uphando ukukhutshwa komkhangeli wewebhu . Ngaxeshanye ukukhululwa okuzinzileyo kweprojekthi yasimahla , esebenza njengesiseko seChrome. Isikhangeli seChrome ukusetyenziswa kweempawu zikaGoogle, ubukho benkqubo yokuthumela izaziso kwimeko yokuphazamiseka, ukukwazi ukukhuphela imodyuli yeFlash kwisicelo, iimodyuli zokudlala umxholo wevidiyo okhuselweyo (DRM), inkqubo yokufaka ngokuzenzekelayo uhlaziyo kunye nokuhanjiswa ngexesha lokukhangela. . Ukukhutshwa okulandelayo kweChrome 80 kucwangciselwe i-4 kaFebruwari.
:
- Icandelo lokujonga igama lokugqithisa, eliyilelwe ukuhlalutya amandla egama lokugqitha elisetyenziswa ngumsebenzisi. Xa uzama ukungena kuyo nayiphi na indawo yokujonga igama lokugqithisa ukujonga igama lokungena kunye negama lokugqitha ngokuchasene nesiseko sedatha yeeakhawunti ezithotyiweyo ngesilumkiso ukuba iingxaki zichongiwe (ukukhangela kuqhutywa ngokusekwe kwisimaphambili se-hash kwicala lomsebenzisi). Ukutshekishwa kwenziwa ngokuchasene nedathabheyisi egubungela ngaphezulu kwe-4 yeebhiliyoni zeeakhawunti ezichaphazelekileyo ezivele koovimba bolwazi abavuzayo. Isilumkiso sikwaboniswa xa uzama ukusebenzisa amagama ayimfihlo angenamsebenzi afana no "abc123". Ukulawula ukufakwa kwe-Password Checkup, isilungiselelo esikhethekileyo siphunyezwe kwicandelo elithi "Sync and Google Services".
- Itekhnoloji entsha yokufumanisa i-phishing ngexesha lokwenyani ibonisiwe. Ngaphambili, uqinisekiso lwenziwa ngokufikelela kuluhlu lwabamnyama olukhutshelweyo olukhutshelwe ekuhlaleni, oluye lwahlaziywa malunga kanye ngemizuzu engama-30, oluye lwabonakala lungonelanga, umzekelo, kwiimeko zokutshintsha rhoqo kwesizinda ngabahlaseli. Indlela entsha ikuvumela ukuba ukhangele ii-URL kwi-fly nge-check preliminary against whitelists ezibandakanya i-hashes yamawaka eendawo ezithandwayo ezithembekileyo. Ukuba isiza esivulwayo asikho kuluhlu olumhlophe, isikhangeli sijonga i-URL kwiseva kaGoogle, sithumela iibhithi zokuqala ezingama-32 ze-SHA-256 hash yekhonkco, apho idatha yobuqu inokunqunyulwa khona. Ngokutsho kukaGoogle, indlela entsha inokuphucula ukusebenza kwezilumkiso kwiindawo ezintsha zokukhwabanisa nge-30%.
- Okongeziweyo ukhuseleko olusebenzayo ngokuchasene nokudluliselwa kwenkcazi zikaGoogle kunye nawo nawaphi na amagama ayimfihlo agcinwe kumphathi wegama lokugqitha ngokusebenzisa amaphepha enkohliso. Ukuba uzama ukufaka igama eliyimfihlo eligciniweyo kwisiza apho elo gama lokugqithisa liqhele ukusetyenziswa, umsebenzisi uya kulunyukiswa malunga nesenzo esinokuba yingozi.
- Uqhagamshelwano olusebenzisa i-TLS 1.0 kunye ne-1.1 ngoku lubonisa isalathisi sokungakhuselekanga. Ixhasa ngokupheleleyo i-TLS 1.0 kunye ne-1.1 kwiChrome 81, icwangciselwe ngoMatshi 17, 2020.
- Yongeza ukukwazi ukukhenkceza iithebhu ezingasebenziyo, okukuvumela ukuba ukhuphe ngokuzenzekelayo kwiithebhu zememori ebezingasemva ngaphezulu kwemizuzu emi-5 kwaye ungenzi zenzo ezibalulekileyo. Isigqibo malunga nokufaneleka kwethebhu ethile yokukhenkceza senziwa ngokusekelwe kwi-heuristics. Ukwenza umsebenzi kulawulwa nge-"chrome://flags/#proactive-tab-freeze" iflegi.
