganta tsaro a cikin kundayen adireshi na duniya. A cikin irin waɗannan kundayen adireshi, an haramta ƙirƙirar fayilolin FIFO da fayilolin mallakar masu amfani waɗanda ba su dace da mai gidan kundayen adireshi da tuta mai ɗaci ba.
- Ta hanyar tsoho akan tsarin ARM, an kunna bazuwar adireshin kernel akan tsarin (KASLR). An kunna amincin nuni don Aarch64.
- Ƙara goyon baya don "NVMe over Fabrics TCP".
- Ƙara direban virtio-pmem don samar da dama ga na'urorin ajiya mai taswirar adireshin jiki kamar NVDIMMs.
source: budenet.ru