ProHoster > Блог > ozi ịntanetị > FreeBSD Q2019 XNUMX mkpesa ọganihu

FreeBSD Q2019 XNUMX mkpesa ọganihu

bipụtara akụkọ banyere mmepe nke ọrụ FreeBSD site na Eprel ruo June 2019. N'ime mgbanwe ndị anyị nwere ike ịhụ:

  • Ihe gbasara izugbe na usoro
    • Ndị otu Core kpebiri iguzobe otu ndị na-arụ ọrụ iji chọpụta ohere nke ibuga koodu isi mmalite sitere na sistemụ njikwa isi mmalite Subversion gaa na sistemụ Git enweghị isi.
    • Emere nnwale fuzz nke kernel FreeBSD site na iji sistemụ syzkaller na ọtụtụ ndebiri achọpụtara ka emeziri. Agbakwunyere oyi akwa maka nnwale na-enweghị atụ nke ụlọ akwụkwọ maka ndakọrịta na gburugburu 32-bit na sistemụ nwere kernel 64-bit. Ejiri ikike ịgba ọsọ syzkaller na igwe mebere bhyve dabere. N'ọkwa na-esote, a na-eme atụmatụ ịgbasa mkpuchi nke ule oku sistemụ, jiri LLVM sanitizer lelee kernel, jiri netdump chekwaa mkpofu kernel n'oge mkpọka n'oge ule fuzzing, wdg.
    • Ọrụ amalitela na imelite mmejuputa zlib na ọkwa kernel. Maka ohere kernel na koodu zlib, aha contrib/zlib ka ahagharịrị ka ọ bụrụ sys/contrib/zlib, a kpọgharịrị faịlụ nkụnye eji isi mee crc.h iji zere esemokwu na zlib/crc.h. Koodu ihe nketa kpochara nke dabere na zlib wee bufee. Na-esote, a na-eme atụmatụ ịnye ikike iji wuo kernel n'otu oge na zlib ochie na nke ọhụrụ maka nnyefe nwayọọ nwayọọ na ụdị ọrụ ọhụrụ nke na-eji mkpakọ;
    • Emelitela akụrụngwa emulation gburugburu Linux (Linuxulator). Nkwado abawanyela maka ngwa nbibi Linux dị ka ike strace. Agbakwụnyela ngwugwu linux-c7-strace na ọdụ ụgbọ mmiri, nke enwere ike iji chọta faịlụ Linux nwere ike rụọ ọrụ kama ịbụ ọkọlọtọ truss na ktrace utilities, nke na-enweghị ike depụta ụfọdụ ọkọlọtọ na sistemu Linux akọwapụtara. Na mgbakwunye, ngwugwu linux-ltp nwere Linux Test Project executables agbakwunyere na nsogbu ndakọrịta na executables jikọtara ya na ụdị glibc ọhụrụ;
    • A na-ebufe mmejuputa ọrụ nkwụsịtụ na-egbu oge na usoro pmap na iji usoro nhazi usoro nhazi nke na-arụ ọrụ na-enweghị mkpọchi, nke mere ka o kwe omume iji dozie nsogbu scalability mgbe ị na-arụ ọrụ ọnụ ọgụgụ dị ukwuu na-enweghị atụ;
    • Agbanwewo usoro maka igbochi vnode n'oge a na-eme oku usoro nke ezinụlọ execve () nke mere ka o kwe omume ịrụ ọrụ dị ukwuu mgbe ị na-eme otu faịlụ execve () maka otu faịlụ (dịka ọmụmaatụ, mgbe ị na-arụ ọrụ mgbakọ na parallelization). nke mkpokọ igba egbe;
  • Nche
    • Bhyve hypervisor na-aga n'ihu na-akwalite nkwado maka Mbugharị Live nke gburugburu ndị ọbịa site n'otu onye ọbịa gaa na nke ọzọ yana ọrụ Chekwa / Weghachite, nke na-enye gị ohere ifriizi usoro ndị ọbịa, na-echekwa steeti ahụ na faịlụ, wee maliteghachi igbu ya.
    • Site na iji ọba akwụkwọ libvdsk, bhyve agbakwunyela nkwado maka onyonyo diski n'ụdị QCOW2. Na-achọ nrụnye ka ọ rụọ ọrụ
      pụrụ iche gbanwetụrụ ụdị bhyve, nke agbanweela ka ọ jiri ndị na-ahụ maka ọrụ faịlụ dabere na libvdsk. N'ime oge mkpesa, libvdsk rụkwara ọrụ iji mee ka ntinye nkwado maka usoro ọhụrụ dị mfe, ịrụ ọrụ ọgụgụ na ide ka mma, yana nkwado gbakwunyere maka Copy-On-Dee. N'ime ọrụ ndị ọzọ fọdụrụnụ, a na-ahụta njikọ nke libvdsk n'ime isi nhazi nke bhyve;

