Ụlọ ọrụ Red Hat ngwa nkesa . A kwadoro mgbakọ nwụnye maka x86_64, s390x (IBM System z), ppc64le na Aarch64 architectures, mana n'ihi na naanị maka ndị ọrụ Portal ahịa ahịa okpu uhie edebanyere aha. A na-ekesa isi mmalite nke ngwugwu Red Hat Enterprise Linux 8 rpm CentOS. A ga-akwado alaka RHEL 8.x ruo opekata mpe 2029.
Red Hat Enterprise Linux 8.1 bụ ntọhapụ izizi akwadoro dabere na usoro mmepe ọhụrụ a na-atụ anya amụma, nke na-egosi nhazi mwepụta kwa ọnwa isii n'oge a kara aka. Inwe ezi ozi gbasara mgbe a ga-ebipụta ntọhapụ ọhụrụ na-enye gị ohere ịmekọrịta usoro mmepe nke ọrụ dị iche iche, kwadebe tupu oge ewepụtara ọhụrụ, na hazie mgbe a ga-etinye mmelite.
Ọ na-kwuru na ọhụrụ Ngwaahịa RHEL na-agbasa ọtụtụ ọkwa, gụnyere Fedora dị ka mmiri mmiri maka ike ọhụrụ, maka ịnweta ngwugwu emepụtara maka ntọhapụ etiti na-esote RHEL (ụdị mpịakọta nke RHEL),
minimalistic eluigwe na ala isi image (UBI, Universal Base Image) maka na-agba ọsọ ngwa na ndị dịpụrụ adịpụ containers na maka iji RHEL n'efu na usoro mmepe.
Igodo :
- Enyere nkwado zuru oke maka usoro iji tinye patches Live () iji kpochapụ adịghị ike na Linux kernel na-enweghị ịmalitegharị usoro ahụ na-akwụsịghị ọrụ. Na mbụ, kpatch bụ nkewa dị ka ihe nnwale;
- Dabere na usoro E tinyela ikike ịmepụta ndepụta ọcha na oji nke ngwa, nke na-enye gị ohere ịmata ọdịiche nke mmemme nwere ike ịmalite site na onye ọrụ na nke enweghị ike (dịka ọmụmaatụ, igbochi mmalite nke faịlụ ndị a na-apụghị ịkọwapụta na mpụga). Enwere ike ịme mkpebi igbochi ma ọ bụ kwe ka mmalite dabere na aha ngwa, ụzọ, hash ọdịnaya na ụdị MIME. Nyochaa iwu na-eme n'oge oku sistemụ mepere emepe () na exec (), yabụ nwere ike inwe mmetụta na-adịghị mma na arụmọrụ;
- Ngwakọta ahụ gụnyere profaịlụ SELinux, lekwasịrị anya na iji arịa ndị dịpụrụ adịpụ na ikwe ka njikwa granular karịa ịnweta ọrụ na-agba n'ime akpa iji kwado akụrụngwa sistemụ. Iji mepụta iwu SELinux maka arịa, a na-atụpụta ọrụ udica ọhụrụ, nke na-enye ohere, na-eburu n'uche ihe dị iche iche nke otu akpa, iji nye ohere naanị ihe ndị dị mkpa dị na mpụga, dị ka nchekwa, ngwaọrụ na netwọk. Emelitere SELinux utilities (libsepol, libselinux, libsemanage, policycoreutils, checkpolicy, mcstrans) iji wepụta 2.9, yana ngwugwu SETools na ụdị 4.2.2.
Agbakwunyere ụdị SELinux ọhụrụ, boltd_t, nke na-egbochi boltd, usoro maka ijikwa ngwaọrụ Thunderbolt 3 (boltd na-agba ugbu a n'ime akpa nke SELinux kpachiri). Agbakwunyere klas ọhụrụ nke iwu SELinux - bpf, nke na-achịkwa ịnweta Berkeley Packet Filter (BPF) ma na-enyocha ngwa maka eBPF;
- Gụnyere nchịkọta nke usoro ngagharị (BGP4, MP-BGP, OSPFv2, OSPFv3, RIPv1, RIPv2, RIPng, PIM-SM/MSDP, LDP, IS-IS), nke nọchiri ngwugwu Quagga ejiri na mbụ (FRROuting bụ ndụdụ nke Quagga, yabụ emetụtaghị ndakọrịta. );
- Maka akụkụ ezoro ezo na usoro LUKS2, agbakwunyere nkwado maka ịdoghachi ngwaọrụ ngọngọ na ofufe, na-akwụsịghị iji ha na sistemụ (dịka ọmụmaatụ, ị nwere ike gbanwee igodo ma ọ bụ ezoro ezo algorithm na-enweghị ikpughe nkebi ahụ);
- agbakwunyela nkwado maka mbipụta ọhụrụ nke protocol SCAP 1.3 (Security Content Automation Protocol) na OpenSCAP framework;
- Ụdị emelitere nke OpenSSH 8.0p1, Tuned 2.12, Chrony 3.5, samba 4.10.4. Agbakwunyere modul nwere alaka ọhụrụ nke PHP 7.3, Ruby 2.6, Node.js 12 na nginx 1.16 na ebe nchekwa AppStream (modul na-emelite na alaka ndị gara aga gara n'ihu). Agbakwunyere ngwugwu nwere GCC 9, LLVM 8.0.1, Rust 1.37 na Go 1.12.8 na mkpokọta Software;
- Emelitela ngwa nchọta SystemTap ka ọ bụrụ alaka ụlọ ọrụ 4.1, yana Valgrind memory debugging Toolkit emelitere ka ọ bụrụ ụdị 3.15;
- Agbakwunyela akụrụngwa nlele ahụike ọhụrụ na ngwaọrụ ntinye ihe nkesa njirimara (IdM, njikwa njirimara), nke na-eme ka njirimara nke nsogbu dị na ọrụ gburugburu na sava njirimara dị mfe. A na-eme ka ntinye na nhazi nke gburugburu IdM dị mfe, ekele maka nkwado maka ọrụ ndị nwere ike ime na ike ịwụnye modul. Nkwado agbakwunyere maka ọhịa ntụkwasị obi na-arụ ọrụ ndekọ dabere na Windows Server 2019.
