Kampani ya Red Hat zida zogawa . Misonkhano yoyikirayi yakonzedwa kuti x86_64, s390x (IBM System z), ppc64le ndi Aarch64 zomangamanga, koma chifukwa kwa olembetsa okha a Red Hat Customer Portal. Magwero a Red Hat Enterprise Linux 8 rpm phukusi amagawidwa kudzera CentOS. Nthambi ya RHEL 8.x idzathandizidwa mpaka osachepera 2029.
Red Hat Enterprise Linux 8.1 inali kutulutsidwa koyamba kokonzedwa molingana ndi kakulidwe katsopano kodziwikiratu, komwe kumatanthauza kupangidwa kwa zotulutsa miyezi isanu ndi umodzi iliyonse panthawi yoyikiratu. Kukhala ndi chidziwitso cholondola chokhudza nthawi yomwe kutulutsidwa kwatsopano kudzasindikizidwa kumakupatsani mwayi wogwirizanitsa ndandanda yachitukuko cha mapulojekiti osiyanasiyana, kukonzekera pasadakhale kutulutsa kwatsopano, ndikukonzekera pomwe zosintha zidzasinthidwa.
Zimadziwika kuti zatsopano Zogulitsa za RHEL zimakhala ndi zigawo zingapo, kuphatikiza Fedora ngati choyambira champhamvu zatsopano, kuti mupeze ma phukusi opangidwa kuti atulutse pakati pa RHEL (RHEL)
Chithunzi chojambula cha minimalistic universal base (UBI, Universal Base Image) chogwiritsa ntchito muzotengera zakutali ndi kuti mugwiritse ntchito kwaulere RHEL pakupanga chitukuko.
Chinsinsi :
- Thandizo lathunthu pamakina ogwiritsira ntchito zigamba za Live zimaperekedwa () kuchotsa zofooka mu Linux kernel popanda kuyambiranso dongosolo komanso osayimitsa ntchito. M'mbuyomu, kpatch idasankhidwa ngati chinthu choyesera;
- Zotengera chimango Kutha kupanga mndandanda wazinthu zoyera ndi zakuda zakhazikitsidwa, zomwe zimakupatsani mwayi wosiyanitsa mapulogalamu omwe angayambitsidwe ndi wogwiritsa ntchito komanso omwe sangathe (mwachitsanzo, kuletsa kukhazikitsidwa kwa mafayilo osatsimikizika akunja). Lingaliro loletsa kapena kulola kukhazikitsidwa litha kupangidwa kutengera dzina la pulogalamuyo, njira, hashi yazinthu, ndi mtundu wa MIME. Kuyang'ana malamulo kumachitika panthawi yotsegula () ndi exec () mafoni, choncho akhoza kukhala ndi zotsatira zoipa pa ntchito;
- Zolembazo zikuphatikiza mbiri ya SELinux, yoyang'ana pakugwiritsa ntchito ndi zotengera zakutali ndikuloleza kuwongolera kowonjezereka pakupeza ntchito zomwe zikuyenda m'mitsuko kuti mulandire zida zamakina. Kuti apange malamulo a SELinux pazitsulo, chida chatsopano cha udica chaperekedwa, chomwe chimalola, poganizira za chidebe china, kuti apereke mwayi wopita kuzinthu zofunikira zakunja, monga kusungirako, zipangizo ndi maukonde. Zida za SELinux (libsepol, libselinux, libsemanage, policycoreutils, checkpolicy, mcstrans) zasinthidwa kuti zitulutse 2.9, ndi phukusi la SETools kuti lisinthe 4.2.2.