    • Agbakwunyela usoro maka ịnakọta ozi okporo ụzọ na ọdụ ụgbọ mmiri
      Maltrail, nke na-enye gị ohere ịmepụta ọnyà maka arịrịọ netwọk ọjọọ (IP na ngalaba sitere na blacklists na-enyocha) ma ziga ozi gbasara ọrụ achọpụtara na ihe nkesa etiti maka igbochi ma ọ bụ nyocha nke mgbalị ọgụ;

    • Agbakwụnyela ikpo okwu n'ọdụ ụgbọ mmiri maka ịchọpụta mwakpo, nyocha ndekọ na nyochaa iguzosi ike n'ezi faịlụ. Wazuh ( ndụdụ nke Ossec na nkwado maka mwekota na ELK-nkpokọ);
  • Sistemụ netwọkụ
    • Emelitela onye ọkwọ ụgbọ ala ena iji kwado ihe nkwụnye netwọkụ nke abụọ nke ENAv2 (Elastic Network Adapter) eji na akụrụngwa Elastic Compute Cloud (EC2) iji hazie nkwukọrịta n'etiti oghere EC2 na ọsọ ọsọ ruo 25 Gb / s. Agbakwunyela nkwado NETMAP na ọkwọ ụgbọala ena.
    • FreeBSD HEAD nakweere nchịkọta MMC/SD ọhụrụ, dabere na usoro CAM ma na-enye gị ohere ijikọ ngwaọrụ na SDIO (Secure Digital I/O) interface. Dịka ọmụmaatụ, a na-eji SDIO na WiFi na modul Bluetooth maka ọtụtụ bọọdụ, dị ka Raspberry Pi 3. Nchịkọta ọhụrụ ahụ na-enyekwa ohere iji interface CAM zipụ iwu SD site na ngwa na oghere ọrụ, nke na-eme ka o kwe omume ịmepụta ngwaọrụ. ndị ọkwọ ụgbọala na-arụ ọrụ na ọkwa onye ọrụ. Ọrụ amalitela n'ịmepụta ndị ọkwọ ụgbọ ala maka ibe ikuku ikuku Broadcom na-arụ ọrụ na ọnọdụ FullMAC (n'akụkụ mgbawa ọ na-eme ụdị sistemụ arụmọrụ nke ya na mmejuputa nke ngwugwu ikuku 802.11);
    • A na-arụ ọrụ iji mejuputa NFSv4.2 (RFC-7862) maka FreeBSD. Ụdị NFS ọhụrụ na-agbakwụnye nkwado maka posix_fadvise, ọrụ posix_fallocate, SEEKHOLE/SEEKDATA ụdịdị na lseek, na ọrụ nke imegharị mpaghara nke akụkụ nke faịlụ na ihe nkesa (na-enyefeghị onye ahịa).

      FreeBSD na-enye nkwado bụ isi ugbu a maka ọrụ LayoutError, IOAdvise, Detuo na Detuo. Naanị ihe fọdụrụ bụ iji mejuputa ọrụ achọ chọrọ iji lseek(SEEKHOLE/SEEKDATA) na NFS. A na-eme atụmatụ nkwado NFSv4.2 maka FreeBSD 13;

