ProHoster > Blog > internet nhau > CentOS Stream 9 kugovera kwakatangwa zviri pamutemo

CentOS Stream 9 kugovera kwakatangwa zviri pamutemo

Iyo CentOS Project yakazivisa zviri pamutemo kuwanikwa kwekugovera kweCentOS Stream 9, iyo iri kushandiswa sehwaro hwekugovera Red Hat Enterprise Linux 9 sechikamu chenzira nyowani, yakavhurika yekuvandudza. CentOS Stream ndeyekuenderera mberi yakagadziridzwa kugovera uye inobvumira kuwana kwekutanga kumapakeji ari kugadzirwa kuitira kuburitswa kweRHEL. Zvivakwa zvakagadzirirwa x86_64, Aarch64 uye ppc64le (IBM Simba 9+) zvivakwa. Pamusoro pezvo, rutsigiro rweiyo IBM Z yekuvakisa (s390x Z14 +) inoziviswa, asi magungano ayo haasati awanikwa.

CentOS Stream inomisikidzwa sepurojekiti yepamusoro yeRHEL, ichipa vechitatu-bato mukana wekudzora gadziriro yemapakeji eRHEL, kupa mazano ekuchinja kwavo uye kupesvedzera sarudzo dzakaitwa. Kare, mufananidzo weimwe yeFedora yakaburitswa yakashandiswa sehwaro hwebazi idzva reRHEL, iro rakapedzwa nekudzikamiswa kuseri kwemasuo akavharwa, pasina kugona kudzora kufambira mberi kwebudiriro uye sarudzo dzakaitwa. Munguva yekuvandudzwa kweRHEL 9, zvichibva pamufananidzo weFedora 34, nekubatanidzwa kwenharaunda, bazi reCentOS Stream 9 rakaumbwa, umo basa rekugadzirira rinoitwa uye hwaro hwebazi idzva rinokosha reRHEL rinoumbwa.

CentOS Stream 9 kugovera kwakatangwa zviri pamutemo

Zvinocherechedzwa kuti iwo magadzirirwo akafanana akaburitswa eCentOS Stream akagadzirirwa iyo isati yaburitswa yenguva pfupi yekuburitswa kweRHEL uye chinangwa chikuru chavagadziri ndechekuwana nhanho yekugadzikana kweCentOS Stream yakafanana neyeRHEL. Pakeji isati yapihwa paCentOS Stream, inoenda kuburikidza neakasiyana otomatiki uye manyore ekuongorora masisitimu, uye inoburitswa chete kana kugadzikana kwayo kwakatariswa kusangana nemhando yemhando yemapakeji akagadzirira kuburitswa muRHEL. Panguva imwe chete neCentOS Stream, zvigadziriso zvakagadzirirwa zvinoiswa muhusiku kuvaka kweRHEL.

Shanduko huru muCentOS Stream 9 ichienzaniswa neyakapfuura yakakosha bazi:

  • Iyo sisitimu nharaunda uye maturusi egungano akagadziridzwa. GCC 11 inoshandiswa kugadzira mapasuru. Raibhurari yeC yakagadziridzwa kuita glibc 2.34. Iyo Linux kernel package yakavakirwa pakuburitswa kwe5.14. Iyo RPM package maneja yakagadziridzwa kune vhezheni 4.16 nerutsigiro rwekutendeseka kutarisa kuburikidza nefapolicyd.
  • Kutama kwekugovera kuPython 3 kwapera. Bazi rePython 3.9 rinopihwa nekusarudzika. Python 2 yakamiswa.
  • Desktop yakavakirwa paGNOME 40 (RHEL 8 yakatumirwa neGNOME 3.28) uye raibhurari yeGTK 4. MuGNOME 40, virtual desktops in Activities Overview mode anochinjirwa ku landscape orientation uye anoratidzwa sengetani inoramba ichifamba kubva kuruboshwe kuenda kurudyi. Desktop yega yega inoratidzwa muOverview modhi inoona iripo windows uye zvine simba pani uye zooms sezvo mushandisi anopindirana. Shanduko isina musono inopihwa pakati pechinyorwa chezvirongwa uye chaiwo desktops.
  • GNOME inosanganisira simba-profiles-daemon handler iyo inopa kukwanisa kuchinja pakubhururuka pakati pemagetsi ekuchengetedza simba, simba rekuenzanisa mode, uye maitiro ekushanda kwepamusoro.
  • Ese maodhiyo nzizi akaendeswa kune iyo PipeWire midhiya server, inova ndiyo yakasarudzika pachinzvimbo chePulseAudio neJACK. Kushandisa PipeWire kunokutendera kuti upe hunyanzvi hwekugadzirisa odhiyo mune yenguva dzose desktop edition, bvisa kupatsanuka uye ubatanidze zvivakwa zvekuteerera kune akasiyana maapplication.
  • Nekumisikidza, iyo GRUB bhutsu menyu yakavanzwa kana RHEL ndiyo yega kugovera yakaiswa pane system uye kana bhutsu yekupedzisira yakabudirira. Kuti uratidze menyu panguva yebhutsu, ingobata pasi kiyi yeShift kana kudzvanya Esc kana F8 kiyi kakawanda. Pakati pekuchinja mubhootloader, tinocherechedzawo kuiswa kweGRUB configuration mafaira ezvese zvivakwa mune rimwe dhairekitori /boot/grub2/ (iyo faira /boot/efi/EFI/redhat/grub.cfg ikozvino inofananidzira link ku/boot /grub2/grub.cfg), avo. iyo yakafanana yakaiswa sisitimu inogona kubhurwa uchishandisa ese EFI uye BIOS.
  • Zvikamu zvekutsigira mitauro yakasiyana zvakaiswa mu langpacks, izvo zvinokutendera iwe kusiyanisa nhanho yerutsigiro yemutauro yakaiswa. Semuenzaniso, langpacks-core-font inopa mafonti chete, langpacks-core inopa glibc locale, base font, uye nzira yekuisa, uye langpacks inopa shanduro, mamwe mafonti, uye maduramazwi ekutarisa zviperengo.
  • Chengetedzo zvikamu zvakagadziridzwa. Kugovera kunoshandisa bazi idzva reOpenSSL 3.0 cryptographic library. Nekutadza, mamwe emazuva ano uye akavimbika cryptographic algorithms anogoneswa (semuenzaniso, kushandiswa kweSHA-1 muTLS, DTLS, SSH, IKEv2 uye Kerberos kunorambidzwa, TLS 1.0, TLS 1.1, DTLS 1.0, RC4, Camellia, DSA, 3DES. uye FFDHE-1024 yakaremara) . Iyo OpenSSH package yakagadziridzwa kuita shanduro 8.6p1. Cyrus SASL yakaendeswa kune GDBM backend panzvimbo yeBerkeley DB. NSS (Network Security Services) maraibhurari haachatsigiri iyo DBM (Berkeley DB) fomati. GnuTLS yakagadziridzwa kuita shanduro 3.7.2.
  • Yakanyanya kunatsiridza SELinux mashandiro uye kuderedza ndangariro kushandiswa. Mu /etc/selinux/config, tsigiro ye "SELINUX = yakaremara" kuseta yekudzima SELinux yabviswa (iyi kugadzika ikozvino inodzima mutemo kurodha, uye kudzima mashandiro eSELinux ikozvino kunoda kupfuudza "selinux = 0" paramende kune iyo. kernel).
  • Yakawedzera kuyedza rutsigiro rweVPN WireGuard.
  • Nekusagadzikana, kupinda mukati kuburikidza neSSH sezvo mudzi unorambidzwa.
  • Iyo iptables-nft packet filter management maturusi (iptables, ip6tables, ebtables uye arptables utilities) uye ipset zvakabviswa. Ikozvino inokurudzirwa kushandisa nftables kubata firewall.
  • Inosanganisira mptcpd daemon itsva yekugadzirisa MPTCP (MultiPath TCP), kuwedzera kweTCP protocol yekuronga kushanda kweTCP yekubatanidza nekuendeswa kwemapakiti panguva imwe chete munzira dzakawanda kuburikidza netiweki yakasiyana-siyana inosanganiswa ne IP kero dzakasiyana. Kushandisa mptcpd kunoita kuti zvikwanise kugadzirisa MPTCP pasina kushandisa iproute2 utility.