Yowonjezera mtundu watsopano wa SELinux, boltd_t, womwe umaletsa boltd, njira yoyendetsera zida za Thunderbolt 3 (boltd tsopano ikuyenda mu chidebe chochepa ndi SELinux). Anawonjezera kalasi yatsopano ya malamulo a SELinux - bpf, yomwe imayang'anira mwayi wa Berkeley Packet Filter (BPF) ndikuwunika ntchito za eBPF;
- Zimaphatikizapo mulu wa ma protocol (BGP4, MP-BGP, OSPFv2, OSPFv3, RIPv1, RIPv2, RIPng, PIM-SM/MSDP, LDP, IS-IS), yomwe inalowa m'malo mwa phukusi la Quagga (FRRouting is a fork of Quagga, kotero kuyanjana sikunakhudzidwe). );
- Pazigawo zobisika mumtundu wa LUKS2, chithandizo chawonjezedwa pakubwezeretsanso zida zotsekera pa ntchentche, osayimitsa kugwiritsa ntchito makinawo (mwachitsanzo, mutha kusintha makiyi kapena ma encryption algorithm popanda kutsitsa magawowo);
- Thandizo la kusindikiza kwatsopano kwa protocol ya SCAP 1.3 (Security Content Automation Protocol) yawonjezeredwa ku ndondomeko ya OpenSCAP;
- Zosinthidwa za OpenSSH 8.0p1, Tuned 2.12, chrony 3.5, samba 4.10.4. Ma module okhala ndi nthambi zatsopano za PHP 7.3, Ruby 2.6, Node.js 12 ndi nginx 1.16 awonjezedwa ku malo osungira a AppStream (kusintha ma module ndi nthambi zam'mbuyo kwapitilira). Maphukusi okhala ndi GCC 9, LLVM 8.0.1, Rust 1.37 ndi Go 1.12.8 awonjezedwa ku Mapulogalamu Osonkhanitsa;
- The SystemTap tracing toolkit yasinthidwa kukhala nthambi 4.1, ndipo Valgrind memory debugging toolkit yasinthidwa kuti ikhale 3.15;
- Chida chatsopano chowunika thanzi chawonjezedwa ku zida zotumizira ma seva (IdM, Identity Management), zomwe zimathandizira kuzindikira zovuta ndi magwiridwe antchito ndi seva yozindikiritsa. Kuyika ndi kusinthika kwa malo a IdM kumakhala kosavuta, chifukwa chothandizira maudindo Ansible komanso kuthekera koyika ma module. Thandizo lowonjezera la Active Directory Trusted Forests kutengera Windows Server 2019.
- Chosinthira cha desktop chasinthidwa mu gawo la GNOME Classic. Widget yosinthira pakati pa ma desktops tsopano ili kumanja kwa gulu lapansi ndipo idapangidwa ngati mzera wokhala ndi tizithunzi tapakompyuta (kuti musinthe pakompyuta ina, ingodinani pazithunzi zomwe zikuwonetsa zomwe zili mkati mwake);
- Dongosolo la DRM (Direct Rendering Manager) ndi madalaivala azithunzi otsika (amdgpu, nouveau, i915, mgag200) asinthidwa kuti agwirizane ndi Linux 5.1 kernel. Thandizo lowonjezera la AMD Raven 2, AMD Picasso, AMD Vega, Intel Amber Lake-Y ndi Intel Comet Lake-U mavidiyo ang'onoang'ono;
- Chida chothandizira kukweza RHEL 7.6 kukhala RHEL 8.1 chawonjezera thandizo pakukweza popanda kuyikanso kwa ARM64, IBM POWER (endian pang'ono) ndi zomangamanga za IBM Z. Njira yosinthiratu makina awonjezedwa pa intaneti. Anawonjezera pulogalamu yowonjezera ya cockpit-leapp kuti abwezeretse boma pakagwa mavuto panthawi yosintha. Zolemba za / var ndi / usr zimagawidwa m'magawo osiyanasiyana. Thandizo lowonjezera la UEFI. MU mapaketi amasinthidwa kuchokera ku Supplementary repository (kuphatikiza phukusi la eni);
- Image Builder yawonjezera chithandizo chomangira zithunzi za Google Cloud ndi Alibaba Cloud. Mukapanga kudzaza zithunzi, kuthekera kogwiritsa ntchito repo.git kwawonjezeredwa kuti muphatikize mafayilo owonjezera kuchokera ku malo osungira a Git;
- Macheke owonjezera awonjezedwa ku Glibc kuti malloc azindikire pamene zokumbukira zomwe zaperekedwa zawonongeka;
- Phukusi la dnf-utils lasinthidwa kukhala yum-utils kuti ligwirizane (kutha kukhazikitsa dnf-utils kumasungidwa, koma phukusili lidzasinthidwa ndi yum-utils);
- Anawonjezera kope latsopano la Red Hat Enterprise Linux System Roles, seti ya ma modules ndi maudindo ogwiritsira ntchito kasamalidwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe ka kayendetsedwe kake Mwachitsanzo, udindo watsopano
kusungirako kumakupatsani mwayi wochita ntchito monga kuyang'anira mafayilo pa disk, kugwira ntchito ndi magulu a LVM ndi magawo omveka; - Ma network a VXLAN ndi GENEVE tunnel adakhazikitsa kuthekera kokonza mapaketi a ICMP "Destination Unreachable", "Packet Too Big" ndi "Redirect Message", zomwe zidathetsa vutoli ndikulephera kugwiritsa ntchito kuwongolera njira ndi Njira ya MTU Discovery mu VXLAN ndi GENEVE. .
