ProHoster > Blog > xov xwm hauv internet > FreeBSD 14.0 tso tawm

FreeBSD 14.0 tso tawm

Tom qab ob xyoos thiab ib nrab xyoo los ntawm kev tshaj tawm ntawm 13.0 ceg, FreeBSD 14.0 tso tawm tau tsim. Cov duab teeb tsa tau npaj rau amd64, i386, powerpc, powerpc64, powerpc64le, powerpcspe, armv7, aarch64 thiab riscv64 architectures. Tsis tas li ntawd, cov rooj sib txoos tau npaj rau cov tshuab virtualization (QCOW2, VHD, VMDK, raw) thiab huab cua puag ncig Amazon EC2, Google Compute Engine thiab Vagrant. FreeBSD 14 ceg yuav yog qhov kawg los txhawb 32-ntsis platforms. FreeBSD 15 tsuas yog txhawb nqa 64-ntsis tshuab, tab sis yuav khaws lub peev xwm los tsim 32-ntsis cov kev pab cuam thiab siv COMPAT_FREEBSD32 hom los khiav 32-ntsis executables nyob rau hauv ib puag ncig 64-ntsis.

Cov kev hloov loj:

  • Lub plhaub qub rau tus neeg siv hauv paus yog /bin/sh.
  • Rau NVME li, tus tsav nda tau qhib los ntawm lub neej ntawd ntawm txhua lub platform. Txhawm rau rov qab tus qub nvd tsav tsheb, qhov "hw.nvme.use_nvd=1" yog muab rau hauv loader.conf.
  • Ib qho txiaj ntsig tshiab "fwget" tau ntxiv uas txheeb xyuas cov khoom siv uas xav tau firmware thiab nruab cov pob khoom tsim nyog. Tam sim no tsuas yog PCI li thiab firmware rau Intel thiab AMD GPUs tau txais kev txhawb nqa.
  • Ntxiv tshiab base64 qhov hluav taws xob rau encoding thiab decoding base64 cov ntaub ntawv.
  • Ntxiv cov khoom siv hluav taws xob tcpsso, uas tso cai rau koj los teeb tsa cov kev xaiv lub qhov (socket) rau kev sib txuas TCP uas twb muaj lawm (piv txwv li, koj tuaj yeem hloov qhov congestion control module lossis TCP pawg).
  • Tus neeg saib xyuas xa ntawv xa tuaj yog dma (DragonFly Mail Agent) tsis yog xa email. Sendmail tau khaws cia rau hauv cov pob yooj yim thiab hloov kho rau version 8.17.1.
  • KTLS, FreeBSD kernel kev siv ntawm TLS raws tu qauv, ntxiv kev txhawb nqa rau TLS 1.3 kho vajtse acceleration ntawm sab txais. Kev nrawm yog ua kom ntseeg tau los ntawm kev txav qee qhov haujlwm cuam tshuam nrog kev ua cov pob ntawv encrypted mus rau lub network card sab.
  • Cov lus qhia ".include" tau ntxiv rau hauv jail.conf configuration file, uas tso cai rau koj suav nrog cov ntaub ntawv ntxiv thaum thauj cov teeb tsa, txoj hauv kev uas tso cai rau siv lub qhov ncauj qhov ntswg. Lub sysctl parameter security.bsd.see_jail_proc tau nthuav dav, nrog kev pab los ntawm cov neeg siv tsis tau tso cai nyob rau hauv ib cheeb tsam tsev loj cuj tam sim no raug txwv tsis pub txiav tawm, hloov qhov tseem ceeb, thiab kev debugging txheej txheem.
  • Cov kev pab cuam pw thiab bsdinstall tam sim no tsim cov neeg siv hauv / home directory los ntawm lub neej ntawd tsis yog /usr / tsev. Cov cim txuas rau "/home" taw tes rau "/ usr/home" yog tsis tsim lawm.
  • Kev xiam oob qhab los ntawm lub neej ntawd PROFILE tsim teeb tsa - profiled versions ntawm cov tsev qiv ntawv kaw lus tsis tau muab ntxiv lawm, cov cuab yeej kho vajtse profile (hwpmc) yuav tsum tau siv los hloov.
  • Qhib lub tsev ntawm cov ntaub ntawv executable rau 64-ntsis architectures hauv PIE (Position Independent Executable) hom.
