Khamphani ea Red Hat kabo ea thepa . Likopano tsa ho kenya li lokiselitsoe x86_64, s390x (IBM System z), ppc64le le Aarch64 meralo, empa etsoe feela ho basebelisi ba ngolisitsoeng ba Red Hat Customer Portal. Mehloli ea liphutheloana tsa Red Hat Enterprise Linux 8 rpm li ajoa ka CentOS. Lekala la RHEL 8.x le tla tšehetsoa ho fihlela bonyane 2029.
Red Hat Enterprise Linux 8.1 e bile tokollo ea pele e lokiselitsoeng ho latela potoloho e ncha ea nts'etsopele, e bolelang ho theoa ha likhatiso likhoeling tse ling le tse ling tse tšeletseng ka nako e reriloeng esale pele. Ho ba le tlhaiso-leseling e nepahetseng mabapi le hore na tokollo e ncha e tla hatisoa neng ho u lumella ho hokahanya manane a ntlafatso ea merero e fapaneng, ho itokisetsa esale pele bakeng sa tokollo e ncha, le ho rera hore na lintlafatso li tla sebelisoa neng.
Ho lumeloa hore e ncha Lihlahisoa tsa RHEL li na le mekhahlelo e mengata, ho kenyelletsa le Fedora e le setsi sa bokhoni bo bocha, bakeng sa phihlello ea liphutheloana tse etselitsoeng tokollo e latelang ea RHEL (mofuta oa RHEL oa rolling),
setšoantšo sa minimalistic universal base (UBI, Universal Base Image) bakeng sa ho tsamaisa lits'ebetso ka har'a lijana tse ka thoko le bakeng sa tšebeliso ea mahala ea RHEL ts'ebetsong ea ntlafatso.
Senotlolo :
- Ts'ehetso e felletseng ea mochini oa ho sebelisa li-patches tsa Live e fanoe () ho felisa bofokoli ho Linux kernel ntle le ho qala sistimi hape ntle le ho emisa mosebetsi. Pele, kpatch e ne e khethiloe e le tšobotsi ea liteko;
- E thehiloe holim'a moralo Bokhoni ba ho theha manane a likopo tse tšoeu le tse ntšo bo kentsoe ts'ebetsong, e u lumellang ho khetholla hore na ke mananeo afe a ka hlahisoang ke mosebelisi le a sa khoneng (mohlala, ho thibela ho hlahisoa ha lifaele tse sa netefatsoang tsa kantle). Qeto ea ho thibela kapa ho lumella ho qalisoa e ka etsoa ho latela lebitso la kopo, tsela, hash ea litaba, le mofuta oa MIME. Ho hlahloba melao ho etsahala nakong ea mehala e bulehileng () le exec () ea sistimi, kahoo e ka ba le phello e mpe ts'ebetsong;
- Sebopeho se kenyelletsa lintlha tsa SELinux, tse shebaneng le ts'ebeliso e nang le lijana tse ka thoko le ho lumella taolo e eketsehileng ea granular holim'a phihlello ea lits'ebeletso tse tsamaeang ka har'a lijana ho amohela lisebelisoa tsa sistimi. Ho hlahisa melao ea SELinux bakeng sa lijana, sesebelisoa se secha sa udica se hlahisitsoe, se lumellang, ho nahanela lintlha tse tobileng tsa setshelo se itseng, ho fana ka phihlelo feela ho lisebelisoa tse hlokahalang tsa ka ntle, tse kang polokelo, lisebelisoa le marang-rang. Lisebelisoa tsa SELinux (libsepol, libselinux, libsemanage, policycoreutils, checkpolicy, mcstrans) li nchafalitsoe ho lokolla 2.9, le sephutheloana sa SETools ho mofuta oa 4.2.2.
