ProHoster > Блог > labaran intanet > FreeBSD 13.1 saki

FreeBSD 13.1 saki

Bayan shekara guda na ci gaba, an saki FreeBSD 13.1. Hotunan shigarwa suna samuwa don amd64, i386, powerpc, powerpc64, powerpc64le, powerpcspe, armv6, armv7, aarch64 da riscv64 gine-gine. Bugu da ƙari, an shirya taruka don tsarin ƙirƙira (QCOW2, VHD, VMDK, raw) da yanayin girgije Amazon EC2, Google Compute Engine da Vagrant.

A cikin sabon sigar:

  • An gabatar da direban iwlwifi don katunan mara waya ta Intel tare da goyan bayan sabbin kwakwalwan kwamfuta da daidaitattun 802.11ac. Direban ya dogara ne akan direban Linux da lambar daga tsarin tsarin Linux na net80211, wanda ke gudana akan FreeBSD ta amfani da layin linuxkpi.
  • An sabunta aiwatar da tsarin fayil na ZFS zuwa sakin OpenZFS 2.1 tare da goyan bayan fasahar dRAID (Rarraba Spare RAID) da ingantaccen ingantaccen aiki.
  • An ƙara sabon rubutun zfskeys rc, wanda da shi zaku iya tsara ɓoyayyen ɓoyayyen ɓangarori na ZFS a matakin taya.
  • Tarin hanyar sadarwa ya canza halayen adiresoshin IPv4 tare da lambar sifili mai binnewa (xxx0), wanda yanzu ana iya amfani dashi azaman mai watsa shiri kuma ba a watsa shi ta tsohuwa. Za a iya dawo da tsohuwar hali ta amfani da sysctl net.inet.ip.broadcast_lowest.
  • Don gine-ginen 64-bit, gina tsarin tushe ta amfani da yanayin PIE (Matsayin Independent Executable) yana kunna ta tsohuwa. Don kashe, an samar da saitin WITHOUT_PIE.
  • An ƙara ikon kiran chroot ta hanyar rashin gata tare da saitin tuta na NO_NEW_PRIVS. An kunna yanayin ta amfani da sysctl security.bsd.unprivileged_chroot. An ƙara zaɓin "-n" zuwa kayan aikin chroot, wanda ke saita tutar NO_NEW_PRIVS don aiwatarwa kafin ware shi.
  • An ƙara yanayin gyaran ɓangarorin faifai ta atomatik zuwa mai sakawa na bsdinstall, yana ba ku damar haɗa rubutun rarrabawa waɗanda ke aiki ba tare da sa hannun mai amfani ba don sunayen diski daban-daban. Siffar da aka tsara tana sauƙaƙa ƙirƙira cikakken aikin watsa shirye-shiryen shigarwa ta atomatik don tsarin da injunan kama-da-wane tare da fayafai daban-daban.
  • Ingantattun tallafin taya akan tsarin UEFI. Bootloader yana ba da damar daidaitawa ta atomatik na siginar kwafi_staging dangane da iyawar kernel ɗin da aka ɗora.
  • An yi aiki don inganta aikin bootloader, nvme, rtsold, fara fara samar da lambar bazuwar bazuwar da daidaita lokaci, wanda ya haifar da raguwa a lokacin taya.
  • Ƙara goyon baya ga NFS akan tashar sadarwar rufaffiyar dangane da TLS 1.3. Sabuwar aiwatarwa tana amfani da tarin TLS da aka samar don ba da damar haɓaka kayan aiki. Yana gina hanyoyin rpc.tlsclntd da rpc.tlsservd tare da abokin ciniki na NFS-over-TLS da aiwatar da sabar, wanda aka kunna ta tsohuwa don gine-ginen amd64 da arm64.
  • Don NFSv4.1 da 4.2, an aiwatar da zaɓin hawan nconnect, wanda ke ƙayyade adadin haɗin TCP da aka kafa tare da uwar garke. Ana amfani da haɗin farko don ƙananan saƙonnin RPC, kuma sauran ana amfani da su don daidaita zirga-zirga tare da bayanan da aka watsa.
  • Don uwar garken NFS, an ƙara sysctl vfs.nfsd.srvmaxio, wanda ke ba ku damar canza matsakaicin girman toshe I/O (tsoho 128Kb).
