ProHoster > Блог > ozi ịntanetị > Oracle ebipụtala Unbreakable Enterprise Kernel 6

Oracle ebipụtala Unbreakable Enterprise Kernel 6

Ụlọ ọrụ Oracle ọkọnọ mbụ ntọhapụ kwụsiri ike Uwa a na-apụghị ịgbagha agbagha 6 (UEK R6), ihe ndọtị nke Linux kernel, edobere maka ojiji na nkesa Oracle Linux dị ka ihe ọzọ na ngwugwu kernel ọkọlọtọ sitere na Red Hat Enterprise Linux. kernel dị naanị maka ụlọ ọrụ x86_64 na ARM64 (aarch64). Isi mmalite kernel, gụnyere ndakpọ n'ime patches nke ọ bụla, bipụtara na ebe nchekwa Oracle ọha Git.

Ngwungwu kernel Enterprise enweghị ike imebi dabere na kernel Linux 5.4 (UEK R5 dabere na kernel 4.14), nke emelitere site na njirimara ọhụrụ, njikarịcha na ndozi, a na-anwalekwa maka ndakọrịta na ọtụtụ ngwa na-arụ ọrụ na RHEL, ma na-ahazi ya ka ọ rụọ ọrụ na ngwanrọ mmepụta ihe na ngwa Oracle. A na-akwado ntinye na ngwugwu src na kernel UEK R6 maka Linux Oracle 7.x и 8.x. Akwụsịla nkwado maka ngalaba 6.x; iji UEK R6, ị ga-emelite sistemụ ahụ na Oracle Linux 7 (ọ nweghị ihe mgbochi iji kernel a na ụdị RHEL, CentOS na Linux Scientific).

Igodo ihe ọhụrụ Ụlọ ọrụ anaghị emebi emebi 6:

  • Mgbasawanye nkwado maka sistemụ dabere na 64-bit ARM architecture (aarch64).
  • Emejuputala nkwado maka atụmatụ niile nke Cgroup v2.
  • Emejuputala usoro ktask ka ọ bụrụ otu ihe aga-eme na kernel na-eri nnukwu akụrụngwa CPU. Ọmụmaatụ, iji ktask, myirịta nke arụmọrụ iji kpochapụ ebe dị iche iche nke ibe ebe nchekwa ma ọ bụ hazie ndepụta inodes nwere ike ịhazi;
  • Enyerela ụdị kswapd yiri ya ka ọ hazie swaps ibe ebe nchekwa n'otu oge, na-ebelata ọnụ ọgụgụ nke swaps ozugbo (synchronous). Ka ọnụ ọgụgụ ibe ebe nchekwa efu na-ebelata, kswapd na-eme nyocha iji chọpụta ibe ndị ejighị ya nwere ike ịtọhapụ.
  • Nkwado maka nyochaa iguzosi ike n'ezi ihe nke onyonyo kernel na ngwa ngwa site na iji mbinye aka dijitalụ mgbe ị na-ebunye kernel site na iji usoro Kexec (na-ebufe kernel site na sistemụ ebugorolarị).
  • Emeela ka arụ ọrụ nke sistemu njikwa ebe nchekwa mebere, arụ ọrụ nke ikpochapụ ebe nchekwa na ibe cache ka emelitere, yana nhazi nke ịnweta ibe ebe nchekwa anaghị ekenye (mmejọ ibe).
  • Agbasawanye nkwado NVDIMM, ebe nchekwa a na-adịgide adịgide nwere ike iji ugbu a dịka RAM ọdịnala.
  • Emeela mgbanwe na sistemụ nbibi siri ike DTrace 2.0, nke sụgharịa iji eBPF kernel subsystem. DTrace na-agba ugbu a n'elu eBPF, dịka otu ngwaọrụ nchọta Linux dị na-agba n'elu eBPF.
  • Emeela nkwalite na sistemụ faịlụ OCFS2 (Oracle Cluster File System).
  • Nkwado emelitere maka sistemụ faịlụ Btrfs. Agbakwunyere ike iji Btrfs na nkebi mgbọrọgwụ. Agbakwunyela nhọrọ na installer ịhọrọ Btrfs mgbe ị na-ahazi ngwaọrụ. Agbakwunyere ike idowe faịlụ swap na nkebi na Btrfs. Btrfs agbakwunyela nkwado maka mkpakọ site na iji ZStandard algọridim.
  • Nkwado agbakwunyere maka interface maka asynchronous I/O - io_uring, nke a ma ama maka nkwado ya maka ntuli aka I/O yana ikike iji ma ọ bụ enweghị nchekwa. N'ihe gbasara arụmọrụ, io_uring dị nso na SPDK ma na-aga n'ihu libaio nke ukwuu mgbe ọ na-arụ ọrụ na ntuli aka. Iji jiri io_uring na njedebe ngwa na-agba ọsọ na ohere onye ọrụ, a kwadebere ụlọ akwụkwọ ọbá akwụkwọ, na-enye njikọ dị elu n'elu interface kernel;
  • Nkwado ọnọdụ agbakwunyere adiantum maka ngwa ngwa nchekwa nzuzo.
  • Nkwado agbakwunyere maka mkpakọ site na iji algọridim Nke ọkọlọtọ (zstd).
  • Sistemụ faịlụ ext4 na-eji timestamps 64-bit n'ime ogige superblock.
  • XFS gụnyere ngwaọrụ maka ịkọ ọkwa iguzosi ike n'ezi ihe nke sistemụ faịlụ n'oge arụ ọrụ yana nweta ọkwa na ogbugbu nke fsck na ofufe.
  • Agbanyela ngwugwu TCP ndabara gaa na "Oge ọpụpụ mbụ" kama "Ọsọ dị ka enwere ike" mgbe ị na-eziga ngwugwu. Enyere nkwado GRO (Generic Receive Offload) maka UDP. Nkwado agbakwunyere maka ịnata na izipu ngwugwu TCP na ọnọdụ oyiri efu.
  • Mmejuputa iwu nke TLS protocol na ọkwa kernel (KTLS) gụnyere, nke enwere ike iji ugbu a ọ bụghị naanị maka izipu, kamakwa maka data natara.
  • Agbanyere dị ka ndabere maka firewall na ndabara
    ihe efu. agbakwunyere nkwado nhọrọ bpfilter.