E kentse mofuta o mocha oa SELinux, boltd_t, e thibelang boltd, mokhoa oa ho laola lisebelisoa tsa Thunderbolt 3 (boltd hona joale e sebetsa ka har'a setshelo se lekantsoeng ke SELinux). E kentse sehlopha se secha sa melao ea SELinux - bpf, e laolang ho fihlella ho Berkeley Packet Filter (BPF) le ho hlahloba likopo tsa eBPF;
- E kenyelletsa letoto la liprothokholo tsa litsela (BGP4, MP-BGP, OSPFv2, OSPFv3, RIPv1, RIPv2, RIPng, PIM-SM/MSDP, LDP, IS-IS), e ileng ea nka sebaka sa sephutheloana sa Quagga se neng se sebelisoa pele (FRRouting is a fork of Quagga, kahoo ho lumellana ha hoa ka ha ameha. );
- Bakeng sa li-partitions tse patiloeng ka mokhoa oa LUKS2, tšehetso e kenyelelitsoe bakeng sa lisebelisoa tse thibelang li-encrypting ka fofa, ntle le ho emisa ts'ebeliso ea tsona tsamaisong (mohlala, joale u ka fetola senotlolo kapa algorithm ea encryption ntle le ho theola karohano);
- Tšehetso bakeng sa khatiso e ncha ea protocol ea SCAP 1.3 (Security Content Automation Protocol) e kentsoe moralong oa OpenSCAP;
- Mefuta e ntlafalitsoeng ea OpenSSH 8.0p1, Tuned 2.12, chrony 3.5, samba 4.10.4. Li-module tse nang le makala a macha a PHP 7.3, Ruby 2.6, Node.js 12 le nginx 1.16 li kentsoe polokelong ea AppStream (ho ntlafatsa li-module le makala a fetileng ho tsoetse pele). Liphutheloana tse nang le GCC 9, LLVM 8.0.1, Rust 1.37 le Go 1.12.8 li kentsoe Pokellong ea Mananeo a Marang-rang;
- The SystemTap tracing toolkit e nchafalitsoe ho lekala 4.1, 'me Valgrind memory debugging toolkit e nchafalitsoe ho version 3.15;
- Sesebelisoa se secha sa tlhahlobo ea bophelo bo botle se ekelitsoe ho lisebelisoa tsa phepelo ea li-server (IdM, Identity Management), e nolofatsang ho tsebahatsa mathata ka ts'ebetso ea tikoloho ka seva ea boitsebiso. Ho hlophisoa le ho hlophisoa ha maemo a IdM ho nolofalitsoe, ka lebaka la ts'ehetso bakeng sa likarolo tse Ansible le bokhoni ba ho kenya li-module. Tšehetso e ekelitsoeng bakeng sa Active Directory Trusted Forests e thehiloeng ho Windows Server 2019.
- Sesebelisoa sa "desktop switcher" se fetotsoe lenaneong la GNOME Classic. Widget ea ho chencha lipakeng tsa li-desktop e se e fumaneha ka lehlakoreng le letona la phanele e ka tlase mme e entsoe joalo ka mohala o nang le linepe tsa desktop (ho fetohela komporong e 'ngoe, tobetsa feela setšoantšong se bonts'ang litaba tsa eona);
- The DRM (Direct Rendering Manager) le li-driver tsa boemo bo tlase ba litšoantšo (amdgpu, nouveau, i915, mgag200) li nchafalitsoe ho tsamaisana le Linux 5.1 kernel. Tšehetso e ekelitsoeng bakeng sa li-subsystem tsa video tsa AMD Raven 2, AMD Picasso, AMD Vega, Intel Amber Lake-Y le Intel Comet Lake-U;
- Letlapa la lithulusi bakeng sa ho ntlafatsa RHEL 7.6 ho ea ho RHEL 8.1 le ekelitse tšehetso bakeng sa ho ntlafatsa ntle le ho kenya hape bakeng sa meralo ea ARM64, IBM POWER (endian e nyenyane) le IBM Z. Mokhoa oa ho ntlafatsa pele oa tsamaiso o kentsoe ho web console. E kentse plugin ea cockpit-leapp ho khutlisetsa boemo haeba ho ka ba le mathata nakong ea ntlafatso. Li-directory tsa / var le / usr li arotsoe ka likarolo tse arohaneng. E kenyellelitse UEFI tšehetso. IN liphutheloana li nchafatsoa ho tloha polokelong ea Tlatsetso (e kenyelletsa liphutheloana tsa thepa);
