ProHoster > Π‘Π»ΠΎΠ³ > wararka internetka > systemd 255

systemd 255

Nooc cusub oo ah nidaamka maamulaha nidaamka xorta ah ayaa la siidaayay.

Isbeddelada jebiya iswaafajinta gadaal:

  • Hadda koraya qayb gaar ah /usr/ Kaliya waxaa lagu taageeraa marxaladda intramps.

  • Siideynta mustaqbalka waxay meesha ka saari doontaa taageerada qoraalada nidaamka V iyo kooxaha v1.

  • Fursadaha SuspendMode=, HibernateState= ΠΈ HybridSleepState= laga bilaabo qaybta [hurdo] waa laga gooyay systemd-sleep.conf oo wax saamayn ah kuma laha hab-dhaqanka nidaamka.

Isbeddellada shaqada kormeeraha:

  • Daemons hadda waa la bilaabay iyadoo la adeegsanayo posix_spawn () halkii laga isticmaali lahaa isku darka fargeeto () iyo exec (); jiid codsi #27890.

  • systemd hadda waxay isticmaashaa sharraxayaasha faylka PIDFD si ay ula socdaan hababka ilmaha; tani waxay fududaynaysaa macquulnimada shaqada kormeeraha; jiid codsi #29142, #29594, #29455.

  • Doorasho cusub SurviveFinalKillSignal= waxay u ogolaataa daemon inay iska ilaaliso joojinta marka la isticmaalayo habka jilicsan ee dib u soo kabashada; jiid codsi #28545.

  • Unugyadu hadda waxay taageeraan xulashooyinka MemoryPeak=, MemorySwapPeak=, MemorySwapCurrent= ΠΈ MemoryZSwapCurrent=; Doorashooyinkani waxay u dhigmaan xuduudaha xusuusta.ugu sarreysa, xusuusta.is-beddelka.ugu sarreeya, xusuusta.is-beddelka.hadda ΠΈ xusuusta.zswap. guryaha hadda kooxaha v2.

  • Doorasho cusub ConditionSecurity= Waxay kuu ogolaanaysaa inaad u sheegto systemd in adeega la bilaabo kaliya haddii nidaamka lagu rakibay sawirka UKI ee la xaqiijiyay.

Taageerada TPM2:

  • systemd-cryptenroll hadda waxay kuu ogolaanaysaa inaad qeexdo boos PCR gaar ah iyo xashiish.

  • systemd-cryptenroll wuxuu kuu ogolaanayaa inaad qeexdo tusaha muhiimka ah; jiid codsi #29427.

  • Hadda waa suurtogal in lagu xidho mugga LUKS chip TPM2 gaar ah iyada oo aan la helin, haddii furaha dadweynaha la yaqaan.

  • binary systemd-cryptsetup ayaa loo raray / usr / bin / waxaana loo isticmaali karaa meel ka baxsan systemd.

  • Qaybta gudaha ee systemd-pcrphase waxa loo badalay systemd-pcrextend.

  • Qayb cusub, systemd-pcrlock, waxay kuu ogolaanaysaa inaad saadaaliso galitaanka PCR iyadoo lagu saleynayo macluumaadka nidaamka jira; jiid codsi #28891.

systemd-boot, systemd-stub, ukify, bootctl, kernel-install:

  • bootctl hadda waxay kuu ogolaaneysaa inaad go'aamiso in nidaamka laga soo qaaday uki.

  • systemd-boot waxay taageertaa furayaasha furaha si loo damiyo oo dib loo bilaabo nidaamka.

  • systemd-boot ma rarto blobs Devicetree aan la aamini karin marka SecureBoot la furo.

  • systemd-boot iyo systemd-stub hadda waxay leeyihiin aqoonsiyo kala duwan qaybta .sbat, iyo UEFI waxay u wici kartaa si madax banaan; jiid codsi #29196.

  • Qaybta ukify hadda ma aha tijaabo; fulinta ayaa hadda ku yaala / usr / bin /.

systemd-networkd:

  • Taageero lagu daray tignoolajiyada degdegga ah ee Commit.

  • dbus interface systemd-networkd hadda waxay kuu ogolaanaysaa inaad hesho macluumaadka ku saabsan heerka macmiilka DHCP; galan #28896.

  • Ikhtiyaar NFTSet= wuxuu kuu ogolaanayaa inaad ku xidho qaabaynta interface network si loo sameeyo xeerar nftables.

  • Qaybta [IPv6AcceptRA] waxay taageertaa doorashooyin cusub: IsticmaalPREF64=, IsticmaalHopLimit=, IsticmaalICMP6RateLimit= ΠΈ NFTSet=.

  • Qaybta [IPv6SendRA] hadda waxay taageertaa xulashooyinka RetransmitSec=, HopLimit=, HomeAgent=, HomeAgentLifetimeSec= ΠΈ HomeAgentPreference=.

  • Faylasha habaynta ee laga keenay ikhtiyaarada khadka taliska kernel hadda waxay leeyihiin horgale 70-; Mudnaanta faylashan hadda way ka sarraysaa mudnaanta faylalka qaabeynta caadiga ah.

Source: linux.org.ru

Add a comment