Google ya bayyana sakin mai binciken gidan yanar gizo na Chrome 91. A lokaci guda, ana samun tabbataccen sakin aikin Chromium kyauta, wanda ke zama tushen Chrome. An bambanta mai binciken Chrome ta hanyar amfani da tambarin Google, kasancewar tsarin aika sanarwa idan akwai hadari, kayayyaki don kunna abun ciki na bidiyo mai kariya (DRM), tsarin shigar da sabuntawa ta atomatik, da watsa sigogin RLZ lokacin bincike. An shirya sakin Chrome 92 na gaba don Yuli 20th.
Canje-canje masu mahimmanci a cikin Chrome 91:
- An aiwatar da ikon dakatar da aiwatar da JavaScript a cikin rugujewar rukunin shafin. Chrome 85 ya gabatar da tallafi don tsara shafuka zuwa ƙungiyoyi waɗanda za a iya haɗa su da takamaiman launi da lakabi. Lokacin da ka danna alamar rukuni, shafukan da ke da alaƙa da shi suna rugujewa kuma lakabi ɗaya ya rage a maimakon (danna alamar yana sake buɗe ƙungiyar). A cikin sabon sakin, don rage nauyin CPU da adana kuzari, an dakatar da ayyuka a cikin ƙananan shafuka. An keɓance kawai don shafukan da ke kunna sauti, amfani da Makullin Yanar Gizo ko IndexedDB API, haɗa zuwa na'urar USB, ko ɗaukar bidiyo, sauti, ko abun cikin taga. Za a fitar da canjin a hankali, farawa da ƙaramin adadin masu amfani.
- Haɗe da goyan bayan hanyar yarjejeniya mai mahimmanci wacce ke da juriya ga ƙaƙƙarfan ƙarfi akan kwamfutoci masu yawa. Kwamfutoci na jimla suna da sauri cikin sauri wajen magance matsalar lalata lamba ta halitta zuwa manyan dalilai, waɗanda ke ginshiƙan algorithms ɓoyayyun asymmetric na zamani kuma ba za a iya magance su yadda ya kamata akan na'urori na gargajiya ba. Don amfani a cikin TLSv1.3, an samar da kayan aikin CECPQ2 (Haɗaɗɗen Elliptic-Curve da Post-Quantum 2), haɗa nau'ikan musayar maɓalli na X25519 na yau da kullun tare da tsarin HRSS dangane da NTRU Prime algorithm, wanda aka ƙera don tsarin cryptosystems bayan jimla.
- Taimakawa ga ƙa'idodin TLS 1.0 da TLS 1.1, waɗanda kwamitin IETF (Task Force Injiniya na Intanet) ya sa an daina amfani da su gaba ɗaya. Ciki har da yuwuwar dawo da TLS 1.0/1.1 ta canza manufar SSLVersionMin an cire.
- Majalisun dandali na Linux sun haɗa da amfani da yanayin “DNS over HTTPS” (DoH, DNS over HTTPS), wanda a baya aka kawo wa masu amfani da Windows, macOS, ChromeOS da Android. DNS-over-HTTPS za a kunna ta atomatik ga masu amfani waɗanda saitunan su ke ƙayyade masu samar da DNS waɗanda ke goyan bayan wannan fasaha (don DNS-over-HTTPS ana amfani da mai bada iri ɗaya azaman na DNS). Misali, idan mai amfani yana da DNS 8.8.8.8 da aka ƙayyade a cikin saitunan tsarin, to Google's DNS-over-HTTPS sabis ("https://dns.google.com/dns-query") za a kunna a Chrome idan DNS shine 1.1.1.1 , sannan sabis na DNS-over-HTTPS Cloudflare ("https://cloudflare-dns.com/dns-query"), da dai sauransu.