- Sehahi sa Litšoantšo se ekelitse tšehetso bakeng sa ho aha litšoantšo bakeng sa tikoloho ea maru a Google Cloud le Alibaba Cloud. Ha ho etsoa ho tlatsa litšoantšo, bokhoni ba ho sebelisa repo.git bo ekelitsoe ho kenyelletsa lifaele tse ling tse tsoang ho li-repositories tsa Git;
- Licheke tse ling li kenyellelitsoe ho Glibc bakeng sa malloc ho bona ha li-memory blocks tse fanoeng li senyehile;
- Sephutheloana sa dnf-utils se rehiloe lebitso la yum-utils bakeng sa ho lumellana (bokhoni ba ho kenya dnf-utils bo bolokiloe, empa sephutheloana sena se tla nkeloa sebaka ke yum-utils);
- E kentse khatiso e ncha ea Red Hat Enterprise Linux System Roles, sete ea li-modules le mesebetsi ea ho tsamaisa tsamaiso ea tsamaiso ea tlhophiso e bohareng e thehiloeng ho Ansible le configuring subsystems ho nolofalletsa mesebetsi e itseng e amanang le polokelo, bokhoni ba marang-rang, ho lumellana ha nako, melao ea SElinux le tšebeliso ea kdump mochine. Ka mohlala, karolo e ncha
polokelo e u lumella ho etsa mesebetsi e kang ho laola litsamaiso tsa faele ho disk, ho sebetsa le lihlopha tsa LVM le likarolo tse utloahalang; - Thepa ea marang-rang bakeng sa lithanele tsa VXLAN le GENEVE e kentse ts'ebetsong bokhoni ba ho sebetsana le lipakete tsa ICMP "Sebaka se sa fihleheng", "Packet Too Big" le "Redirect Message", e ileng ea rarolla bothata ka ho se khone ho sebelisa litsela tsa litsela le Tsela ea MTU Discovery ho VXLAN le GENEVE. .
- Ts'ebetso ea liteko ea sistimi e nyane ea XDP (eXpress Data Path), e lumellang Linux ho tsamaisa mananeo a BPF boemong ba mokhanni oa marang-rang ka bokhoni ba ho fihlella ka kotloloho buffer ea pakete ea DMA le sethaleng pele buffer ea skbuff e abeloa ke stack ea marang-rang, hammoho le likarolo tsa eBPF, tse hokahaneng le Linux 5.0 kernel . E kentse tšehetso ea liteko bakeng sa AF_XDP kernel subsystem ();
- Ts'ehetso e felletseng ea protocol ea marang-rang e fanoe (Transparent Inter-process Communication), e etselitsoeng ho hlophisa puisano ea lipuisano ka har'a sehlopha. Protocol e fana ka mokhoa oa hore likopo li buisane kapele le ka ts'epo, ho sa tsotelehe hore na ke li-node life sehlopheng seo li sebetsang ho tsona;
- Mokhoa o mocha oa ho boloka thotobolo ea mantlha haeba o ka hloleha o kentsoe ho initramfs - "", ho sebetsa ka mekhahlelo ea pele ea ho laela;
- E kentse parameter e ncha ea kernel ipcmni_extend, e eketsang moeli oa IPC ID ho tloha ho 32 KB (15 bits) ho ea ho 16 MB (24 bits), e lumellang likopo ho sebelisa likarolo tse ngata tsa memori tse arolelanoang;
- Ipset e ntlafalitsoe hore e lokolle 7.1 ka tšehetso ea IPSET_CMD_GET_BYNAME le IPSET_CMD_GET_BYINDEX;
- Rngd daemon, e tlatsang letamo la entropy la jenereithara ea linomoro tsa pseudorandom, e lokolotsoe tlhokong ea ho sebetsa joalo ka motso;
- Tšehetso e feletseng e fanoeng (Omni-Path Architecture) bakeng sa lisebelisoa tse nang le Host Fabric Interface (HFI) le tšehetso e feletseng bakeng sa lisebelisoa tsa Intel Optane DC Persistent Memory.