- Ukuvala umxholo oxutyiweyo kumaphepha avulwe ngaphezulu kwe-HTTPS ukuqinisekisa ukuba amaphepha avulwe ngaphezulu kwe-https:// aqulathe kuphela izixhobo ezilayishwe kumjelo wonxibelelwano okhuselekileyo. Nangona ezona ntlobo ziyingozi kakhulu zomxholo oxutyiweyo, onje ngezikripthi kunye nee-iframes, sele zivaliwe ngokungagqibekanga, imifanekiso, iifayile zeaudio kunye neevidiyo zisenokukhutshelwa nge-http: //. Isalathisi somxholo oxutyiweyo esisetyenzisiweyo ngaphambili kolu fakelo lufunyaniswe lungasebenzi kwaye lulahlekisa kumsebenzisi, kuba alunikezeli uvavanyo olungacacanga lokhuseleko lwephepha. Ngokomzekelo, ngokusebenzisa i-spoofing yomfanekiso, umhlaseli unokuthatha indawo ye-cookies yokulandela umkhondo wabasebenzisi, azame ukusebenzisa ubuthathaka kwiiprosesa zemifanekiso, okanye enze umgunyathi ngokubuyisela ulwazi olunikeziwe kumfanekiso. Ukukhubaza ukutshixa kwamacandelo axubileyo, isethingi ekhethekileyo yongezwa, enokufikelela kwimenyu evelayo xa ucofa kwisimboli sokukhiya.
- Kongezwe amandla okulinga ukwabelana ngomxholo webhodi eqhotyoshwayo phakathi kwedesktop kunye neenguqulelo zeselfowuni zeChrome. Kwimizekelo yeChrome eqhagamshelwe kwiakhawunti enye, ngoku unokufikelela imixholo yebhodi eqhotyoshwayo yesinye isixhobo, kubandakanya nokwabelana ngebhodi eqhotyoshwayo phakathi kwemfonomfono kunye neenkqubo zedesktop. Imixholo yebhodi eqhotyoshwayo iguqulelwe ngokuntsonkothileyo kusetyenziswa uguqulelo oluntsonkothileyo oluya ekupheleni, oluthintela ukufikelela kokubhaliweyo kwiiseva zikaGoogle. Umsebenzi wenziwe ngokusebenzisa iinketho chrome://flags#ekwabelwana-kwebhodi eqhotyoshwayo-umamkeli, chrome://flags#shared-clipboard-ui kunye chrome://flags#sync-clipboard-service.
- Kwibha yedilesi ngamaxesha athile (umzekelo, xa ugcina igama eliyimfihlo) xa ulungelelwaniso lweprofayili lucinyiwe, ngaphezu kwe-avatar, igama le-akhawunti ye-Google yangoku iboniswa ukuze umsebenzisi akwazi ukuchonga ngokuchanekileyo i-akhawunti esebenzayo yangoku.
- Yenzelwe i-1% yabasebenzisi "I-DNS phezu kwe-HTTPS" (i-DoH, i-DNS phezu kwe-HTTPS). Uvavanyo lubandakanya kuphela abasebenzisi abanesetingi zesistim esele ibachazile ababoneleli be-DNS abaxhasa i-DoH. Umzekelo, ukuba umsebenzisi une-DNS 8.8.8.8 echazwe kwiisetingi zesistim, ngoko inkonzo ye-Google ye-DoH (βhttps://dns.google.com/dns-queryβ) iya kwenziwa isebenze kwiChrome ukuba i-DNS yi-1.1.1.1. XNUMX, emva koko inkonzo ye-DoH Cloudflare ("https://cloudflare-dns.com/dns-query"), njl. Ukulawula ukuba i-DoH yenziwe yasebenza na, i-"chrome://flags/#dns-over-https" useto lunikiwe. Iindlela ezintathu zokusebenza zixhaswa: zikhuselekile, zizenzekelayo kwaye zivaliwe. Kwimowudi "ekhuselekileyo", iinginginya zimiselwa kuphela ngokusekelwe kumaxabiso akhuselweyo agcinwe ngaphambili (afunyenwe ngoqhagamshelo olukhuselekileyo) kwaye izicelo nge-DoH yokubuyela umva kwi-DNS eqhelekileyo ayisetyenziswa. Kwimo "ezenzekelayo", ukuba i-DoH kunye ne-cache ekhuselekileyo ayifumaneki, idatha inokufunyanwa kwi-cache engakhuselekanga kwaye ifikeleleke nge-DNS yendabuko. Kwimodi "yokucima", i-cache ekwabelwana ngayo ihlolwe kuqala kwaye ukuba akukho datha, isicelo sithunyelwa nge-DNS yenkqubo.