- Port 10080, wanda ake amfani da shi a madadin Amanda da VMWare vCenter, an saka shi cikin jerin haramtattun tashoshin jiragen ruwa. A baya can, an toshe tashoshin jiragen ruwa 69, 137, 161, 554, 1719, 1720, 1723, 5060, 5061 da 6566. Don mashigai da ke cikin jerin baƙaƙe, ana toshe buƙatun HTTP, HTTPS da FTP don kare kai daga harin zamewar NAT. , wanda ke ba da damar lokacin buɗe shafin yanar gizon da maharin ya shirya musamman a cikin burauzar don kafa hanyar sadarwa daga uwar garken maharin zuwa kowane tashar UDP ko TCP akan tsarin mai amfani, duk da amfani da kewayon adireshin ciki (192.168.xx, 10). .xxx).
- Yana yiwuwa a saita ƙaddamar da aikace-aikacen yanar gizo ta atomatik (PWA - Progressive Web Apps) lokacin da mai amfani ya shiga cikin tsarin (Windows da macOS). An saita Autorun akan chrome://apps shafi. A halin yanzu ana gwada aikin akan ƙaramin adadin masu amfani, kuma ga sauran yana buƙatar kunna saitin "chrome://flags/#enable-desktop-pwas-run-on-os-login".
- A matsayin wani ɓangare na aikin don matsar da mai lilo zuwa amfani da kalmomi masu haɗa kai, an canza sunan fayil ɗin "master_preferences" zuwa "farkon_preferences". Don ci gaba da dacewa, goyan bayan "master_preferences" zai kasance a cikin mai bincike na ɗan lokaci. A baya can, mai bincike ya riga ya kawar da amfani da kalmomin "farar fata", "blacklist" da "yan ƙasa".
- Yanayin Yanar Gizon Yanar Gizo mai aminci, wanda ke kunna ƙarin bincike don kare kai daga masu saɓo, ayyukan mugunta da sauran barazana akan gidan yanar gizon, ya haɗa da ikon aika fayilolin da aka sauke don dubawa a gefen Google. Bugu da kari, Ingantaccen Browsing mai aminci yana aiwatar da lissafin alamun da ke daure da asusun Google lokacin gano yunƙurin satar bayanan sirri, da kuma aika ƙimar taken Referrer zuwa sabar Google don bincika isar da sako daga rukunin yanar gizo.
- A cikin bugu na dandamali na Android, an inganta ƙirar nau'ikan nau'ikan yanar gizo, waɗanda aka inganta don amfani da su akan allon taɓawa da tsarin ga mutanen da ke da nakasa (don tsarin tebur, an sake fasalin ƙirar a Chrome 83). Dalilin sake aiki shine a haɗa ƙirar abubuwa da tsari - a baya, an tsara wasu abubuwa masu amfani da keɓewa, kuma wasu daidai da hanyoyin da suka fi sanannun abubuwa. Saboda wannan, abubuwa daban-daban sun dace daban-daban don allon taɓawa da tsarin ga mutanen da ke da nakasa.
- Ƙara ra'ayin mai amfani wanda aka nuna lokacin buɗe saitunan Sandbox na Sirri (chrome://settings/privacySandbox).
- Lokacin gudanar da nau'in Android na Chrome akan kwamfutocin kwamfutar hannu tare da manyan fuska, ana yin buƙatar don sigar tebur na rukunin yanar gizon, ba bugu na na'urorin hannu ba. Kuna iya canza halayen ta amfani da saitin "chrome://flags/#request-desktop-site-for-tablets".
- An sake yin amfani da lambar don nuna tebur, wanda ya ba mu damar magance matsaloli tare da rashin daidaituwa a cikin hali lokacin nuna tebur a cikin Chrome da Firefox/Safari.
- An dakatar da sarrafa takaddun sabar uwar garken daga hukumar ba da takaddun shaida ta Spain Camerfirma saboda abubuwan da suka faru tun daga 2017 da suka shafi keta haddi a cikin bayar da takaddun shaida. Ana riƙe goyan bayan takaddun shaida na abokin ciniki; toshewa kawai ya shafi takaddun shaida da aka yi amfani da su akan shafukan HTTPS.
