ProHoster > Ibhulogi > iindaba ze-intanethi > Chrome 86

Chrome 86

Ukukhutshwa okulandelayo kweChrome 86 kunye nokukhululwa okuzinzile kweChromium kukhutshiwe.

Utshintsho oluphambili kwiChrome 86:

  • ukukhuselwa ekungenisweni okungakhuselekanga kweefom zegalelo kumaphepha alayishwe ngaphezulu kwe-HTTPS kodwa ukuthumela idatha nge-HTTP.
  • Ukuvala ukhuphelo olungakhuselekanga (http) lweefayile ezisebenzisekayo luncediswa ngokuthintela ukukhutshelwa okungakhuselekanga kokugcinwa (zip, iso, njl.) kunye nokubonisa izilumkiso zokukhuphela okungakhuselekanga kwamaxwebhu (docx, pdf, njl.). Ukuvalwa kwamaxwebhu kunye nezilumkiso zemifanekiso, umbhalo, kunye neefayile zemidiya kulindeleke kukhupho olulandelayo. Ukuthintela kuphunyeziwe kuba ukukhuphela iifayile ngaphandle kwe-encryption ingasetyenziselwa ukwenza izenzo ezinobungozi ngokutshintsha umxholo ngexesha lokuhlaselwa kwe-MITM.
  • Imenu yemeko engagqibekanga ibonisa "Soloko ubonisa i-URL epheleleyo" ukhetho, obelufuna ngaphambili ukutshintshwa kwezicwangciso malunga nephepha leeflegi ukuze lisebenze. I-URL epheleleyo inokujongwa ngokucofa kabini kwibha yedilesi. Masikukhumbuze ukuba ukuqala nge-Chrome 76, ngokuzenzekelayo idilesi yaqala ukuboniswa ngaphandle kweprotocol kunye ne-www subdomain. Kwi-Chrome 79, ukuseta ukubuyisela ukuziphatha kwakudala kususiwe, kodwa emva kokunganeliseki komsebenzisi, iflegi entsha yokuvavanya yongezwa kwi-Chrome 83 eyongeza inketho kwimenyu yomxholo ukukhubaza ukufihla kunye nokubonisa i-URL epheleleyo kuzo zonke iimeko.
    Kwipesenti encinci yabasebenzisi, umfuniselo uqalisiwe ukubonisa kuphela i-domain kwibar yedilesi ngokungagqibekanga, ngaphandle kwezinto zendlela kunye neeparameters zombuzo. Umzekelo, endaweni ye "https://example.com/secure-google-sign-in/" "example.com" iya kuboniswa. Imo ecetywayo ilindeleke ukuba iziswe kubo bonke abasebenzisi kukhupho olulandelayo. Ukukhubaza le ndlela yokuziphatha, ungasebenzisa "Soloko ubonisa i-URL epheleleyo" ukhetho, kwaye ukujonga yonke i-URL, unokucofa kwibar yedilesi. Injongo yolu tshintsho ngumnqweno wokukhusela abasebenzisi kubuqhetseba obusebenzisa iiparamitha kwi-URL - abahlaseli bathatha ithuba lokungakhathaleli kwabasebenzisi ukwenza inkangeleko yokuvula enye indawo kunye nokwenza izenzo zobuqhophololo (ukuba ezo kutshintshwa kucacile kumsebenzisi onobuchule bobugcisa. , ngoko abantu abangenamava bawela ngokulula kubuchule obulula ngolo hlobo).
  • Inyathelo lokususa inkxaso yeFTP lihlaziywe. KwiChrome 86, i-FTP ivaliwe ngokungagqibekanga malunga ne-1% yabasebenzisi, kwaye kwi-Chrome 87 ububanzi bokukhubazeka kuya kwandiswa ukuya kuma-50%, kodwa inkxaso inokubuyiswa kusetyenziswa "--enable-ftp" okanye "- -enable-features=FtpProtocol" iflegi. KwiChrome 88, inkxaso yeFTP iya kucinywa ngokupheleleyo.