- Kongezwe umfuniselo i-caching yesiqulatho esinikezelweyo xa utshintsha amaphepha usebenzisa amaqhosha angaphambili nangasemva, anokunciphisa kakhulu ukulibaziseka ngexesha lolu hlobo lokukhangela ngenxa yogcino olupheleleyo lwephepha lonke, elingadingi kuphinda kunikezelwe kunye nokulayishwa kwezibonelelo. Ukulungiswa kubonakala ngokukodwa kwinguqulo yezixhobo eziphathwayo, apho ukunyuka komsebenzi ngexesha lokuhamba kufikelela kwi-19%. Imowudi yenziwe kusetyenziswa "chrome://flags#back-forward-cache" ukhetho.
- ukusetha "chrome://flags/#omnibox-ui-hide-steady-state-url-scheme-and-subdomains", evumele ukubuyisela umboniso weprotocol kwibar yedilesi (ngoku onke amakhonkco ahlala eboniswa ngaphandle kwe-https : // kunye ne-http: / /, kwaye ngaphandle kwe "www.").
- Ulwakhiwo lweWindows lubandakanya i-sandboxing yenkonzo yokudlala okuvakalayo. Ukulawula ukuba ukwahlulwa kwenziwe, iAudioSandboxEnabled ipropati iyacetywa.
- Izixhobo zolawulo ezikwindawo esembindini kumashishini zibandakanya ukukwazi ukuchaza imithetho elawula ukuba ingakanani inkumbulo enokusetyenziswa ngumkhangeli zincwadi phambi kokuba kuthulwe iithebhu ezingasemva. Imemori ekhutshiweyo emva kokukhulula ithebhu ifumaneka ukuze isetyenziswe, kwaye imixholo yethebhu ilayishwa kwakhona xa utshintshela kuyo.
- I-Linux isebenzisa iprosesa eyakhelwe-ngaphakathi yoqinisekiso lwesatifikethi, ethatha indawo yenkqubo ye-NSS ebisetyenziswa ngaphambili. Kule meko, iprosesa eyakhelwe-ngaphakathi iyaqhubeka nokusebenzisa ivenkile ye-NSS ngexesha lokuqinisekisa, kodwa ibeka iimfuno ezingqongqo ngakumbi xa kusetyenzwa ngokungalunganga ngekhowudi kunye neziqinisekiso eziqinisekisiweyo (zonke izatifikethi kufuneka ziqinisekiswe ngugunyaziwe wesatifikethi).
- Kwinguqulelo yeqonga le-Android ukukwazi ukwabela ii-icon eziguquguqukayo kwiinkqubo zewebhu ezifakiweyo ezisebenza kwimo yeProgressive Web Apps (PWA). Iimpawu ze-adaptive ziyakwazi ukuziqhelanisa nojongano olusetyenziswa ngumenzi wesixhobo, umzekelo, ukuba ngqukuva, isikwere, okanye ngeekona ezigudileyo.
- API , ebonelela ngokufikelela kumacandelo okudala inyani kunye nenyani eyongeziweyo. I-API ikuvumela ukuba udibanise umsebenzi kunye neeklasi ezahlukeneyo zezixhobo, ukusuka kwi-headsets yenyani emileyo efana ne-Oculus Rift, i-HTC Vive kunye ne-Windows Mixed Reality, kwizisombululo ezisekelwe kwizixhobo eziphathwayo ezifana ne-Google Daydream View kunye ne-Samsung Gear VR. Izicelo apho i-API entsha inokusebenza khona ziquka iinkqubo zokubukela ividiyo kwimodi ye-360 Β°, iinkqubo zokujonga indawo ye-dimensional-dimensional, ukudala ii-cinema ezibonakalayo zokubonisa ividiyo, ukuqhuba iimvavanyo ekudaleni i-3D interfaces kwiivenkile kunye neegalari;
- Kwimo yovavanyo lweMvelaphi (iifitsha zovavanyo ezifuna ukwahluka ) ii-API ezininzi ezintsha ziye zacetywa. Uvavanyo lwemvelaphi luthetha ukukwazi ukusebenza kunye ne-API echaziweyo kwizicelo ezikhutshelwe kwi-localhost okanye i-127.0.0.1, okanye emva kokubhalisa kunye nokufumana ithokheni ekhethekileyo esebenzayo ixesha elilinganiselweyo kwindawo ethile.