  • Sistemụ nchekwa na faịlụ
    • Ihe oru ngo iji megharia onye ọkwọ ụgbọ ala maka FUSE (Sistemụ faịlụ na USERspace), nke na-enye ohere ịmepụta mmejuputa usoro faịlụ na oghere onye ọrụ, na-eru nso. Ọkwọ ụgbọala e butere na mbụ emechiela ya ma nwee ọtụtụ ahụhụ. Dị ka akụkụ nke ọrụ nkwalite ndị ọkwọ ụgbọala, nkwado maka FUSE 7.23 protocol etinyere (ụdị 7.8 gara aga, ewepụtara afọ 11 gara aga kwadoro), agbakwunyere koodu iji lelee ikike ịnweta n'akụkụ kernel ("-o default_permissions"), na-akpọ ka Agbakwunyere VOP_MKNOD, VOP_BMAP na VOP_ADVLOCK, ikike ịkwụsị ọrụ FUSE, gbakwunyere nkwado maka ọkpọkọ na-akpọghị aha na sockets unix na fufs, ikike iji kqueue maka / dev / fuse, kwere ka emelite mount parameters via "mount -u", agbakwunyere nkwado. maka mbupụ fufs site na NFS, emejuputa atumatu RLIMIT_FSIZE, gbakwunyere FOPEN_KEEP_CACHE flags na FUSE_ASYNC_READ, emebela njikarịcha arụmọrụ dị mkpa yana nhazi caching;
    • Agbakwunyela nkwado maka ọrụ BIO_DELETE na koodu swap pager, nke na-enye gị ohere iji iwu TRIM mgbe ị na-ewepụ ihe mgbochi na draịva SSD iji bulie ndụ ọrụ ha.
  • Nkwado ngwaike
    • Ọrụ na-aga n'ihu iji mejuputa nkwado maka ARM64 SoC Broadcom BCM5871X na ndị na-arụ ọrụ ARMv8 Cortex-A57, nke ezubere iji mee ihe na ndị na-anya ụgbọ mmiri, ọnụ ụzọ ámá na nchekwa netwọk. N'ime oge akụkọ, nkwado maka ụgbọ ala iProc PCIe dị n'ime na nke mpụga, agbakwunyere nkwado maka BNXT Ethernet, a na-arụkwa ọrụ iji jiri igwe crypto arụnyere arụ ọrụ iji mee ka IPsec dịkwuo elu. A na-atụ anya ntinye nke koodu n'ime ngalaba HEAD na ọkara nke abụọ nke afọ;
    • Ọrụ amalitela na nkwado maka 64-bit SoC NXP LS1046A dabere na ARMv8 Cortex-A72 processor nwere igwe nrụnye ngwa ngwa nhazi netwọk agbakwunyere, 10 Gb Ethernet, PCIe 3.0, SATA 3.0 na USB 3.0. Emebelarị nkwado maka ikpo okwu ntọala (SMP ọtụtụ onye ọrụ) na SATA 3.0. Nkwado maka USB 3.0, SD/MMC na I2C nọ na mmepe. Atụmatụ gụnyere nkwado maka Ethernet, GPIO na QSPI. A na-atụ anya mmecha ọrụ na nsonye na ngalaba HEAD na nkeji anọ nke 4.
    • Ndị ọkwọ ụgbọala mlx5en na mlx5ib emelitere maka Mellanox ConnectX-4 [Lx], ConnectX-5 [Ex], na ConnectX-6 [Dx] Ethernet na InfiniBand nkwụnye. Nkwado agbakwunyere maka ihe nkwụnye Mellanox Socket Direct (ConnectX-6), na-enye ohere maka ntinye ihe ruru 200Gb/s na bọs PCIe Gen 3.0. Maka ibe ibe BlueField multi-core, agbakwunyela nkwado maka ọkwọ ụgbọ ala RShim. Agbakwunyela ngwugwu mstflint nke nwere ngwa nyocha maka ihe nkwụnye Mellanox na ọdụ ụgbọ mmiri;
  • Ngwa na usoro ọdụ ụgbọ mmiri
    • Emelitela ihe nchịkọta eserese eserese. Ebubatala ọkwọ ụgbọ ala drm.ko (Direct Rendering Manager) site na kernel Linux 5.0. A na-ewere ọkwọ ụgbọ ala a dị ka nnwale ma tinye ya na osisi ọdụ ụgbọ mmiri dị ka eserese/drm-devel-kmod. Ebe ọ bụ na onye ọkwọ ụgbọ ala na-eji usoro Linux KPI emelitere ka ọ dakọtara na Linux kernel DRM API, FreeBSD CURRENT chọrọ ka ọ na-agba ọsọ. Onye ọkwọ ụgbọ ala vboxvideo.ko maka VirtualBox mebere GPU esiwokwa na Linux ebubata ya. Emelitela ngwugwu Mesa ka ọ hapụ 18.3.2 wee gbanwee iji LLVM site na ọdụ ụgbọ mmiri devel/llvm80 kama devel/llvm60.
    • Osisi ọdụ ụgbọ mmiri FreeBSD karịrị ọdụ ụgbọ mmiri 37000, ọnụ ọgụgụ ndị PR na-emechighị emechi ka dị na 2146. N'ime oge mkpesa, 7837 gbanwere site na ndị mmepe 172. Ndị sonyere ọhụrụ atọ nwetara ikike nkwado. Otu n'ime mmelite dị ịrịba ama na ọdụ ụgbọ mmiri bụ: MySQL 5.7, Python 3.6, Ruby 2.5, Samba 4.8, Julia 1.0, Firefox 68.0, Chromium 75.0.3770.100. Agbanwela ọdụ ụgbọ mmiri Go niile ka ọ jiri ọkọlọtọ "USES=go". Etinyere ọkọlọtọ "USES=cabal" na njikwa ngwugwu Cabal ejiri maka koodu Haskell. Agbanyere ọnọdụ nchekwa njupụta siri ike. Ụdị Python nke ndabara bụ 3.6 kama 2.7.
    • A kwadola mwepụta akụrụngwa nsysctl 1.0, nke na-enye analogue na /sbin/sysctl na-eji libxo maka mmepụta na ịnye nhọrọ nhọrọ gbasaa. Enwere ike iji Nsysctl lelee ọnọdụ nke ụkpụrụ sysctl ma wepụta ozi gbasara ihe n'ụdị ahaziri ahazi. Mpụta na ụdị XML, JSON na HTML ga-ekwe omume;

isi: opennet.ru

Tinye a comment