  • Kwinguqulo ye-Android, efana nenguqulo yeenkqubo zedesktop, umphathi wephasiwedi usebenzisa isheke lokungena okugciniweyo kunye namagama ayimfihlo ngokuchasene nedatha yeeakhawunti ezithotyiweyo, ebonisa isilumkiso ukuba iingxaki zichongiwe okanye kuzanywa ukusebenzisa amagama ayimfihlo angenamsebenzi. Ukutshekishwa kwenziwa ngokuchasene nedathabheyisi egubungela ngaphezulu kwe-4 yeebhiliyoni zeeakhawunti ezichaphazelekileyo ezivele koovimba bolwazi abavuzayo. Ukugcina ubumfihlo, isimaphambili se-hash siqinisekiswa kwicala lomsebenzisi, kwaye amagama ayimfihlo ngokwawo kunye neehashi zabo ezipheleleyo azithunyelwa ngaphandle.
  • Iqhosha elithi "Ukukhangela ukhuseleko" kunye nemo yokhuseleko eyongeziweyo kwiindawo ezinobungozi (Ukhangelo oluKhuselekileyo oluKhuselekileyo) nazo zidluliselwe kwinguqulelo ye-Android. Iqhosha elithi "Ukukhangela ukhuseleko" libonisa isishwankathelo semiba yokhuseleko enokwenzeka, efana nokusetyenziswa kwamagama ayimfihlo adityanisiweyo, ubume bokukhangela iisayithi ezinobungozi (Ukhangelo oluKhuselekileyo), ubukho bohlaziyo olungafakwanga, kunye nokuchongwa kwezongezo eziyingozi. Imowudi yokhuseleko oluphezulu ivula iitshekhi ezongezelelweyo ukukhusela ngokuchasene nenkohliso, isenzo esikhohlakeleyo kunye nezinye izoyikiso kwiWebhu, kwaye ibandakanya ukhuseleko olongezelelweyo lweakhawunti yakho kaGoogle kunye neenkonzo zikaGoogle (i-Gmail, iDrive, njl.). Ukuba kwindlela eqhelekileyo yokhangelo oluKhuselekileyo uhlolo lwenziwa ekuhlaleni kusetyenziswa ugcino lwedatha ngamaxesha athile lulayishwe kwinkqubo yomxhasi, emva koko kulwazi oluKhuselekileyo lokhangelo oluKhuselekileyo malunga namaphepha kunye nokukhutshelwa ngexesha lokwenyani kuthunyelwa ukuqinisekiswa kwicala likaGoogle, elikuvumela ukuba uphendule ngokukhawuleza izoyikiso ngoko nangoko emva kokuba zichongiwe, ngaphandle kokulinda de kuhlaziywe uluhlu olumnyama lwendawo.
  • Inkxaso eyongeziweyo yefayile yesalathisi ".well-known / change-password", apho abanikazi besayithi banokucacisa idilesi yefom yewebhu yokutshintsha igama eliyimfihlo. Ukuba iziqinisekiso zomsebenzisi zithotyelwe, iChrome ngoku iza kwazisa ngoko nangoko umsebenzisi ngefomu yokutshintsha igama lokugqitha esekwe kulwazi olukule fayile.
  • Isilumkiso esitsha "Isilumkiso soKhuseleko" siphunyeziwe, sibonakaliswe xa kuvulwa iziza ezinesizinda esifana kakhulu nesinye isayithi kwaye i-heuristics ibonisa ukuba kukho amathuba aphezulu okutshatyalaliswa (umzekelo, i-goog0le.com ivuliwe endaweni ye-google.com).

    * Inkxaso ye-Cache yokubuyela ngasemva iphunyeziwe, ibonelela ngokukhangela ngokukhawuleza xa usebenzisa amaqhosha athi "Emuva" kunye "Phambili" okanye xa uhamba kumaphepha ajongwe ngaphambili kwindawo yangoku. Indawo efihlakeleyo yenziwe kusetyenziswa i-chrome://flags/#back-forward-cache setting.