  • Lub peev xwm xa mus rau TPM (Trusted Platform Module) thiab GPU (hauv virtual ib puag ncig rau AMD thiab Intel chips) tau ntxiv rau Bhyve hypervisor.
  • ZFS cov ntaub ntawv siv tau raug hloov kho rau OpenZFS 2.2 tso tawm. Lub tshuab hluav taws xob makefs tau ntxiv kev txhawb nqa rau ZFS cov ntaub ntawv kaw lus. Muab lub peev xwm los tsim ZFS pas dej ua ke nrog ib qho vdev virtual disk.
  • Tus naj npawb ntawm kev txhawb nqa CPU cores (MAXCPU parameter) hauv cov tshuab raws li amd256 thiab arm1024 architecture tau nce los ntawm 64 txog 64.
  • Hauv UFS, rau kev teeb tsa hauv qhov kev nkag (mos hloov tshiab) tau qhib, kev kuaj xyuas keeb kwm yav dhau ntawm cov ntaub ntawv raug tso cai siv UFS snapshots. Ntxiv hash checks tau ntxiv rau superblocks, cylinder pawg maps, thiab inodes txhawm rau txheeb xyuas kev noj nyiaj txiag.
  • Ntxiv cov tarfs filesystem, uas tuaj yeem siv nrog tar archives compressed nrog zstd.
  • Ntxiv boottrace toolkit los taug qab cov xwm txheej uas tshwm sim thaum khau raj thiab kaw lub kaw lus.
  • Ntxiv qhov FIRECRACKER kernel configuration xaiv kom tso cai rau FreeBSD khiav ntawm Firecracker virtualization system, uas yog tsim los khiav cov tshuab virtual nrog tsawg kawg nkaus nyiaj siv ua haujlwm. Lub FreeBSD 14 kernel khau raj lub sij hawm khiav Firecracker tau nce mus rau 25 milliseconds, tso cai rau FreeBSD ib puag ncig yuav tsum tau launched raws li xav tau los siv serverless xam infrastructure.
  • Lub loader, sau nyob rau hauv Lua, nyob rau hauv ib tug tshwj xeeb sandbox ib puag ncig, txhawb kev tua ntawm lua ntaub ntawv nyob rau hauv lub loader_conf_files directory.
  • NFS kev txhawb nqa tau nthuav dav. Ntxiv qhov kev xaiv mount tshiab "syskrb5" los txhawb Kerberos hauv NFSv 4.1/4.2, thiab ntxiv kev txhawb nqa rau kev ua haujlwm ExchangeID. Ua kom muaj peev xwm khiav nfsd, nfsuserd, mountd, gssd thiab rpc.tlsservd nyob rau hauv ib qho chaw sib cais vnet network.
  • Cov ntawv growfs siv lub peev xwm los tso qhov sib pauv muab faib thaum kawg ntawm thaj chaw nthuav dav ntawm disk.
  • Ib tus tshiab DTrace tus muab kev pabcuam kinst (dtrace_kinst) tau raug ntxiv, tso cai taug qab cov qauv kernel.
  • Kev txhawb nqa rau XChaCha20-Poly1035 AEAD encryption algorithm tau ntxiv rau hauv kernel crypto subsystem, thiab API rau kev siv curve25519 elliptic curve tau ntxiv (rau WireGuard).
  • Txo lub sij hawm reboot. Ntxiv sysctl parameter kern.reboot_wait_time, los ntawm qhov uas koj tuaj yeem hloov qhov ncua sij hawm ua ntej qhov tseeb reboot tom qab tag nrho cov lus tshuaj ntsuam tau tso tawm rau lub console. Los ntawm lub neej ntawd, qhov ncua sij hawm raug tshem tawm.
  • Lub timerfd subsystem tau ntxiv rau hauv lub kernel, ua kom yooj yim rau kev xa cov kev pab cuam los ntawm Linux.
  • Ntxiv sysctl machdep.mitigations.zenbleed.enable los thaiv Zenbleed qhov tsis zoo ntawm AMD Zen2 processors.
  • Kev txhawb nqa Wi-Fi 6 tau ntxiv rau wpa_supplicant thiab hostapd. Tus tsav tsheb iwlwifi txhawb Intel chips uas txhawb Wi-Fi 6E AX411 / AX211 / AX210.
  • Lub kernel ntawm amd64 systems muab kev txhawb nqa rau AddressSanitizer thiab MemorySanitizer cov cuab yeej los ntawm LLVM qhov project.