- Debug kernels ka ho sa feleng li kenyelletsa moaho o nang le sebui sa UBSAN (Undefined Behavior Sanitizer), se eketsang licheke ho khoutu e hlophisitsoeng ho bona maemo ha boits'oaro ba lenaneo bo sa hlalosoe (mohlala, ts'ebeliso ea mefuta e sa fetoheng pele e qala, e arola. lipalo ka zero, mefuta e mengata e saennoeng e ngata, ho khelosa lintlha tsa NULL, mathata a ho tsamaisana le lintlha, joalo-joalo);
- Sefate sa mohloli oa kernel se nang le li-extensions tsa nako ea sebele (kernel-rt) se hokahanngoa le khoutu e kholo ea RHEL 8 kernel;
- E ekelitse mokhanni oa ibmvnic bakeng sa molaoli oa marang-rang oa vNIC (Virtual Network Interface Controller) ka ho kenya ts'ebetsong ea theknoloji ea marang-rang ea PowerVM. Ha e sebelisoa hammoho le SR-IOV NIC, mokhanni e mocha o lumella bandwidth le boleng ba taolo ea ts'ebeletso sebakeng sa marang-rang sa marang-rang sa marang-rang, ho fokotsa haholo ka holimo le ho fokotsa CPU mojaro;
- Tšehetso e ekelitsoeng bakeng sa Extensions ea Data Integrity, e leng se u lumellang ho sireletsa data ho senya ha u ngolla polokelo ka ho boloka li-blocks tse eketsehileng tsa ho lokisa;
- E kentse tšehetso ea liteko (Teknoloji Preview) bakeng sa sephutheloana , e fanang ka laebrari ea nmstatectl le lisebelisoa bakeng sa ho laola litlhophiso tsa marang-rang ka API ea declarative (boemo ba marang-rang bo hlalosoa ka mokhoa oa morero o hlalositsoeng pele);
- Ts'ehetso e ekelitsoeng ea liteko bakeng sa ts'ebetsong ea kernel-level TLS (KTLS) ka encryption e thehiloeng ho AES-GCM, hammoho le ts'ehetso ea liteko bakeng sa OverlayFS, cgroup v2, , mdev() le DAX (ho fihlella ka ho toba tsamaisong ea faele ho feta cache ea leqephe ntle le ho sebelisa boemo ba sesebelisoa sa block) ho ext4 le XFS;
- Tšehetso e theohileng bakeng sa DSA, TLS 1.0 le TLS 1.1, tse ileng tsa tlosoa DEFAULT sete 'me tsa isoa LEGACY ("update-crypto-policies -set LEGACY");
- Liphutheloana tsa 389-ds-base-legacy-tools li tlositsoe.
Authd
tlhokomelo,
lebitso la moamoheli,
libidn,
lisebelisoa tsa nete,
mangolo a marang-rang,
nss-pam-ldapd,
sendmail,
lisebelisoa tsa yp
ypbind le ypsv. Li ka 'na tsa khaotsoa ka tokollo ea bohlokoa e tlang; - Lingoliloeng tsa ifup le ifdown li nkeloe sebaka ke li-wrappers tse letsetsa NetworkManager ka nmcli (ho khutlisa mangolo a khale, o hloka ho tsamaisa "yum install network-scripts").
Source: opennet.ru