  • Ukuphucula ukusetyenziswa kwezixhobo ze-CPU kwiifestile ezingaphandle kobubanzi. I-Chrome ijonga ukuba ingaba ifestile yesikhangeli igqunywe ngezinye iifestile kwaye inqanda ukuzoba ipixels kwiindawo ezigqitheneyo. Olu lungelelwaniso lwenziwe lwasebenza kwipesenti encinci yabasebenzisi kwi-Chrome 84 kunye ne-85 kwaye ngoku yenziwe yonke indawo. Xa kuthelekiswa nokukhutshwa kwangaphambili, ukungahambelani neenkqubo ze-virtualization ezibangele ukuba kuvele amaphepha amhlophe angenanto nako kusonjululwe.
  • Ukwenyuka kokucuthwa kovimba kwiithebhu zangasemva. Iithebhu ezinjalo azinakuphinda zidle ngaphezu kwe-1% yezixhobo ze-CPU kwaye zingenziwa zisebenze ngaphezu kweyodwa ngomzuzu. Emva kwemizuzu emihlanu yokuba ngasemva, iithebhu ziyabanjiswa, ngaphandle kweethebhu ezidlala umxholo wemultimedia okanye ukurekhoda.
  • Umsebenzi uqalise kwakhona ukudibanisa i-header ye-HTTP yoMsebenzisi-Arhente. Kuhlelo olutsha, inkxaso yeNgcaciso yeeNgcebiso zoMsebenzi woMsebenzi, ophuhliswe njengendawo yoMsebenzi woMsebenzisi, uyasebenza kubo bonke abasebenzisi. Indlela entsha ibandakanya ukubuyisela idatha ekhethiweyo malunga ne-browser ethile kunye neeparameters zenkqubo (uguqulelo, iqonga, njl.) kuphela emva kwesicelo somncedisi kunye nokunika abasebenzisi ithuba lokubonelela ngolwazi olunjalo kubanikazi besayithi. Xa usebenzisa iingcebiso zoMxumi we-Agent-Agent, isichongi asihanjiswa ngokungagqibekanga ngaphandle kwesicelo esicacileyo, esenza ukuba uchongo olwenziwayo lungenzeki (ngokungagqibekanga, kuphela igama lomkhangeli libonisiwe).
    Isibonakaliso sobukho bohlaziyo kunye nesidingo sokuqalisa kwakhona isikhangeli ukuyifaka itshintshiwe. Endaweni yotolo olunemibala, "Uhlaziyo" ngoku luvela kwindawo ye-avatar yeakhawunti.
  • Kuye kwenziwa umsebenzi wokuguqula isikhangeli ukuba sisebenzise isigama esibandakanyayo. Kumagama omgaqo-nkqubo, amagama athi "uluhlu olumhlophe" kunye "noluhlu olumnyama" athatyathelwe indawo "luluhlu lokuvumela" kunye "noluhlu lwebhloko" (iipolisi esele zifakiwe ziya kuqhubeka zisebenza, kodwa ziya kubonisa isilumkiso malunga nokuhoxiswa). Kwikhowudi kunye namagama eefayile, iimbekiselo eziya ku-"blacklist" zithathelwe indawo "blocklist". Iimbekiselo ezibonakala ngabasebenzisi "kuluhlu olumnyama" kunye "noluhlu olumhlophe" zatshintshwa ekuqaleni kuka-2019.
    Kongezwe amandla okulinga ukuhlela amagama agqithisiweyo agciniweyo, avulwe kusetyenziswa iflegi ye-"chrome://flags/#edit-passwords-in-settings".
  • I-API yeNkqubo yeFayile yeNative idluliselwe kudidi lwe-API ezinzileyo nekhoyo esidlangalaleni, ikuvumela ukuba wenze izicelo zewebhu ezisebenzisana neefayile kwinkqubo yefayile yendawo. Ngokomzekelo, i-API entsha inokuba yimfuno kwi-browser-based based development environments, umbhalo, umfanekiso kunye nabahleli bevidiyo. Ukuze ukwazi ukubhala ngokuthe ngqo kwaye ufunde iifayile okanye usebenzise iidialogs ukuvula nokugcina iifayile, kunye nokuhamba ngemixholo yoluhlu, isicelo sicela umsebenzisi ukuba aqinisekise ngokukodwa.