  • Nkwado agbakwunyere maka sistemụ XDP (eXpress Data Path), nke na-enye ohere ịme mmemme BPF na Linux na ọkwa ọkwọ ụgbọ ala netwọkụ nwere ikike ịnweta ihe nchekwa ngwugwu DMA ozugbo yana na ọkwa tupu ekenye ihe nchekwa skbuff site na nchịkọta netwọkụ.
  • Emelitere yana gbanye ya mgbe ị na-eji UEFI Secure Boot mode Mkpọchi, nke na-egbochi onye ọrụ ohere ịnweta kernel ma gbochie UEFI Secure Boot bypass ụzọ. Dịka ọmụmaatụ, na ọnọdụ mkpọchi, ịnweta / dev/mem, / dev/kmem, / dev/port, /proc/kcore, debugfs, kprobes debugging mode, mmiotrace, tracefs, BPF, PCMCIA CIS (Kaadị Ozi Structure), ụfọdụ interfaces nwere oke ACPI na ndekọ MSR nke CPU, akpọchie oku na kexec_file na kexec_load, amachibidoro ọnọdụ ihi ụra, amachibidoro iji DMA maka ngwaọrụ PCI, amachibidoro mbubata koodu ACPI site na mgbanwe EFI, enweghị ike iji ọdụ ụgbọ mmiri I/O. ekwe, gụnyere ịgbanwe nọmba nkwụsịtụ yana ọdụ ụgbọ mmiri I/O maka ọdụ ụgbọ mmiri.
  • Nkwado agbakwunyere maka ntụzịaka IBRS emelitere (Nkwalite Akwụsịtụ Ntule Na-adịghị Azịza nke Alaka), nke na-enye gị ohere ịmegharị ma gbanyụọ ntule nke ntuziaka n'oge nhazi nkwụsịtụ, oku sistemu, na mgbanwe ndị gbara ya gburugburu. Site na nkwado IBRS kwalitere, a na-eji usoro a iji chebe megide mwakpo Specter V2 kama Retpoline, ebe ọ na-enye ohere maka ịrụ ọrụ dị elu.
  • Nchekwa emelitere na akwụkwọ ndekọ aha ụwa. N'ime akwụkwọ ndekọ aha ndị dị otú ahụ, amachibidoro ịmepụta faịlụ FIFO na faịlụ ndị ọrụ nwere na-adabaghị onye nwe akwụkwọ ndekọ aha ya na ọkọlọtọ nnyapade.
  • Site na ndabara na sistemu ARM, a na-eme ka oghere oghere kernel gbanyere na sistemu (KASLR). Agbanyere nyocha ntụnye maka Aarch64.
  • Nkwado agbakwunyere maka "NVMe over Fabrics TCP".
  • agbakwunyere virtio-pmem ọkwọ ụgbọ ala iji nye ohere ịnweta ngwaọrụ nchekwa oghere nwere mapụtara adreesị anụ ahụ dịka NVDIMM.

isi: opennet.ru

Tinye a comment