- Kukhazikitsa koyesera kwa XDP (eXpress Data Path) subsystem, yomwe imalola Linux kuyendetsa mapulogalamu a BPF pamlingo wa driver network ndi kuthekera kofikira mwachindunji pakiti ya DMA buffer komanso pa siteji isanagawidwe skbuff buffer ndi network stack, komanso zigawo za eBPF, zolumikizidwa ndi Linux 5.0 kernel. Anawonjezera chithandizo choyesera cha AF_XDP kernel subsystem ();
- Thandizo lonse la protocol ya netiweki yaperekedwa (Transparent Inter-process Communication), yopangidwa kuti ipangitse kulumikizana kwapakati pamagulu osiyanasiyana. Protocol imapereka njira yoti mapulogalamu azilankhulana mwachangu komanso modalirika, mosasamala kanthu kuti ndi ma node ati omwe ali mgulu lomwe akuyendetsa;
- Njira yatsopano yopulumutsira kutayira koyambira ngati yalephera yawonjezedwa ku initramfs - "", kugwira ntchito kumayambiriro kwa kutsitsa;
- Anawonjezera kernel parameter ipcmni_extend, yomwe imakulitsa malire a IPC ID kuchokera ku 32 KB (15 bits) kufika ku 16 MB (24 bits), kulola kuti mapulogalamu agwiritse ntchito zigawo zambiri za kukumbukira;
- Ipset yasinthidwa kuti itulutse 7.1 mothandizidwa ndi IPSET_CMD_GET_BYNAME ndi IPSET_CMD_GET_BYINDEX;
- The rngd daemon, yomwe imadzaza dziwe la entropy la jenereta ya nambala ya pseudorandom, imamasulidwa ku kufunikira koyenda ngati mizu;
- Thandizo lonse laperekedwa (Omni-Path Architecture) ya zida zokhala ndi Host Fabric Interface (HFI) komanso chithandizo chonse cha zida za Intel Optane DC Persistent Memory.
- Zosintha mwachisawawa zimaphatikizanso kupanga ndi chowunikira cha UBSAN (Undefined Behavior Sanitizer), chomwe chimawonjezera macheke owonjezera pama code omwe adapangidwa kuti azindikire zochitika zomwe pulogalamuyo imakhala yosadziwikiratu (mwachitsanzo, kugwiritsa ntchito zosintha zosakhazikika zisanayambike, kugawa. chiwerengero cha ziro, mitundu yambiri yosaina yosefukira, kuchotsa zolozera za NULL, mavuto ndi kalozera, ndi zina zotero);
- Mtengo woyambira wa kernel wokhala ndi zowonjezera zenizeni (kernel-rt) umalumikizidwa ndi RHEL 8 kernel code;
- Adawonjezera dalaivala wa ibmvnic wa vNIC (Virtual Network Interface Controller) network controller ndikukhazikitsa ukadaulo wapaintaneti wa PowerVM. Mukagwiritsidwa ntchito limodzi ndi SR-IOV NIC, dalaivala watsopano amalola bandwidth ndi khalidwe lautumiki pa mlingo wa adapter network, kuchepetsa kwambiri virtualization pamwamba ndi kuchepetsa CPU katundu;
- Thandizo lowonjezera la Data Integrity Extensions, zomwe zimakulolani kuti muteteze deta kuti isawonongeke polemba kusungirako mwa kusunga midadada yowonjezera yowonjezera;
- Anawonjezera thandizo loyesera (Zowonera Zaukadaulo) za phukusi , yomwe imapereka laibulale ya nmstatectl ndi zofunikira pakuwongolera zosintha zapaintaneti kudzera pa declarative API (malo ochezera amafotokozedwa ngati chiwembu chodziwikiratu);
- Kuthandizira koyeserera koyeserera kwa kernel-level TLS (KTLS) ndi encryption yochokera ku AES-GCM, komanso chithandizo choyesera cha OverlayFS, cgroup v2, , mdev () ndi DAX (kufikira mwachindunji pamafayilo akudutsa posungira masamba osagwiritsa ntchito mulingo wa chipangizo chotchinga) mu ext4 ndi XFS;
- Thandizo lochotsedwa kwa DSA, TLS 1.0 ndi TLS 1.1, zomwe zinachotsedwa ku DEFAULT set ndikupita ku LEGACY ("update-crypto-policies -set LEGACY");
- Maphukusi a 389-ds-base-legacy-tools achotsedwa ntchito.
authd
custodia,
dzina la alendo,
libidn,
zida zamakono,
scripts network,
nss-pam-ldapd,
sendmail,
yp-zida
ypbind ndi ypsv. Zitha kuthetsedwa pakumasulidwa kwakukulu kwamtsogolo; - Zolemba za ifup ndi ifdown zasinthidwa ndi zokutira zomwe zimayitana NetworkManager kudzera nmcli (kubwezeretsa zolemba zakale, muyenera kuyendetsa "yum install network-scripts").
Source: opennet.ru