  • rc.d scripts tso cai rau kev siv cov txheej xwm txheej txheem, txawm tias lub npe program (procname) thiab PID cov ntaub ntawv tsis tau txhais hauv tsab ntawv.
  • Lub default kernel, bootloader, thiab userspace serial chaw nres nkoj baud tus nqi tau nce los ntawm 9600 bps rau 115200 bps. Lub suab nrov nrov beep yog teem rau 800Hz. Kev koom ua ke nrog devd yog muab los tso tawm beeps los ntawm daim npav suab. Rau vt console, lub beep yog neeg xiam los ntawm lub neej ntawd (kom pab nws, koj yuav tsum tau khiav cov lus txib "sysctl kern.vt.enable_bell = 1" thiab "kbdcontrol -b normal").
  • Txhim kho kev txhawb nqa rau NXP DPAA2 (Data Path Acceleration Architecture Gen2) network hardware acceleration architecture.
  • Ntxiv igc tsav tsheb rau Intel I225 Ethernet controllers, txhawb 2.5 Gbps ceev.
  • Los ntawm lub neej ntawd, qhov teeb tsa net.inet.tcp.nolocaltimewait tau qhib, uas cuam tshuam kev tsim cov ntaub ntawv sijhawm tos rau TCP kev sib txuas uas raug txiav tawm ntawm sab hauv zos.
  • Kev txhawb nqa rau Netlink kev sib txuas lus protocol (RFC 3549) siv rau hauv Linux Txhawm rau npaj kev sib cuam tshuam ntawm cov txheej txheem kernel thiab qhov chaw siv. Qee cov khoom siv network tau hloov pauv los siv Netlink.
  • Pf pob ntawv lim muab kev sib raug zoo nrog cov syntax thiab tus cwj pwm ntawm pob ntawv normalization (scrubbing) kev ua haujlwm ntawm OpenBSD version ntawm pf. pfsync siv lub peev xwm los siv IPv6 thauj. Daim ntawv pfsync pob ntawv tau txuas ntxiv los txhawb cov kab, pob ntawv normalization, thiab txoj kev-rau txoj cai.
  • Ntxiv rau if_stf (IPv6 hla IPv4) network interface Kev txhawb nqa IPv6 Kev Xa Mus Sai (RFC 5969). IPv6 nodeinfo hom (RFC 4620) raug kaw los ntawm lub neej ntawd.
  • Lub net.inet.tcp.nolocaltimewait sysctl parameter yog qhib los ntawm lub neej ntawd, cuam tshuam kev tsim cov sijhawm tos lub xeev nkag rau hauv zos cuam tshuam TCP kev sib txuas.
  • Los ntawm lub neej ntawd, TCP siv CUBIC network congestion tswj mechanism hloov NewReno, uas tso cai rau kev siv ntau dua ntawm cov bandwidth.
  • IPv4 txwv tsis pub xa cov pob ntawv tshaj tawm mus rau subnet chaw nyob xoom tshwj tsis yog tias qhov chaw nyob ntawd tau tshaj tawm qhov chaw nyob tshaj tawm. Qhov kev hloov pauv tso cai rau cov tswv siv qhov chaw nyob xaus hauv ".0".
  • Kev teeb tsa OpenSSH tau hloov pauv: hauv scp SFTP raws tu qauv tau qhib los ntawm lub neej ntawd tsis yog scp / rcp, kev txhawb nqa rau RSA / SHA-1 kos npe yog neeg xiam oob qhab, VerifyHostKeyDNS thiab X11Forwarding tsis tau teem rau "tsis muaj", VersionAddendum cov lus qhia raug tshem tawm, kev them nyiaj yug rau HPN chaw raug tshem tawm.
  • Ntxiv "-z" kev xaiv rau hnub siv hluav taws xob los hloov lub sijhawm thaj tsam.
  • Qhov kev xaiv "--xim" tau muab ntxiv rau qhov sib txawv kom pom cov xim hloov.
  • Lub chaw pw tsaug zog tam sim no txhawb cov units uas tsis yog vib nas this (piv txwv li, koj tuaj yeem hais qhia "pw 1h 30m").
  • Kev them nyiaj yug rau "-q" thiab "-h" cov kev xaiv tau ntxiv rau lub taub hau thiab tus Tsov tus tw nqi hluav taws xob, thiab lub peev xwm los qhia txog qhov tseem ceeb nrog cov lus xaus nyob rau hauv lub thoob ntiaj teb system ntawm SI units tau siv. Hauv lub taub hau, qhov txwv ntawm cov kab ntau tshaj plaws ntawm 2^31 tau raug tshem tawm.