  • Yongezwe umkhethi we-CSS ":focus-visible", esebenzisa i-heuristics efanayo esetyenziswa sisikhangeli xa sisenza isigqibo sokubonisa isalathisi soguquko (xa uhambisa ingqwalasela kwiqhosha usebenzisa iindlela ezimfutshane zebhodi yezitshixo, isalathisi siyavela, kodwa xa ucofa imouse. , akunjalo). Umkhethi we-CSS okhoyo ngaphambili ":focus" uhlala egxininisa ugxininiso. Ukongeza, ukhetho "lokuGqamisa okuKhawulezayo" longezwe kwizicwangciso, xa lunikwe amandla, isalathisi esongezelelweyo siya kuboniswa ecaleni kwezinto ezisebenzayo, ezihlala zibonakala nokuba izinto zesitayile zokugqamisa ngokubonakalayo zivaliwe kwiphepha ngeCSS. .
  • Ii-API ezininzi ezintsha zongezwe kwimowudi yoLingo lweMvelaphi (iimpawu zovavanyo ezifuna ukusebenza ngokwahlukileyo). Uvavanyo lwemvelaphi luthetha ukukwazi ukusebenza kunye ne-API echaziweyo kwizicelo ezikhutshelwe kwi-localhost okanye i-127.0.0.1, okanye emva kokubhalisa kunye nokufumana ithokheni ekhethekileyo esebenzayo ixesha elilinganiselweyo kwindawo ethile.
  • I-WebHID API yokufikelela kwinqanaba elisezantsi kwizixhobo ze-HID (izixhobo zojongano lwabantu, izitshixo, iimpuku, iipads, iipadi zokuchukumisa), ekuvumela ukuba uphumeze ingqiqo yokusebenza ngesixhobo se-HID kwiJavaScript ukuququzelela umsebenzi ngezixhobo ezinqabileyo zeHID ngaphandle kobukho besixhobo. abaqhubi abathile kwinkqubo. Okokuqala, i-API entsha ijolise ekuboneleleni ngenkxaso yee-gamepads.
  • I-API yoLwazi lweSkrini, yandisa i-API yokubeka iWindow ukuxhasa ulungelelwaniso lwescreen ezininzi. Ngokungafaniyo ne-window.screen, i-API entsha ikuvumela ukuba usebenzise ukubekwa kwefestile kwindawo yonke yesikrini seenkqubo ezininzi zokubeka iliso, ngaphandle kokukhawulelwa kwisikrini sangoku.
  • I-Meta tag yogcino lwebhetri, apho isayithi inokwazisa isikhangeli malunga nesidingo sokuvula iindlela zokunciphisa ukusetyenziswa kwamandla kunye nokwandisa umthwalo we-CPU.
  • I-COOP Reporting API ukunika ingxelo yokuphulwa okunokwenzeka kwe-Cross-Origin-Embedder-Policy (COEP) kunye ne-Cross-Origin-Opener-Policy (COOP) iindlela zokuzihlukanisa, ngaphandle kokusebenzisa izithintelo zangempela.
  • I-API yoLawulo lweCredential inikeza uhlobo olutsha lweziqinisekiso, i-PaymentCredential, enika isiqinisekiso esongezelelweyo sokuthengiselana kwentlawulo eyenziwayo. Iqela elithembekileyo, elifana nebhanki, linamandla okuvelisa isitshixo sikawonke-wonke, i-PublicKeyCredential, enokucelwa ngumrhwebi ukuqinisekiswa kwentlawulo eyongezelelweyo ekhuselekileyo.
  • I-PointerEvents API yokumisela ukuthambeka kwe-stylus* yongeze inkxaso yee-engile zokuphakama (i-engile phakathi kwe-stylus nesikrini) kunye ne-azimuth (i-engile phakathi kwe-X axis kunye nentelekelelo ye-stylus kwisikrini), endaweni ye-azimuth. Ii-angles ze-TiltX kunye ne-TiltY (ii-engile phakathi kwendiza ukusuka kwi-stylus kunye nenye yee-axes kunye nenqwelomoya ukusuka kwi-Y kunye ne-Z). Kongezwe imisebenzi yoguqulo phakathi komphakamo/azimuth kunye neTiltX/TiltY.