- Muna ci gaba da aiwatar da tallafi don rarraba cibiyar sadarwa don karewa daga hanyoyin bin diddigin motsin masu amfani tsakanin shafuka dangane da adana abubuwan ganowa a wuraren da ba a yi niyya don adana bayanai na dindindin ba ("Supercookies"). Saboda ana adana albarkatun da aka adana a cikin sunan gama gari, ba tare da la'akari da asalin yankin ba, wani rukunin yanar gizon zai iya tantance cewa wani rukunin yanar gizon yana loda albarkatun ta hanyar duba ko wannan albarkatun yana cikin ma'ajin. Kariyar ta dogara ne akan yin amfani da ɓangaren cibiyar sadarwa (Network Partitioning), ainihin abin da shine ƙarawa a cikin caches da aka raba ƙarin ɗaurin bayanai zuwa yankin da aka buɗe babban shafi, wanda ke iyakance ɗaukar hoto don rubutun bin diddigin motsi kawai. zuwa rukunin yanar gizon na yanzu (rubutun daga iframe ba zai iya bincika ko an sauke albarkatun daga wani rukunin yanar gizon ba).
Farashin rarrabuwa shine raguwar ingancin caching, yana haifar da ɗan ƙara haɓaka lokacin ɗaukar shafi (mafi yawa da 1.32%, amma don 80% na rukunin yanar gizo ta 0.09-0.75%). Don gwada yanayin ɓarna, zaku iya tafiyar da mai binciken tare da zaɓi "-enable-features=PartitionConnectionsByNetworkIsolationKey, PartitionExpectCTStateByNetworkIsolationKey, PartitionHttpServerPropertiesByNetworkIsolationKey, PartitionNelAndReportingByNetworkIsolationKeyssolationKasuwanciByNetworkIsolationKes solationKey".
- Haɓakawa na waje REST API VersionTarihin (https://versionhistory.googleapis.com/v1/chrome), ta inda za ku iya samun bayanai game da nau'ikan Chrome dangane da dandamali da rassa, da kuma tarihin sabunta masarrafar bincike.
- A cikin iframes da aka ɗora daga yanki ban da yankin shafin tushe, an hana nunin faɗakarwar maganganun JavaScript (), tabbatar da () da sauri (), wanda zai kare masu amfani daga ƙoƙarin rubutun ɓangare na uku don nuna saƙonni a ƙarƙashin ganin cewa babban shafin ya nuna sanarwar.
- API ɗin WebAssembly SIMD an daidaita shi kuma an bayar da shi ta tsohuwa don amfani da umarnin SIMD na vector a cikin aikace-aikacen da aka tsara na WebAssembly. Don tabbatar da 'yancin kai na dandamali, yana ba da sabon nau'in 128-bit wanda zai iya wakiltar nau'ikan bayanai daban-daban, da kuma ayyuka na yau da kullun na kayan aiki don sarrafa cikakkun bayanai. SIMD yana ba ku damar ƙara yawan aiki ta hanyar daidaita sarrafa bayanai kuma zai zama da amfani yayin tattara lambar asali cikin WebAssembly.
- An ƙara sabbin APIs da yawa zuwa Yanayin Gwaji na Asalin (fasali na gwaji waɗanda ke buƙatar kunnawa daban). Gwajin Asalin yana nuna ikon yin aiki tare da ƙayyadaddun API daga aikace-aikacen da aka zazzage daga localhost ko 127.0.0.1, ko bayan yin rijista da karɓar wata alama ta musamman wacce ke aiki na ƙayyadadden lokaci don takamaiman rukunin yanar gizo.
- WebTransport yarjejeniya ce da kuma rakiyar JavaScript API don aikawa da karɓar bayanai tsakanin mai lilo da uwar garken. An tsara tashar sadarwa a saman HTTP / 3 ta yin amfani da ka'idar QUIC a matsayin sufuri, wanda, bi da bi, shine ƙarawa zuwa ka'idar UDP wanda ke goyan bayan haɓakar haɗin kai da yawa kuma yana ba da hanyoyin ɓoyewa daidai da TLS/SSL.
