ProHoster > Blog > talafou initaneti > Tuuina atu o le Red Hat Enterprise Linux 8.9 tufatufaina

Tuuina atu o le Red Hat Enterprise Linux 8.9 tufatufaina

Ina ua maeʻa le tatalaina o le Red Hat Enterprise Linux 9.3, o se faʻafouga i le lala muamua o Red Hat Enterprise Linux 8.9 na faʻasalalau, lea e lagolagoina e tutusa ma le RHEL 9.x lala ma o le a lagolagoina a itiiti mai seia oʻo i le 2029. Faʻapipiʻi fausia ua saunia mo x86_64, s390x (IBM System z), ppc64le ma Aarch64 architectures, ae o loʻo avanoa mo le download naʻo tagata faʻapipiʻi Red Hat Customer Portal (CentOS Stream 9 iso ata ma RHEL e leai se totogi mo tagata atiae e mafai foi ona faʻaaogaina).

E pei o le tulaga o le RHEL 9 lala, o faʻamaumauga autu o le RHEL 8 rpm afifi e le o toe faʻasalalau faʻalauaʻitele e ala i le CentOS Git repository, ae o loʻo avanoa pea i tagata faʻatau a le kamupani e ala i se vaega tapunia o le saite, o loʻo i ai se maliega faʻaoga. (EULA) fa'asa le toe tufatufaina o fa'amaumauga. E mafai ona maua le code source i le CentOS Stream repository, ae e leʻo faʻamaopoopoina atoatoa ma le RHEL ma o faʻamatalaga lata mai o afifi e le masani ona fetaui ma afifi mai RHEL. Rocky Linux, Oracle ma SUSE ua tuʻufaʻatasia ma o loʻo toe gaosia nei punaʻoa o RHEL faʻamalolo rpm afifi o se vaega o le OpenELA poloketi. AlmaLinux ua sui i le faʻaogaina o le CentOS Stream repository ma faʻatagaina mo nai eseesega laiti i amioga (atonu e ese i le tulaga taʻitasi patch), ae faʻatumauina le fesoʻotaʻiga binary i le tulaga ABI.

O le sauniuniga o faʻasalalauga fou a Red Hat Enterprise Linux 8.x o loʻo faʻatinoina e tusa ai ma le taamilosaga o le atinaʻe, lea e faʻaalia ai le faʻavaeina o faʻasalalauga i le ono masina i se taimi atofaina. Seia oʻo i le 2024, o le 8.x lala o le a i ai i le tulaga lagolago atoatoa, faʻaalia le aofia ai o le faʻaleleia atili o galuega, a maeʻa ona agai atu i le tulaga o le tausiga, lea o le a faʻamuamua ai le faʻaleleia o pusa ma le saogalemu, faʻatasi ai ma faʻaleleia laiti e fesoʻotaʻi ma le lagolago. faiga fa'apitoa tau meafaigaluega.

Suiga autu:

  • O le tu'ufa'atasiga e aofia ai fa'asologa fou o tagata fa'apipi'i ma mea faigaluega mo tagata atia'e: GCC Toolset 13, LLVM Toolset 16.0.6, Rust Toolset 1.71.1, Go Toolset 1.20.10, Node.js 20, Valgrind 3.21, SystemTap 4.9, elfutils 0.189 21 -openjdk (java-17-openjdk, java-11-openjdk ma java-1.8.0-openjdk o loʻo faʻaauau foi ona faʻatau).
  • Fa'afouina le 'au'aunaga ma fa'apipi'i: samba 4.18.4, 389-ds-base 1.4.3.35, OpenSCAP 1.3.8, Grafana 9.2.10, opencryptoki 3.21.0, iproute 6.2.0, libnftnl 1.2.2, makedumpfile 1.7.2 Podman 4.6.
  • Lagolago mo le faʻaosoina i le UEFI mode ua faʻaopoopoina i ata AMI mo AWS EC2 ao siosiomaga.
  • O le "inst.wait_for_disks" parakalafa ua faʻaopoopoina i faʻalapotopotoga faʻapipiʻi, lea e faʻamaonia ai le taimi faʻatali mo le faila kickstart e utaina pe mo avetaavale ia saunia i le faagasologa o le taʻavale.
  • I faila kickstart, ua fa'aopoopoina filifiliga fou "--ipv4-dns-search" ma le "--ipv6-dns-search" i le poloaiga feso'ota'iga e seti ai le fa'avae доменов mo le fa'atonuga "search" i le /etc/resolv.conf, ma filifiliga "--ipv4-ignore-auto-dns" ma le "--ipv6-ignore-auto-dns" e le amana'ia ai le toe aumaia o fa'atulagaga DNS e ala i le DHCP.
  • Ina ia fa'afaigofieina fa'afitauli fa'aletonu, ua fa'aopoopoina e le fapolicyd auaunaga le fa'asalalauina o numera tulafono mo vala'au e te'ena i le fanotify API.
  • ANSSI-BP-028 (French National Agency for the Security of Information Systems) ua toe faʻafouina faʻamatalaga saogalemu i le version 2.0.
  • Lagolago mo FANOTIFY mea tutupu ua faaopoopo i meafaigaluega su'etusi ma fanua fan_type (ituaiga mea e tupu), fan_info (faamatalaga fesootai), sub_trust ma obj_trust (tulaga faatuatuaina mo le mataupu ma mea o le mea na tupu) ua faasaoina i le ogalaau.
  • Ua mafai nei e le Postfix ona siaki faamaumauga a le DNS SRV e iloa ai le 'host' ma le 'port' o se 'au'aunaga meli. sapalai, lea o le a faʻaaogaina mo le fesiitaiga o savali. O lenei foliga ua fautuaina e mafai ona faʻaaogaina i atinaʻe e faʻaaogaina auaunaga ma numera o le uafu fesoʻotaʻiga ua vaevaeina faʻafuaseʻi e momoli ai savali imeli.
  • O le vsftpd FTP server e lagolagoina le faʻaogaina o le TLS 1.3 protocol.
  • O le ipu-filters afifi e faʻaopoopoina ai se avetaʻavale LF-i-CRLF e mafai ona faʻaaogaina e faaliliu ai le "\n" (line feed) mataitusi i le "\r\n" (carriage return and line feed) mataitusi mo lomitusi e na o faila faila- fa'ai'u laina faiga "\r\n".
  • Ua fa'aleleia atili le saogalemu o fa'atonuga o auaunaga nftables. O le /etc/sysconfig/nftables/nat.nft ruleset e aofia ai se filifili fou do_masquerade e siaki ai le maualuga o le faʻavasegaina o numera o faʻailoga puna e faʻaitiitia ai le lamatiaga o se osofaʻiga a Port Shadows (CVE-2021-3773).
  • Ua faaopoopo e NetworkManager le lagolago mo le filifiliga "leai-aaaa" i le resolv.conf, lea e le mafai ai ona fesili DNS mo faamaumauga AAAA (fuafuaina se tuatusi IPv6 mai le igoa talimalo). Lagolago mo le faʻapipiʻiina o le AWS Red Hat Enterprise Linux EC2 faʻaaogaina IMDSv2 (Instance Metadata Service Version 2) faʻailoga ua faʻaopoopo i le nm-cloud-setup utility.
  • Ina ia puipuia mai osofaʻiga a Specter v2 e fesoʻotaʻi ma le faʻataunuʻuina o faʻatonuga, o le AutoIBRS (Automatic Indirect Branch Restricted Speculation) ua faʻaopoopoina, lagolagoina i AMD CPU e amata ile EPYC 9004 Genoa aiga.
  • O le avetaavale Intel QAT ma le lagolago mo Intel Quick Assist Technology 6.2xx/401xx masini ua aveese mai le Linux kernel 402.