  • Ntxiv cov lus txib "iolat" rau systat qhov hluav taws xob los tso saib cov ntaub ntawv hais txog I/O latencies xam los ntawm CAM teem sijhawm.
  • Lub tsev qiv ntawv libncursesw tau muab faib ua ob lub tsev qiv ntawv, libtinfow thiab libncursesw. Ntxiv kev txhawb nqa rau kev siv terminfo database hauv ncurses, thiab tsis yog termcap xwb.
  • Rau aarch64 (arm64) architecture, COMPAT_LIB32 tsim kev xaiv tau siv thiab ua haujlwm los ntawm lub neej ntawd, muab kev sib dhos ntawm 32-ntsis qiv rau ARM64 systems uas tso cai rau khiav cov ntaub ntawv ua tiav tau muab tso ua ke rau armv7 platform.
  • Txhim kho kev txhawb nqa rau huab tshuab. Kev sim ua nrog ZFS cov ntaub ntawv hauv paus thiab huab-init tau ntxiv rau AWS EC2. Rau Azure, cov duab tau muab rau arm64 thiab amd64 architectures, nrog rau kev xaiv UFS lossis ZFS. Ntxiv tsav tsheb rau gve virtual network card (Google Virtual NIC).
  • ACPI system tau ntxiv kev txhawb nqa rau tus nqi pib _CR3, uas tso cai rau koj los teeb tsa qhov kub thiab txias thaum ncav cuag qhov system yuav hloov mus rau hom pw tsaug zog (S3).
  • Hloov tshiab ntawm cov ntawv thov thib peb thiab cov tsev qiv ntawv suav nrog hauv lub hauv paus: OpenSSH 9.5p1, OpenSSL 3.0.12 (yav dhau los ceg 1.1.1 tau siv), awk 2021072, bc 6.6.0, libbsdxml 2.4.7, libfido2 1.13.0. , tcpdump 4.99.4, libpcap 1.10.4, xz 5.4.3, zlib 1.3, zstd 1.5.2. Qhov kev siv ntawm objdump utility tau hloov los ntawm llvm-objump. Clang compiler tau hloov kho rau ceg 16.
  • Cov txheej txheem dhau los tau raug ntxuav:
    • Kev them nyiaj yug rau OPIE ib zaug lo lus zais tau raug tshem tawm ntawm lub hauv paus system (qhov chaw ruaj ntseg / opie tuaj yeem teeb tsa rov siv dua).
    • Cov tsav tsheb rau cov npav suab nrog ISA interface tau raug tshem tawm.
    • Cov khoom siv fmtree thiab minigzip tau raug tshem tawm.
    • Tshem tawm cov khoom ATM hauv netgraph (NgATM).
    • Cov txheej txheem telnetd keeb kwm yav dhau tau raug tshem tawm (koj tuaj yeem siv qhov chaw nres nkoj / freebsd-telnetd).
    • Tshem tawm VINUM chav kawm hauv geom.
    • Tshem tawm amr, iscsi_initiator, iir, mn, mly, nlmrsa thiab twa tsav tsheb.
    • VESA parameter tau raug tshem tawm ntawm GENERIC thiab MINIMAL cores.
    • Kev them nyiaj yug rau asymmetric cryptographic ua haujlwm tau raug tshem tawm los ntawm cov kernel-theem cryptographic moj khaum OCF (Qhib Cryptographic Framework).
    • Cov khoom siv hluav taws xob sib koom ua ke tau raug tso tseg thiab yuav tsum tau hloov los ntawm lwm yam.
    • Cov khoom siv portsnap tau raug tshem tawm (koj yuav tsum siv "git clone https://git.FreeBSD.org/ports.git /usr/ports" kom rho tawm cov chaw nres nkoj).
    • Cov tiam ntawm cov rooj sib txoos rau armv6 architecture tau raug tso tseg.
    • Tshem tawm kev txhawb nqa rau MIPS architecture.

Tau qhov twg los: opennet.ru

Yuav txhim khu kev qha hosting rau cov chaw nrog DDoS tiv thaiv, VPS VDS servers 🔥 Yuav lub vev xaib hosting txhim khu kev qha nrog kev tiv thaiv DDoS, VPS VDS servers | ProHoster