Ana iya amfani da WebTransport maimakon hanyoyin WebSockets da RTCDataChannel, suna ba da ƙarin fasali irin su watsawa da yawa, rafukan da ba a kai ba, bayarwa ba tare da izini ba, hanyoyin isar da abin dogaro da abin dogaro. Bugu da kari, ana iya amfani da WebTransport maimakon tsarin Sabar Push, wanda Google ya yi watsi da shi a cikin Chrome.
- Keɓancewar bayyanawa don ayyana hanyoyin haɗin yanar gizo zuwa aikace-aikacen yanar gizo na tsaye (PWAs), an kunna ta ta amfani da madaidaicin kama_links a cikin bayanan aikace-aikacen gidan yanar gizo da barin shafuka su buɗe sabon taga PWA ta atomatik lokacin da aka danna hanyar haɗin aikace-aikacen ko canza zuwa yanayin taga guda ɗaya, kama da aikace-aikacen hannu.
- An ƙara WebXR Plane Detection API, wanda ke ba da bayanai game da shimfidar tsari a cikin yanayin 3D kama-da-wane. API ɗin ƙayyadadden ƙayyadaddun bayanai yana ba da damar gujewa sarrafa albarkatun bayanai da aka samu ta hanyar kiran MediaDevices.getUserMedia(), ta yin amfani da aiwatar da mallakar mallaka na algorithms hangen nesa na kwamfuta. Bari mu tunatar da ku cewa API ɗin WebXR yana ba ku damar haɗa aiki tare da nau'ikan na'urori na gaskiya daban-daban, daga kwalkwali na 3D na tsaye zuwa mafita dangane da na'urorin hannu.
- WebTransport yarjejeniya ce da kuma rakiyar JavaScript API don aikawa da karɓar bayanai tsakanin mai lilo da uwar garken. An tsara tashar sadarwa a saman HTTP / 3 ta yin amfani da ka'idar QUIC a matsayin sufuri, wanda, bi da bi, shine ƙarawa zuwa ka'idar UDP wanda ke goyan bayan haɓakar haɗin kai da yawa kuma yana ba da hanyoyin ɓoyewa daidai da TLS/SSL.
- An aiwatar da tallafi don aiki tare da WebSockets akan HTTP/2 (RFC 8441), wanda ke aiki ne kawai don amintattun buƙatun zuwa WebSockets kuma a gaban haɗin HTTP / 2 da aka riga aka kafa tare da sabar, wanda ya sanar da goyan bayan “WebSockets over. HTTP/2" tsawo.
- Iyakoki akan madaidaicin ƙimar ƙididdiga waɗanda aka samar ta hanyar kira zuwa aiki.now() sun daidaita a duk faɗin dandamalin da aka goyan baya kuma suna ɗaukar yuwuwar ware masu sarrafa a cikin matakai daban-daban. Misali, akan tsarin tebur, daidaiton lokacin aiki a cikin mahallin da ba keɓance an rage shi daga 5 zuwa 100 micro seconds.
- Gina Desktop yanzu sun haɗa da ikon karanta fayiloli daga allon allo (har yanzu an hana rubuta fayiloli zuwa allo). aikin async akanPaste (e) {bari fayil = e.clipboardData.files[0]; bari abun ciki = jira fayil.text (); }
- CSS tana aiwatar da ka'idar @counter-style, wanda ke ba ku damar ayyana salon ku don ƙididdiga da lakabi a cikin lissafin ƙididdiga.
- Azuzuwan na CSS ": mai watsa shiri ()" da ": host-context()" sun kara da ikon wuce dabi'u guda ɗaya na masu zaɓin fili ( ) ban da jerin masu zaɓe ( ).
- Ƙaddamar da haɗin gwiwar GravitySensor don tantance bayanai na volumetric (daidaita gatari uku) daga firikwensin nauyi.
- API ɗin Samun Tsarin Fayil yana ba da ikon ayyana shawarwari don zaɓar sunan fayil da kundin adireshi da aka bayar a cikin maganganun ƙirƙira ko buɗe fayil.