- Kuzo zonke izinto ze-HTML, uphawu lwe-"rendersubtree" lucetywayo, oluqinisekisa ukuba umboniso wento ye-DOM ilungisiwe. Ukuseta uphawu "olungabonakaliyo" kuya kuthintela umxholo wento ukuba unikezelwe okanye uhlolwe, ukuvumela unikezelo oluphuculweyo. Xa imiselwe ukuba "isebenze", isikhangeli siya kususa uphawu olungabonakaliyo, lunikeze umxholo kwaye lubonakale.
- Inketho ye-API eyongeziweyo ngokusekelwe kwindlela yeSithembiso, ebonelela ngendlela ekhuselekileyo yokulawula ukukhubaza izikrini zokutshixa ngokuzenzekelayo kunye nokutshintsha izixhobo kwiindlela zokugcina amandla.
- Kuphunyezwe ukukwazi ukusebenzisa uphawu kuzo zonke izinto zeHTML kunye neSVG ezinokuba nokugxila kwigalelo.
- Yemifanekiso kunye neevidiyo Bala umyinge we-aspect ratio esekelwe kuBububanzi okanye kwiimpawu zoBubude, obunokusetyenziswa ukumisela ubungakanani bomfanekiso usebenzisa i-CSS kwinqanaba xa umfanekiso ungekalayishwa (uyisombulula ingxaki ngokwakhiwa kwakhona kwephepha emva kokuba imifanekiso ilayishiwe).
- Ipropathi eyongeziweyo yeCSS , ecwangcisa ngokuzenzekelayo ubungakanani befonti eguquguqukayo kwizilungelelanisi zamehlo "", ukuba ifonti iyabaxhasa. Imowudi ikuvumela ukuba ukhethe eyona milo yeglyph yobungakanani obukhankanyiweyo, umzekelo, sebenzisa iiglyphs ezichaseneyo kwizihloko.
- Ipropathi eyongeziweyo yeCSS , ekuvumela ukuba usebenzise naziphi na iisimboli endaweni yamaxesha kuluhlu, umzekelo, β-β, β+β, ββ β kunye ββΈβ.
- Ukuba akunakwenzeka ukwenza i-Worklet.addModule (), into ngoku ibuyiswe ngolwazi oluneenkcukacha malunga nobume bempazamo, ekuvumela ukuba uvavanye ngokuchanekileyo ngakumbi unobangela wempazamo (iingxaki ngoqhagamshelwano lwenethiwekhi, i-syntax engachanekanga, njl. .).
- Kuyekile ukusetyenzwa kwezinto ΠΏΡΠΈ ΠΈΡ ΠΏΠ΅ΡΠ΅ΠΌΠ΅ΡΠ΅Π½ΠΈΠΈ ΠΌΠ΅ΠΆΠ΄Ρ Π΄ΠΎΠΊΡΠΌΠ΅Π½ΡΠ°ΠΌΠΈ. ΠΡΠΈ ΠΏΠ΅ΡΠ΅Π½ΠΎΡΠ΅ ΠΌΠ΅ΠΆΠ΄Ρ Π΄ΠΎΠΊΡΠΌΠ΅Π½ΡΠ°ΠΌΠΈ ΡΠ°ΠΊΠΆΠ΅ ΠΎΡΠΊΠ»ΡΡΠ΅Π½ΠΎ Π²ΡΠΏΠΎΠ»Π½Π΅Π½ΠΈΠ΅ ΡΠ²ΡΠ·Π°Π½Π½ΡΡ ΡΠΎ ΡΠΊΡΠΈΠΏΡΠΎΠΌ ΡΠΎΠ±ΡΡΠΈΠΉ Β«errorΒ» ΠΈ Β«loadΒ».
- Kwi-JavaScript injini ye-V8 Ukulungiswa kokuphathwa kweenguqu zokumelwa kwemimandla kwizinto, okubangela ukuphunyezwa kwekhowudi ye-AngularJS kwi-Speedometer test suite eqhuba i-4% ngokukhawuleza.
- I-V8 iphinda ilungise ukusetyenzwa kwee-getters ezichazwe kwii-APIs ezakhelwe ngaphakathi, ezifana ne-Node.nodeType kunye ne-Node.nodeName, ngokungabikho komphathi we-IC (i-caching engaphakathi). Utshintsho lunciphise ixesha elichithwe kwi-IC runtime malunga ne-12% xa kuqhuba i-Backbone kunye ne-jQuery tests ukusuka kwi-Speedometer suite.
