Microsoft e phatlalalitse ntjhafatso ho setsi sa kabo sa CBL-Mariner 2.0.20221029 (Common Base Linux Mariner), e ntseng e ntlafatsoa e le sethala sa motheo sa bokahohle bakeng sa tikoloho ea Linux e sebelisoang meahong ea maru, lits'ebetso tsa moeli le lits'ebeletso tse fapaneng tsa Microsoft. Morero ona o reretsoe ho kopanya litharollo tsa Microsoft Linux le ho nolofatsa tlhokomelo ea litsamaiso tsa Linux molemong oa merero e fapaneng ho fihlela joale. Lintlafatso tsa morero li ajoa tlasa laesense ea MIT. Liphutheloana li hlahisoa bakeng sa meralo ea aarch64 le x86_64. Setšoantšo sa ISO sa bootable se lokiselitsoe (1.1 GB) bakeng sa x86_64 ea meralo.
Khatisong e ncha:
- Liphetolelo tsa liphutheloana tse ntlafalitsoeng, ho kenyelletsa le litokollo tse reriloeng tsa Linux kernel 5.15.74, PHP 8.1.11, nodejs 16.17.1, cassandra 4.0.7, dbus 1.15.2, expat 2.5.0, mysql 8.0.31, terraform1.32.2, tidy5.8.0, 3.4.16. 1.22.1, wireshark XNUMX, nginx XNUMX.
- E kentse liphutheloana tse ncha cairomm 1.12.0, cpptest 1.1.2, k-exec-tools, kernel-drivers-gpu, libcroco 0.6.13, python-google-auth-oauthlib, sgx-backwards-compatability.
- Li-module tse kenyelelitsoeng bakeng sa ho fetola algorithm ea taolo ea TCP (TCP Congestion).
- Litokiso tsa tlokotsi li fetiselitsoe ho libtar, unbound, aspell, libtiff, redis, livepatch, libtasn1, PHP, nodejs, dbus, expat, mod_wsgi, wireshark, nginx, mysql, liphutheloana tsa terraform.
Kabo ea CBL-Mariner e fana ka sete e nyane e tloaelehileng ea liphutheloana tsa mantlha tse sebetsang e le motheo oa bokahohle bakeng sa ho theha likahare tsa lijana, libaka tse amohelang baeti le lits'ebeletso tse sebetsang lits'ebetsong tsa maru le lisebelisoa tse haufi. Litharollo tse rarahaneng haholoanyane le tse khethehileng li ka bōptjoa ka ho eketsa liphutheloana tse eketsehileng holim'a CBL-Mariner, empa motheo oa mekhoa eohle e joalo e ntse e tšoana, ho etsa hore tlhokomelo le lisebelisoa li be bonolo. Mohlala, CBL-Mariner e sebelisoa e le motheo oa kabo e nyane ea WSLg, e fanang ka likarolo tsa "graph" tsa "graph" bakeng sa ho tsamaisa lits'ebetso tsa Linux GUI maemong a ipapisitseng le sistimi e nyane ea WSL2 (Windows Subsystem for Linux). Ts'ebetso e atolositsoeng ho WSLg e bonoa ka ho kenyelletsa liphutheloana tse eketsehileng le Weston Composite Server, XWayland, PulseAudio le FreeRDP.
Sistimi ea kaho ea CBL-Mariner e u lumella ho hlahisa liphutheloana tsa RPM ka bobeli ho latela lifaele tsa SPEC le khoutu ea mohloli, hammoho le litšoantšo tsa sistimi e monolithic tse hlahisitsoeng ho sebelisoa sesebelisoa sa rpm-ostree le ho nchafatsoa ka atomo ntle le ho arola liphutheloana tse arohaneng. Ka hona, mefuta e 'meli ea ho fana ka ntlafatso e tšehetsoa: ka ho nchafatsa liphutheloana tsa motho ka mong le ka ho aha bocha le ho nchafatsa setšoantšo sohle sa sistimi. Ho na le polokelo ea liphutheloana tsa RPM tse ka bang 3000 tse hahiloeng esale pele tseo u ka li sebelisang ho iketsetsa litšoantšo ho latela faele ea tlhophiso.
Kabo e kenyelletsa likarolo tse hlokahalang feela mme e ntlafalitsoe bakeng sa mohopolo o fokolang le tšebeliso ea sebaka sa disk, hammoho le lebelo le phahameng la ho jarolla. Kabo e boetse e hlokomeleha bakeng sa ho kenyelletsa mekhoa e fapaneng ea tlatsetso ho matlafatsa ts'ireletso. Morero o nka "ts'ireletso e phahameng ka ho sa feleng". Hoa khonahala ho sefa mehala ea sistimi u sebelisa mochini oa seccomp, ho koala likarolo tsa disk, le ho netefatsa liphutheloana u sebelisa signature ea dijithale.
Mefuta ea aterese ea sebaka sa marang-rang e tšehelitsoeng ho kernel ea Linux ea sebetsa, hammoho le mekhoa ea ts'ireletso khahlanong le litlhaselo tsa symlink, mmap, /dev/mem le /dev/kmem. Libaka tsa memori tse nang le likarolo tse nang le kernel le data ea module li behiloe ho mokhoa oa ho bala feela mme ts'ebetso ea khoutu e thibetsoe. Khetho ea boikhethelo ke ho tima ho kenya li-module tsa kernel kamora ho qala sistimi. Iptables toolkit e sebelisoa ho sefa lipakete tsa marang-rang. Mokhahlelong oa kaho, tšireletso khahlanong le ho putlama ha stack, buffer overflows, le mathata a fomete ea likhoele li nolofalloa ka ho sa feleng (_FORTIFY_SOURCE, -fstack-protector, -Wformat-security, relro).
Tsamaiso ea tsamaiso systemd e sebelisetsoa ho laola litšebeletso le boot. Batsamaisi ba liphutheloana tsa RPM le DNF ba fuoa taolo ea liphutheloana. Seva ea SSH ha e sebetse ka mokhoa oa kamehla. Ho kenya kabo, ho fanoa ka sehlomathi se ka sebetsang ka mekhoa ea mongolo le ea litšoantšo. Sesebelisoa se fana ka khetho ea ho kenya liphutheloana tse felletseng kapa tsa mantlha, 'me se fana ka sebopeho sa ho khetha karolo ea disk, ho khetha lebitso la moamoheli, le ho theha basebelisi.
Source: opennet.ru