  • Iyo network-scripts package yabviswa; NetworkManager inofanirwa kushandiswa kugadzirisa network. Tsigiro yeifcfg yekuseta fomati inochengetwa, asi NetworkManager inoshandisa iyo keyfile-based fomati nekukasira.
  • Kuumbwa kwacho kunosanganisira mavhezheni matsva evagadziri uye maturusi evagadziri: GCC 11.2, LLVM/Clang 12.0.1, Rust 1.54, Go 1.16.6, Node.js 16, OpenJDK 17, Perl 5.32, PHP 8.0, Python 3.9, Ruby Git 3.0, Subversion 2.31, binutils 1.14, CMake 2.35, Maven 3.20.2, Ant 3.6.
  • Server packages Apache HTTP Server 2.4.48, nginx 1.20, Varnish Cache 6.5, Squid 5.1 yakagadziridzwa.
  • DBMS MariaDB 10.5, MySQL 8.0, PostgreSQL 13, Redis 6.2 yakagadziridzwa.
  • Kuvaka iyo QEMU emulator, Clang inogoneswa nekusarudzika, izvo zvakaita kuti zvikwanise kushandisa dzimwe nzira dzekudzivirira kune KVM hypervisor, senge SafeStack kudzivirira kubva kuhunyanzvi hwekushandisa hunoenderana nekudzoka-yakatarisana programming (ROP - Return-Oriented Programming).
  • MuSSSD (System Security Services Daemon), ruzivo rwematanda rwakawedzerwa, semuenzaniso, nguva yekupedzisa basa ikozvino yakabatanidzwa kune zviitiko uye kuyerera kwechokwadi kunoratidzwa. Yakawedzera basa rekutsvaga kuongorora marongero uye nyaya dzekuita.
  • Tsigiro yeIMA (Integrity Measurement Architecture) yakawedzerwa kuti ione kutendeseka kweanoshanda sisitimu zvikamu uchishandisa siginecha yedhijitari uye hashi.
  • Nekumisikidza, imwechete yakabatana cgroup hierarchy (cgroup v2) inogoneswa. Π‘groups v2 inogona kushandiswa, semuenzaniso, kudzikamisa ndangariro, CPU uye I / O kushandiswa. Musiyano wakakosha pakati pecgroups v2 uye v1 iko kushandiswa kweakajairwa cgroups hierarchy kune ese marudzi ezviwanikwa, pachinzvimbo cheakaparadzana hierarchies yekugovera CPU zviwanikwa, zvekudzora mashandisirwo endangariro, uye yeI/O. Akaparadzana mahierarchies akatungamira kunetsa mukuronga kudyidzana pakati pevabati uye nekuwedzera kernel resource mutengo pakushandisa mitemo yemaitiro anotsanangurwa mune akasiyana hierarchies.
  • Yakawedzerwa rutsigiro rwekuwiriranisa yenguva chaiyo yakavakirwa paNTS (Network Time Security) protocol, iyo inoshandisa zvinhu zveruzhinji kiyi zvivakwa (PKI) uye inobvumira kushandiswa kweTLS uye yakavharidzirwa encryption AEAD (Authenticated Encryption neAssociated Data) yekudzivirira kwekriptographic. kupindirana kwevatengi-server kuburikidza neNTP protocol ( Network Time Protocol). Iyo chrony NTP server yakagadziridzwa kune vhezheni 4.1.
  • Yakapa tsigiro yekuyedza yeKTLS (kernel-level kuita kweTLS), Intel SGX (Software Guard Extensions), DAX (Direct Access) ye ext4 uye XFS, rutsigiro rwe AMD SEV uye SEV-ES muKVM hypervisor.

Mukufanana, bazi reCentOS Stream 8 rinoramba richikura, iro rinoshandiswa mukugadzirira kuburitswa kutsva kweRHEL 8.x uye inokurudzirwa kushandura masisitimu vachishandisa yakare CentOS 8.x kugovera, tsigiro inozomiswa. pakupera kwemwedzi. Kuti uchinje kuCentOS Stream, ingoisa centos-release-stream package ("dnf install centos-release-stream") uye shandisa "dnf update" command. Bazi reCentOS Stream 8 richatsigirwa kusvika Chivabvu 31, 2024, uye tsigiro yekirasi CentOS 7.x ichapera musi wa30 Chikumi, 2024.

Seimwe nzira, vashandisi vanogona zvakare kushandura kune kugovera kunoenderera mberi nekuvandudzwa kweCentOS 8 bazi: AlmaLinux (migration script), Rocky Linux (migration script), VzLinux (migration script) kana Oracle Linux (migration script). Pamusoro pezvo, Red Hat yakapa mukana (migration script) yekushandiswa mahara kweRHEL mumasangano ari kugadzira yakavhurika sosi software uye munzvimbo dzemugadziri wega ane anosvika gumi nematanhatu kana emuviri masisitimu.

Source: opennet.ru

Voeg