- Iziphumo zeOSR (ebizwa ngokuba yi-on-stack replacement) zigcinwe kwi-cache, ethatha indawo yekhowudi ephuculweyo ngexesha lokwenziwa komsebenzi (ikuvumela ukuba uqalise ukusebenzisa ikhowudi ephuculweyo yemisebenzi eqhuba ixesha elide ngaphandle kokuyilinda ukuba iphinde isebenze). I-caching ye-OSR yenza kube lula ukusebenzisa iziphumo zokuphucula xa uphinda uqhuba umsebenzi, ngaphandle kwesidingo sokuhamba ngokutsha.
Kwezinye iimvavanyo, utshintsho lwandise ukusebenza okuphezulu nge-5-18%. - Utshintsho kwizixhobo zabaphuhlisi bewebhu:
-
imowudi yokulungisa ukulungisa izizathu zokuvala isicelo okanye ukuthumela iCookie.
- Kwibhloko kunye noluhlu lweCookie, ukukwazi ukujonga ngokukhawuleza ixabiso leCookie ekhethiweyo yongezwa ngokuchofoza kumgca othile.
- Kongezwe ukukwazi ukulinganisa iisetingi ezahlukeneyo zenkqubo ekhethwayo-yemibala kunye nemibuzo yemidiya ekhethwayo-encitshisiweyo (umzekelo, ukuvavanya indlela yokuziphatha kwephepha ngomxholo wenkqubo emnyama okanye iziphumo zoopopayi zivaliwe).
- Uyilo lwethebhu ye-Caverage yenziwe yala maxesha, ikuvumela ukuba uvavanye ikhowudi esetyenzisiweyo kwaye ayisetyenziswa. Yongezwe ukukwazi ukuhluza ulwazi ngohlobo lwayo (JavaScript, CSS). Ulwazi losetyenziso lwekhowudi yongezwa xa kuboniswa isicatshulwa somthombo.
- Ukongezwa ukukwazi ukulungisa iimpazamo kwizizathu zokucela isixhobo esithile sothungelwano emva kokurekhoda umsebenzi womnatha (ungajonga umkhondo womnxeba wekhowudi yeJavaScript ekhokelele ekulayishweni kovimba).
- Ukongezwa "Useto> Okukhethwayo> Imithombo> Ukunyanzeliswa okungagqibekanga" ukumisela uhlobo lwe-indentation (izithuba ze-2/4/8 okanye iithebhu) kwikhowudi eboniswe kwi-Console kunye neepaneli zeMithombo.
- Kwibhloko kunye noluhlu lweCookie, ukukwazi ukujonga ngokukhawuleza ixabiso leCookie ekhethiweyo yongezwa ngokuchofoza kumgca othile.
Ukongeza kwizinto ezintsha kunye nokulungiswa kwebug, inguqulelo entsha isusa ubuthathaka obungama-51. Uninzi lobuthathaka luchongiwe ngenxa yovavanyo oluzenzekelayo kusetyenziswa idilesi yeSanitizer, MemorySanitizer, Control Flow Integrity, LibFuzzer kunye nezixhobo zeAFL. Imiba emibini (i-CVE-2019-13725, ukufikelela kwimemori esele ikhululiwe kwikhowudi yenkxaso yeBluetooth, kunye ne-CVE-2019-13726, ukuphuphuma kwemfumba kumphathi wephasiwedi) iphawulwe njengento ebalulekileyo, okt. ikuvumela ukuba ugqithe kuwo onke amanqanaba okhuseleko lomkhangeli zincwadi kwaye wenze ikhowudi kwisixokelelwano esingaphandle kwendawo yebhokisi yesanti. Eli lixesha lokuqala ukuba kuchongwe iingxaki ezimbini ezibalulekileyo kumjikelezo ofanayo wophuhliso kwiChrome. Ubuthathaka bokuqala bufunyenwe ngabaphandi abavela kwiLebhu yoKhuseleko lwe-Tencent Keen kunye kukhuphiswano lweNdebe yeTianfu, kwaye okwesibini kwafunyanwa nguSergei Glazunov ukusuka kuGoogle Project Zero.
Njengenxalenye yenkqubo yokuvuza imali yokufumana ubuthathaka kukhupho lwangoku, uGoogle uhlawule amabhaso angama-37 axabisa iidola ezingama-80000 (ibhaso elinye lama-20000 eedola, ibhaso elinye le-10000 yeedola, amabhaso amabini e-$7500, amabhaso amane e-$5000, ibhaso elinye le-3000 yeedola, ezimbini zeedola ezingama-2000 kunye needola ezisibhozo. $1000 amabhaso). Ubungakanani bemivuzo ye-500 ayikachazwa.
umthombo: opennet.ru