- Agbanwela switcher desktọpụ mebere na nnọkọ GNOME Classic. Ngwa wijetị maka ịgbanwee n'etiti desktọpụ dị ugbu a n'akụkụ aka nri nke ala ala ma mee ya dị ka warara nke nwere mkpịsị aka desktọpụ (ka ịgbanwee gaa na desktọpụ ọzọ, pịa naanị thumbnail nke na-egosipụta ọdịnaya ya);
- DRM (Direct Rendering Manager) subsystem na ndị ọkwọ ụgbọ ala dị ala (amdgpu, nouveau, i915, mgag200) ka emelitere ka ọ dabara na Linux 5.1 kernel. Nkwado agbakwunyere maka AMD Raven 2, AMD Picasso, AMD Vega, Intel Amber Lake-Y na Intel Comet Lake-U sistemụ vidiyo;
- Ngwa maka ịkwalite RHEL 7.6 ruo RHEL 8.1 agbakwunyela nkwado maka ịkwalite na-enweghị ntinyeghachi maka ARM64, IBM POWER (obere endian) na ụlọ ọrụ IBM Z agbakwunyere usoro nkwalite nkwalite na njikwa weebụ. Ngwa mgbakwunye kokpiiti-leapp agbakwunyere iji weghachi steeti ma ọ bụrụ na enwere nsogbu n'oge mmelite ahụ. A na-ekewa akwụkwọ ndekọ aha / var na / usr ka ọ bụrụ ngalaba dị iche iche. Nkwado UEFI agbakwunyere. N'ime A na-emelite ngwugwu site na ebe nchekwa mgbakwunye (gụnyere ngwugwu ndị nwe ya);
- Onye nrụpụta ihe onyonyo agbakwunyela nkwado maka iwulite onyonyo maka Google Cloud na gburugburu igwe ojii Alibaba. Mgbe ị na-eke ndochi onyonyo, agbakwunyela ikike iji repo.git ka ịgụnye faịlụ ndị ọzọ sitere na ebe nchekwa Git aka ike;
- Agbakwunyela nlele ndị ọzọ na Glibc maka malloc iji chọpụta mgbe emebiri ihe mgbochi ebe nchekwa;
- A kpọgharịrị ngwugwu dnf-utils ka yum-utils maka ndakọrịta (ikike ịwụnye dnf-utils, mana yum-utils ga-edochi ngwugwu a na-akpaghị aka);
- Agbakwunyere mbipụta ọhụrụ nke Red Hat Enterprise Linux System Roles, usoro nke modul na ọrụ maka ibuga usoro nhazi nhazi nke etiti dabere na ihe nwere ike ime na nhazi nke subsystems iji mee ka ọrụ dị iche iche metụtara nchekwa, ịkparịta ụka n'Ịntanet, oge mmekọrịta, iwu SElinux na iji usoro kdump. Dịka ọmụmaatụ, ọrụ ọhụrụ
nchekwa na-enye gị ohere ịrụ ọrụ dị ka ijikwa usoro faịlụ na diski, na-arụ ọrụ na otu LVM na nkebi ezi uche; - Nchịkọta netwọk maka VXLAN na GENEVE tunnels mejuputa ikike ịhazi ngwugwu ICMP "Ebe a na-apụghị ịchọta", "Packet Too Big" na "Redirect Message", nke edozi nsogbu ahụ na enweghị ike iji ntụgharị ụzọ na ụzọ MTU Discovery na VXLAN na GENEVE. .
