ProHoster > Blog > internet nhau > OpenBSD 7.3 kuburitswa

OpenBSD 7.3 kuburitswa

Kuburitswa kwemahara UNIX-senge yekushandisa system OpenBSD 7.3 inoratidzwa. Iyo OpenBSD purojekiti yakavambwa naTheo de Raadt muna 1995 mushure mekunetsana nevagadziri veNetBSD, izvo zvakaita kuti Theo arambidzwe kuwana iyo NetBSD CVS repository. Mushure meizvi, Theo de Raadt neboka revanhu vane pfungwa dzakafanana vakagadzira itsva yakavhurika sisitimu yakavakirwa paNetBSD sosi yemuti, zvibodzwa zvikuru zvekusimudzira izvo zvaive zvekutakurika (13 hardware mapuratifomu anotsigirwa), kumira, kushanda kwakaringana, kuchengetedzwa kwakasimba. uye yakabatanidzwa cryptographic zvishandiso. Iyo yakazara yekuisa ISO mufananidzo weOpenBSD 7.3 base system ndeye 620 MB.

Pamusoro peiyo inoshanda sisitimu pachayo, iyo OpenBSD purojekiti inozivikanwa nezvikamu zvayo, izvo zvave kupararira mune mamwe masisitimu uye zvakaratidza ivo kuti ndeimwe yeakachengeteka uye yepamusoro-soro mhinduro. Pakati pazvo: LibreSSL (forogo yeOpenSSL), OpenSSH, PF packet filter, OpenBGPD uye OpenOSPFD madhimoni ekufambisa, OpenNTPD NTP server, OpenSMTPD mail server, text terminal multiplexer (analogous kuGNU screen) tmux, daemon yakazivikanwa ine IDENT protocol kushandiswa, BSDL imwe nzira. GNU groff package - mandoc, protocol yekuronga kukanganisa-kushivirira masisitimu CARP (Common Kero Redundancy Protocol), yakareruka http server, OpenRSYNC faira yekubatanidza utility.

Mabhindauko makuru:

  • Yakaitwa system inodaidza waitid (yakamirira shanduko yenyika), pinsyscall (kupfuudza ruzivo nezve execve yekupinda nzvimbo yekudzivirira kubva kuROP exploits), getthrname uye setthrname (kuwana uye kuseta zita reshinda).
  • Ese magadzirirwo anoshandisa clockintr, hardware-yakazvimirira timer kukanganisa scheduler.
  • Yakawedzerwa sysctl kern.autoconf_serial, iyo inogona kushandiswa kuteedzera mudziyo wemuti mamiriro shanduko mukernel kubva munzvimbo yemushandisi.
  • Yakavandudzwa rutsigiro rwemultiprocessor (SMP) masisitimu. Mafirita ezviitiko zve tun uye tap zvishandiso akashandurwa kuita mp-yakachengeteka chikamu. Iwo mabasa anosarudza, pselect, poll, ppoll, getsockopt, setsockopt, mmap, munmap, mprotect, sched_yield, minherit uye utrace, pamwe neoctl SIOCGIFCONF, SIOCGIFGMEMB, SIOCGIFGATTR uye SIOCGIFGLIST zvabviswa pakuvhara. Yakavandudzwa kubata kwekuvharira mu pf packet sefa. Kuvandudzwa kwekuita kweiyo system uye network stack pane akawanda-core masisitimu.
  • Kuitwa kweiyo drm (Direct Rendering Manager) framework inowiriraniswa neLinux kernel 6.1.15 (kuburitswa kwekupedzisira - 5.15.69). Mutyairi weAmdgpu anotsigira Ryzen 7000 "Raphael", Ryzen 7020 "Mendocino", Ryzen 7045 "Dragon Range", Radeon RX 7900 XT/XTX "Navi 31", Radeon RX 7600M (XT), 7700S uye 7600 "Navi 33". Amdgpu yakawedzera tsigiro yekudzora mwenje wekumashure uye inova nechokwadi chekuti xbacklight inoshanda kana uchishandisa X.Org modesetting driver. Mesa ine shader caching inogoneswa neiyo default.
  • Kuvandudzwa kwakaitwa kuVMM hypervisor.
  • Mikana yekuwedzera kuchengetedzwa kwekuyeuka kwemaitiro munzvimbo yevashandisi yakaitwa: iyo isingachinjike system yekufona uye yakabatana raibhurari basa rezita rimwe chete, iro rinokutendera iwe kugadzirisa kodzero dzekuwana kana uchifunga mundangariro (memory mappings). Mushure mekuita, kodzero dzakagadzirirwa nzvimbo yekuyeuka, semuenzaniso, kurambidzwa kunyora nekuita, haigone kuchinjwa kuburikidza nekufona kunotevera mmap (), mprotect () uye munmap () mabasa, izvo zvinogadzira kukanganisa kweEPERM paunenge uchiedza. kuchinja.
  • Pachivakwa che AMD64, iyo RETGUARD yekudzivirira nzira inogoneswa kufona system, yakanangana nekuomesera mashandiro ezvivakwa zvakavakwa pachishandiswa kukwereta zvidimbu zvekodhi uye kudzoka-yakatarisana programming maitiro.
  • Dziviriro kubva pakushandiswa kwekusagadzikana kunogoneswa, zvichibva pakusanganazve kweiyo sshd inogoneka faira pese apo system bhutsu. Reflow inoita kuti zvikwanisike kuita zvigadziriso zvekushanda mu sshd zvisingatarisike, izvo zvinoita kuti zviome kugadzira mashandisiro uchishandisa kudzoka-yakatarisana programming matekiniki.
  • Yakagonesa aggressive stack layout randomization pane 64-bit systems.
  • Yakawedzerwa dziviriro panjodzi yeSpecter-BHB mune processor microarchitectural zvimiro.
  • PaArM64 processors, iyo DIT (Data Yakazvimirira Nguva) mureza inogoneswa kuti mushandisi nzvimbo uye kernel nzvimbo yekuvhara parutivi-chiteshi kurwiswa kunobata kutsamira kwekuraira nguva yekuita pane data rakagadziriswa mumirairo iyi.
  • Inopa kugona kushandisa lladdr kana uchitsanangura network masisitimu. Semuenzaniso, kunze kwekusungira kune zita rekushandisa (hostname.fxp0), unogona kushandisa kusunga kukero yeMAC (hostname.00:00:6e:00:34:8f).
  • Yakavandudzwa yekurara rutsigiro kune ARM64-yakavakirwa masisitimu.
  • Yakawedzera tsigiro yeApple ARM chips.
  • Yakawedzera rutsigiro rwe Hardware nyowani uye yaisanganisira vatyairi vatsva.
  • Iyo bwfm mutyairi wemakadhi asina waya akavakirwa paBroadcom neCypress machipisi anopa encryption rutsigiro rweWEP.
  • Iyo yekuisa yakavandudza basa nesoftware RAID uye yakashandisa yekutanga tsigiro ye Guided Disk Encryption.
  • Mitemo mitsva yekuskrora-yepamusoro uye yekuskrorukira-pasi yawedzerwa ku tmux ("terminal multiplexer") kuti utenderedze cursor kusvika pekutanga nekupera.I LibreSSL uye OpenSSH mapakeji akagadziridzwa. Kuti uwane rumwe ruzivo nezve kuvandudzwa, ona wongororo yeLibreSSL 3.7.0, OpenSSH 9.2 uye OpenSSH 9.3.
  • Huwandu hwezviteshi zveiyo AMD64 architecture yaive 11764 (kubva pa11451), yearch64 - 11561 (kubva pa11261), yei386 - 10572 (kubva pa10225). Pakati peshanduro dzekushandisa mumachiteshi:
    • Asterisk 16.30.0, 18.17.0 uye 20.2.0
    • Audacity 3.2.5
    • CMake 3.25.2
    • Chrome 111.0.5563.110
    • Emacs 28.2
    • ffmpeg 4.4.3
    • GCC 8.4.0 uye 11.2.0
    • GHC 9.2.7
    • GNOME 43.3
    • Enda 1.20.1
    • JDK 8u362, 11.0.18 uye 17.0.6
    • KDE Giya 22.12.3
    • KDE Mapurani 5.103.0
    • Krita 5.1.5
    • LLVM/Clang 13.0.0
    • LibreOffice 7.5.1.2
    • Lua 5.1.5, 5.2.4, 5.3.6 uye 5.4.4
    • MariaDB 10.9.4
    • Tsoko 6.12.0.182
    • Mozilla Firefox 111.0 uye ESR 102.9.0
    • Mozilla Thunderbird 102.9.0
    • Mutt 2.2.9 uye NeoMutt 20220429
    • Node.js 18.15.0
    • OCaml 4.12.1
    • OpenLDAP 2.6.4
    • PHP 7.4.33, 8.0.28, 8.1.16 uye 8.2.3
    • Postfix 3.5.17 uye 3.7.3
    • PostgreSQL 15.2
    • Python 2.7.18, 3.9.16, 3.10.10 uye 3.11.2
    • Qt 5.15.8 uye 6.4.2
    • R 4.2.1
    • Ruby 3.0.5, 3.1.3 uye 3.2.1
    • Ngura 1.68.0
    • SQLite 2.8.17 uye 3.41.0
    • Shotcut 22.12.21
    • Sudo 1.9.13.3
    • Meerkat 6.0.10
    • Tcl/Tk 8.5.19 uye 8.6.13
    • TeX Kurarama 2022
    • Vim 9.0.1388 uye Neovim 0.8.3
    • Xfce 4.18
  • Yakagadziridzwa yechitatu-bato zvikamu zvinosanganisirwa neOpenBSD 7.3:
    • Xenocara graphics stack inobva pa X.Org 7.7 ine xserver 1.21.6 + zvigamba, freetype 2.12.1, fontconfig 2.14, Mesa 22.3.4, xterm 378, xkeyboard-config 2.20, fonttosfnt 1.2.2.
    • LLVM/Clang 13.0.0 (+ zvigamba)
    • GCC 4.2.1 (+ zvigamba) uye 3.3.6 (+ zvigamba)
    • Perl 5.36.1 (+ zvigamba)
    • NSD 4.6.1
    • Unbound 1.17
    • Vanamukoti 5.7
    • Binutils 2.17 (+ zvigamba)
    • Gdb 6.3 (+ chigamba)
    • Kukadzi 12.9.2022/XNUMX/XNUMX
    • Expat 2.5.0.

    Source: opennet.ru

Voeg