  • Kutshintwe ukukhowudwa kwendawo kwii-URL xa uyibala kwiziphatho zeprothokholi - indlela ye-navigator.registerProtocolHandler() ngoku ithatha indawo yezithuba nge-"%20" endaweni ka-"+", emanyanisa ukuziphatha nabanye abakhangeli abafana neFirefox.
  • I-pseudo-element "::marker" yongezwe kwi-CSS, ikuvumela ukuba wenze umbala, ubungakanani, imilo kunye nodidi lwamanani kunye namachaphaza odweliso kwiibhloko. Kwaye .
  • Inkxaso eyongeziweyo yesihloko se-Document-Policy ye-HTTP, ekuvumela ukuba ubeke imigaqo yokufikelela kumaxwebhu, afana nebhokisi yesanti ye-sandbox yokuhlukanisa indlela yeeframes, kodwa ngaphezulu kwendawo yonke. Umzekelo, ngoMgaqo-nkqubo woXwebhu unganciphisa ukusetyenziswa kwemifanekiso ekumgangatho ophantsi, khubaza iJavaScript ecothayo APIs, qwalasela imithetho yokulayisha iframes, imifanekiso kunye nezikripthi, ukunciphisa ubungakanani boxwebhu ngokubanzi kunye netrafikhi, thintela iindlela ezikhokelela ekuzobeni ngokutsha iphepha, kwaye khubaza umsebenzi wokuSkrola-Ukuya-kuMbhalo.
  • Ukuya kwisiqalelo inkxaso eyongeziweyo 'yegridi engaphakathi', 'igridi', 'inline-flex' kunye ne'flex' iiparamitha ezisetwe ngepropathi 'yomboniso' weCSS.
  • Yongeza iParentNode.replaceChildren() indlela yokubuyisela bonke abantwana benodi yomzali kwenye indawo yeDOM. Ngaphambili, ungasebenzisa indibaniselwano ye node.removeChild() kunye node.append() okanye node.innerHTML kunye node.append() ukubuyisela iindawo.
  • Uluhlu lwezicwangciso ze-URL ezinokubhalwa ngaphezulu kusetyenziswa irejistaProtocolHandler() yandisiwe. Uluhlu lwezikim lubandakanya iprothokholi ezinatyisiweyo, i-cabal, i-dat, yenza, i-dweb, i-ethereum, i-hyper, ipfs, i-ipns kunye ne-ssb, ekuvumela ukuba uchaze amakhonkco kwizinto ngaphandle kwesiza okanye isango elinikezela ngokufikelela kubutyebi.
  • Inkxaso eyongeziweyo yombhalo/ifomati ye-html kwi-Asynchronous Clipboard API yokukhuphela kunye nokuncamathisela i-HTML ngebhodi eqhotyoshwayo (ulwakhiwo oluyingozi lweHTML luyacocwa xa kubhalwa kwaye kufundwa kwibhodi eqhotyoshwayo). Utshintsho, umzekelo, likuvumela ukuba uququzelele ukufakwa kunye nokukopishwa kombhalo ofomathiweyo ngemifanekiso kunye namakhonkco kubahleli bewebhu.
  • I-WebRTC yongeze amandla okudibanisa abaphathi bayo bedatha, ebizwa ngokuba yi-encoding okanye i-decoding stages of WebRTC MediaStreamTrack. Ngokomzekelo, esi sixhobo sinokusetyenziselwa ukongeza inkxaso yokubethelwa ekupheleni ukuya ekupheleni kwedatha ehanjiswa ngamaseva aphakathi.
    Kwi-injini ye-JavaScript ye-V8, ukuphunyezwa kweNombolo.prototype.toString kuye kwandiswa nge-75%. Kongezwe ipropathi yegama kwiiklasi ezingahambelaniyo ezinexabiso elingenanto. Indlela ye-Atomics.wake iye yasuswa, eyathi ngaxeshanye yathiywa kwakhona kwi-Atomics.yazisa ukuba ihambelane nenkcazo ye-ECMA-262. Ikhowudi yesixhobo sokuvavanya i-JS-Fuzzer ivuliwe.