  • Ingantattun tallafin kayan masarufi. An ƙara tallafi ga mai sarrafa Intel I225 Ethernet zuwa direban igc. Ingantattun tallafi don tsarin Big-endian. Ƙara direban mgb don na'urorin Microchip LAN7430 PCIe Gigabit Ethernet mai sarrafa
  • An sabunta direban kankara da aka yi amfani da shi don masu sarrafa Intel E800 Ethernet zuwa nau'in 1.34.2-k, wanda yanzu ya haɗa da goyan baya don nuna abubuwan da suka faru na firmware a cikin log ɗin tsarin kuma an ƙara haɓaka ƙa'idodin ka'idojin DCB (Cibiyar Bayanai).
  • Hotunan Amazon EC2 suna kunna ta tsohuwa don yin taya ta amfani da UEFI maimakon BIOS.
  • Bhyve hypervisor ya sabunta abubuwan da aka gyara don kwaikwayi abubuwan tafiyar NVMe don tallafawa ƙayyadaddun NVMe 1.4. An warware matsalolin tare da NVMe iovec yayin babban I/O.
  • An canza ɗakin karatu na CAM don amfani da kira na ainihi lokacin sarrafa sunayen na'urori, wanda ke ba da damar hanyoyin haɗin kai zuwa na'urori don amfani da su a cikin kayan aikin camcontrol da smartctl. camcontrol yana magance matsaloli tare da zazzage firmware zuwa na'urori.
  • Mai amfani da svnlite ya daina ginawa akan tsarin tushe.
  • An ƙara nau'ikan kayan aiki na Linux don ƙididdige ƙididdiga (md5sum, sha1sum, da sauransu) waɗanda aka aiwatar ta hanyar kiran abubuwan amfani na BSD da ke wanzu (md5, sha1, da sauransu) tare da zaɓin “-r”.
  • An ƙara tallafi don sarrafa NCQ zuwa mai amfani da mpsutil kuma an nuna bayani game da adaftar.
  • A /etc/defaults/rc.conf, ta tsohuwa, ana kunna zaɓin “-i” lokacin kiran tsarin rtsol da rtsold, waɗanda ke da alhakin aika saƙonnin ICMPv6 RS (Router Solicitation). Wannan zaɓi yana hana jinkirin bazuwar kafin aika saƙo.
  • Don gine-ginen riscv64 da riscv64sf, gina dakunan karatu tare da ASAN (adireshin sanitizer), UBSAN (Ba a bayyana Halayyar Sanitizer), OpenMP da OFED (Open Fabrics Enterprise Distribution) an kunna.
  • Matsaloli tare da ƙayyadaddun hanyoyin haɓaka kayan aiki na ayyukan ɓoye bayanan da ARMv7 da na'urori na ARM64 ke goyan bayan an warware su, wanda ya haɓaka aikin aes-256-gcm da algorithms sha256 akan tsarin ARM.
  • Don tsarin gine-ginen wutar lantarki, babban kunshin ya haɗa da LLDB debugger, wanda aikin LLVM ya haɓaka.
  • An sabunta ɗakin karatu na OpenSSL zuwa sigar 1.1.1o kuma an faɗaɗa shi tare da haɓaka haɓakawa don gine-ginen powerpc, powerpc64 da powerpc64le.
  • An sabunta uwar garken SSH da abokin ciniki zuwa OpenSSH 8.8p1 tare da goyan bayan sa hannun dijital na rsa-sha naƙasasshe da goyan baya don tabbatar da abubuwa biyu ta amfani da na'urori dangane da ka'idar FIDO/U2F. Don yin hulɗa tare da na'urorin FIDO/U2F, an ƙara sabbin nau'ikan maɓalli "ecdsa-sk" da "ed25519-sk", waɗanda ke amfani da ECDSA da Ed25519 algorithms sa hannu na dijital, haɗe tare da SHA-256 hash.
  • Sabbin nau'ikan aikace-aikacen ɓangare na uku waɗanda aka haɗa cikin tsarin tushe: awk 20210215 (tare da faci waɗanda ke hana amfani da wurare don jeri da haɓaka dacewa tare da gawk da mawk), zlib 1.2.12, libarchive 3.6.0.

source: budenet.ru

Add a comment