  • Faʻaopoopo le tomai e faʻamaonia ai se UUID pe a fatuina se faila faila GFS2 (ua faʻaopoopo le "-U" poloaiga i le mkfs.gfs2 aoga).
  • FUSE3 fa'aopoopoina le malosi e fa'aleaogaina ai se tusi fa'asinomaga e aunoa ma le otometi ona aveese fa'amaufa'ailoga e feso'ota'i ma lena fa'ailoga.
  • Ua fa'alauteleina le agava'a mo fuifui ma faiga fa'apalepale fa'aletonu: Ua fa'aopoopoina le lagolago mo le fa'aogaina o faiga fa'avae i le fa'aputuga o puna'oa sui IPaddr2 ma IPsrcaddr. Lagolago mo le EFS (Amazon Elastic File System) ua fa'aopoopoina i le ocf: heartbeat: Filesystem agent. Lagolago mo le SNMPv3 protocol ua faaopoopo i le alert_snmp.sh.sample agent.
  • Suiga ua faʻaopoopo i le Glibc faʻatasi ai ma faʻataʻitaʻiga e faʻaleleia ai le faʻatinoga i faiga faʻatasi ma Intel Xeon v5 CPUs.
  • Lagolago atoatoa mo kata fa'akomepiuta Intel Arc A-Series (Alchemist po'o le DG2) o lo'o tu'uina atu.
  • Fa'aopoopo i ai se matafaioi fa'a-fa'atonu e fa'atautaia ma fa'apipi'i vaega fa'a-systemd. Ua fa'aopoopoina se matafaioi fa'atonu mo le fa'apipi'iina, fa'atulagaina, fa'afoe ma fa'agaoioia le PostgreSQL DBMS. Ua faʻaopoopoina se matafaioi faʻapitoa mo le keylime toolkit, lea e faʻafaigofie ai le faʻatulagaina o le Keylime resitara ma faʻamaonia, faʻaaogaina e faʻamaonia ai le moni ma faʻaauau le mataʻituina o le faʻamaoni o le faiga i fafo. Lagolago mo le faʻamalamalamaina, suia ma le tapeina o ipset ua faʻaopoopoina i le vaega o le firewall system. Ua fa'alauteleina matafaioi mo Podman, Kdump, Teuga ma le Microsoft SQL Server.
  • Faʻaopoopo le lagolago mo faila autu o loʻo faʻaaogaina i NetworkManager ile cloud-init.
  • Ua faaopoopo e Podman le lagolago mo pusa ua faʻapipiʻiina e faʻaaoga ai le zstd algorithm. Faʻaopoopo le tomai e faʻaaoga ai Quadlets e otometi ona faʻatupuina auaunaga faʻaogaina mai faʻamatalaga pusa. Faʻaopoopo le atigi podmansh, lea e mafai ona faʻaoga nai lo /usr/bin/bash e amata ai se faʻaoga faʻaoga i totonu o se pusa. Fa'afouina lomiga o Podman, Buildah, Skopeo, crun ma runc.
  • Faʻaopoopo laina laina laina ole kernel: gather_data_sampling e pulea le faiga o le puipuiga mai osofaʻiga a le GDS (Aʻoaʻo Faʻamatalaga Faʻataʻitaʻiga poʻo Downfall ma rdrand e nana le lagolago mo le RDRAND faatonuga.
  • Fa'alautele lagolago meafaigaluega. Fa'aopoopo aveta'avale mo Thunderbolt/USB4 masini feso'ota'iga (thunderbolt_net) ma Broadcom 802.11 mea fa'aoga uaealesi (brcmfmac) tu'uina atu mo faiga ARM64. Fa'aopoopo aveta'avale mo masini Bluetooth MediaTek, Microsoft Azure Network Adapter IB (mana_ib), Linux USB Vitio Vasega avetaavale (uvc), AMD SoundWire (soundwire-amd), DisplayPort Alternate Mode (typec_displayport), Virtio-mem (virtio_mem). Faʻaleleia atili le lagolago mo Intel processors faʻavae ile Meteor Lake microarchitecture.
  • O lo'o fa'amautu le lagolago a le aufaipisinisi mo vaega o fa'amaoniga fa'amaonia o sigstore: Rekor (se ogalaau mo le teuina o metadata fa'amaonia ma saini numera) ma Fulcio (se faiga o pulega fa'amaonia (a'a CAs) tu'uina atu tusi pasi pu'upu'u).
  • Faʻaauau le tuʻuina atu o faʻataʻitaʻiga (Tekinolosi Faʻamatalaga) lagolago mo le AF_XDP, XDP hardware offloading, Multipath TCP (MPTCP), MPLS (Multi-protocol Label Switching), DSA (data streaming accelerator), dracut, kexec fast reboot, nispor, DAX in ext4 ma xfs, systemd-resolved, accel-config, igc, OverlayFS, Stratis, Software Guard Extensions (SGX), NVMe/TCP, DNSSEC, GNOME i luga ole ARM64 ma IBM Z system, AMD SEV mo KVM, Intel vGPU, Pusa Meafaigaluega.

puna: opennet.ru

Faaopoopo i ai se faamatalaga