  • I-Liftoff baseline compiler yeWebAssembly ekhutshwe ekukhululweni kokugqibela iquka ukukwazi ukusebenzisa imiyalelo ye-vector ye-SIMD ukukhawulezisa izibalo. Ngokujonga iimvavanyo, ukwenziwa ngcono kwenza ukuba kube lula ukukhawulezisa ezinye iimvavanyo ngamaxesha angama-2.8. Olunye ulungiselelo lwenze ukuba kukhawuleze kakhulu ukubiza imisebenzi yeJavaScript engenisiweyo evela kwiWebAssembly.
  • Izixhobo zabaphuhlisi bewebhu zandisiwe: Iphaneli yeMedia yongeze ulwazi malunga nabadlali abasetyenzisiweyo ukudlala ividiyo kwiphepha, kubandakanya idatha yesiganeko, iilog, amaxabiso epropathi kunye neeparameters zokucacisa isakhelo (umzekelo, unokugqiba izizathu zesakhelo. ilahleko kunye neengxaki zokusebenzisana kwiJavaScript) .
  • Kwimenu yomxholo wepaneli ye-Elements, ukukwazi ukwenza i-screenshots yento ekhethiweyo yongeziwe (umzekelo, unokwenza umfanekiso weskrini wetheyibhile yeziqulatho okanye itafile).
  • Kwikhonsoli yewebhu, iphaneli yesilumkiso sengxaki ithathelwe indawo ngumyalezo oqhelekileyo, kwaye iingxaki ngeCookies zomntu wesithathu zifihlwe ngokungagqibekanga kwiMiba ithebhu kwaye yenziwe ngebhokisi yokukhangela ekhethekileyo.
  • Kwithebhu yoBonelelo, iqhosha elithi "Khubaza iifonti zasekhaya" longezwe, elikuvumela ukuba ulinganise ukungabikho kweefonti zasekhaya, kwaye kwi-Sensors tab ngoku ungalinganisa ukungasebenzi komsebenzisi (kwizicelo ezisebenzisa i-API yokuFumana i-Idle).
  • Iphaneli yeSicelo inikezela ngolwazi oluneenkcukacha malunga ne-iframe nganye, ifestile evulekileyo, kunye ne-pop-up, kuquka ulwazi malunga nokuhlukaniswa kwe-Cross-Origin usebenzisa i-COEP kunye ne-COOP.

Ukuphunyezwa kwe-protocol ye-QUIC iqalile ukutshintshwa yinguqulo ephuhliswe kwi-IETF yenkcazo, endaweni ye-Google version ye-QUIC.
Ukongeza kwizinto ezintsha kunye nokulungiswa kwe-bug, inguqulelo entsha isusa ubuthathaka obungama-35. Uninzi lobuthathaka luchongiwe ngenxa yovavanyo oluzenzekelayo kusetyenziswa idilesi yeSanitizer, MemorySanitizer, Control Flow Integrity, LibFuzzer kunye nezixhobo zeAFL. Ubuthathaka obunye (i-CVE-2020-15967, ukufikelela kwimemori ekhululiwe kwikhowudi yokusebenzisana ne-Google Payments) iphawulwe njengento ebalulekileyo, okt. ikuvumela ukuba ugqithe kuwo onke amanqanaba okhuseleko lomkhangeli zincwadi kwaye wenze ikhowudi kwisixokelelwano esingaphandle kwendawo yebhokisi yesanti. Njengenxalenye yenkqubo yokuhlawula imbuyekezo eziinkozo zokufumana ubuthathaka ngokukhutshwa kwangoku, uGoogle uhlawule amabhaso angama-27 axabisa i-71500 yeedola (ibhaso elinye le-15000 yeedola, amabhaso amathathu e-$7500, amabhaso amahlanu e-$5000, amabhaso amabini e-$3000, ibhaso le-$200 enye, kunye neebhaso ezimbini zeedola ezingama-500). Ubungakanani bemivuzo ye-13 ayikachazwa.

Ithatyathwe kwi Opennet.ru

umthombo: linux.org.ru

Yongeza izimvo