- Mmejuputa nnwale nke usoro XDP (eXpress Data Path), nke na-enye Linux ohere ịme mmemme BPF na ọkwa ọkwọ ụgbọ ala netwọkụ na ikike iji nweta ihe nchekwa ngwugwu DMA ozugbo yana na ọkwa tupu ekenye ihe nchekwa skbuff site na nchịkọta netwọkụ, yana akụrụngwa eBPF, mekọrịtara ya na kernel Linux 5.0. Nkwado nnwale agbakwunyere maka sistemụ kernel AF_XDP ();
- Enyere nkwado protocol netwọk zuru oke (Nkwukọrịta nke Inter-process Transparent), emebere iji hazie nzikọrịta ozi n'etiti usoro na ụyọkọ. Usoro ahụ na-enye ụzọ maka ngwa na-ekwurịta okwu ngwa ngwa na ntụkwasị obi, n'agbanyeghị ọnụ ọgụgụ dị na ụyọkọ ha na-agba ọsọ;
- Agbakwunyela usoro ọhụrụ maka ịchekwa isi ihe mkpofu ma ọ bụrụ na ọdịda agbakwunyere na intrarfs - "", na-arụ ọrụ n'oge mmalite nke loading;
- Agbakwunyere paramita kernel ọhụrụ ipcmni_extend, nke na-agbatị njedebe IPC ID site na 32 KB (bit 15) ruo 16 MB (bit 24), na-enye ohere ka ngwa na-eji akụkụ ebe nchekwa ndị ọzọ;
- Emelitere Ipset ka ọ wepụta 7.1 site na nkwado maka arụmọrụ IPSET_CMD_GET_BYNAME na IPSET_CMD_GET_BYINDEX;
- The rngd daemon, nke na-ejuputa entropy ọdọ mmiri nke pseudorandom nọmba generator, nwere onwe ya na mkpa na-agba ọsọ dị ka mgbọrọgwụ;
- Enyere nkwado zuru oke (Omni-Path Architecture) maka akụrụngwa nwere Host Fabric Interface (HFI) yana nkwado zuru oke maka ngwaọrụ Intel Optane DC Persistent Memory.
- kernels debug na ndabara gụnyere ihe nrụpụta UBSAN (Udefined Behavior Sanitizer), nke na-agbakwunye nlele ndị ọzọ na koodu agbakọtara iji chọpụta ọnọdụ mgbe omume mmemme na-akọwapụtaghị (dịka ọmụmaatụ, iji mgbanwe ndị na-abụghị static tupu ebido ha, kewaa. integers site na efu, ụdị integer mbinye aka na-erubigara ókè, iwepụ ihe nrịbama NULL, nsogbu na nhazi nrụzi, wdg);
- A na-emekọrịta osisi isi kernel nwere ezigbo oge ndọtị (kernel-rt) na koodu kernel RHEL 8 bụ isi;
- Onye ọkwọ ụgbọ ala ibmvnic agbakwunyere maka onye na-ahụ maka netwọkụ vNIC (Virtual Network Interface Controller) yana mmejuputa teknụzụ netwọọdụ mebere PowerVM. Mgbe ejiri ya na SR-IOV NIC, onye ọkwọ ụgbọ ala ọhụrụ na-enye ohere maka bandwit na njikwa njikwa ọrụ na ọkwa nkwụnye netwọkụ mebere, na-ebelata ikike ime ihe na-ebelata ibu CPU;
- Nkwado agbakwunyere maka mgbakwunye data iguzosi ike n'ezi ihe, nke na-enye gị ohere ichedo data site na mmebi mgbe ị na-ede ihe na nchekwa site na ịchekwa ihe mgbochi mmezi ọzọ;
- Nkwado nnwale agbakwunyere (Nhụchalụ teknụzụ) maka ngwugwu , nke na-enye nmstatectl ọba akwụkwọ na ịba uru maka ijikwa ntọala netwọk site na API nkwupụta (a na-akọwa ọnọdụ netwọk n'ụdị atụmatụ eburu ụzọ kọwaa);
- Nkwado nnwale agbakwunyere maka mmejuputa kernel-level TLS (KTLS) na izo ya ezo AES-GCM, yana nkwado nnwale maka OverlayFS, cgroup v2, , mdev () na DAX (nweta ozugbo na sistemụ faịlụ na-agafe cache ibe na-ejighi ọkwa ngwaọrụ ngọngọ) na ext4 na XFS;
- Nkwado ewepụrụ maka DSA, TLS 1.0 na TLS 1.1, bụ ndị ewepụrụ na ntọala DEFAULT wee kwaga LEGACY (“mmelite-crypto-policies —set LEGACY”);
- Ihe ngwugwu 389-ds-base-legacy-tools emebiela.
autd
ụlọ nche,
aha nnabata,
libidn,
net-ngwaọrụ,
scripts netwọk,
nss-pam-ldapd,
izipu ozi,
yp-ngwaọrụ
ypbind na ypserv. Enwere ike ịkwụsị ha na ntọhapụ dị ịrịba ama n'ọdịnihu; - Ejiri ihe mkpuchi na-akpọ NetworkManager site na nmcli dochie scripts ifup na ifdown (iji weghachite scripts ochie, ịkwesịrị ịgba ọsọ "yum install network-scripts").
isi: opennet.ru