- Iframes da aka ɗora daga wasu yankuna ana ba su damar samun damar WebOTP API idan mai amfani ya ba da izini da suka dace. WebOTP yana ba ku damar karanta lambobin tabbatarwa na lokaci ɗaya da aka aiko ta SMS.
- An ba da izinin raba damar yin amfani da takaddun shaida don rukunin yanar gizon da ke da alaƙa ta amfani da tsarin DAL (Digital Asset Links), wanda ke ba da damar aikace-aikacen Android su haɗa su da shafuka don sauƙaƙe shiga.
- Ma'aikatan sabis suna ba da damar amfani da kayan aikin JavaScript. Lokacin da ka ƙididdige nau'in 'module' lokacin kiran mai ginin, ƙayyadaddun rubutun za a loda su a cikin nau'i na kayayyaki kuma akwai don shigo da su cikin mahallin ma'aikaci. Tallafin tsarin yana sauƙaƙa raba lamba a cikin shafukan yanar gizo da ma'aikatan sabis.
- JavaScript yana ba da ikon bincika wanzuwar filaye masu zaman kansu a cikin wani abu ta amfani da ma'anar "#foo in obj". aji A {gwajin a tsaye(obj) {console.log(#foo in obj); } #fo = 0; } A.gwajin (sabon A()); // gaskiya A.gwajin({}); // karya
- JavaScript ta tsohuwa yana ba da damar yin amfani da kalmar jira a cikin kayayyaki a matakin sama, wanda ke ba da damar kiran asynchronous don haɗawa cikin tsari cikin tsari na lodawa kuma yana guje wa kunsa su a cikin "aiki async". Misali, maimakon (aikin async() {jira Promise.resolve(console.log('test'));}()); yanzu zaku iya rubuta jira Promise.resolve(console.log('test'));
- Injin JavaScript na V8 JavaScript ya inganta ingancin caching samfuri, wanda ya ƙara saurin wucewa gwajin Speedometer4.5-FlightJS da kashi 2%.
- An yi babban ɓangare na haɓakawa ga kayan aiki don masu haɓaka gidan yanar gizo. An ƙara sabon yanayin duba ƙwaƙwalwar ajiya, yana samar da kayan aiki don bincika bayanan ArrayBuffer da ƙwaƙwalwar Wasm.
An ƙara alamar aikin taƙaitaccen aiki zuwa kwamitin Ayyuka, yana ba ku damar yin hukunci ko rukunin yanar gizon yana buƙatar haɓakawa ko a'a.
Samfotin hoto a cikin abubuwan abubuwan da ke cikin abubuwan da kwamitin bincike na hanyar sadarwa suna ba da bayani game da yanayin yanayin hoton, zaɓuɓɓukan ma'ana, da girman fayil.
A cikin kwamitin binciken cibiyar sadarwa, yanzu yana yiwuwa a canza ƙimar da aka karɓa na taken-Encoding abun ciki.
A cikin salon salon, yanzu zaku iya duba ƙimar ƙididdigewa da sauri lokacin kewayawa cikin sigogin CSS ta zaɓi "Duba ƙimar ƙididdigewa" a cikin menu na mahallin.
Baya ga sabbin abubuwa da gyare-gyaren kwaro, sabon sigar yana kawar da lahani 32. Yawancin raunin da aka gano sakamakon gwajin atomatik ta amfani da AddressSanitizer, MemorySanitizer, Control Flow Integrity, LibFuzzer da kayan aikin AFL. Ba a gano wata matsala mai mahimmanci da za ta ba mutum damar ƙetare duk matakan kariya na burauza ba da aiwatar da lamba akan tsarin a wajen yanayin sandbox. A matsayin wani ɓangare na shirin biyan tukuicin kuɗi don gano lahani ga sakin na yanzu, Google ya biya lambobin yabo 21 da suka kai $92000 (kyautar $20000 guda ɗaya, lambar yabo ta $15000, lambobin yabo $ 7500, lambobin yabo $ 5000 uku, lambobin yabo $ 3000, lambobin yabo $ 1000 biyu $500). Har yanzu ba a tantance girman lada guda 5 ba.
source: budenet.ru