ProHoster > Ibhulogi > iindaba ze-intanethi > Unikezelo lwe-SUSE Linux Enterprise 15 SP3 luyafumaneka

Unikezelo lwe-SUSE Linux Enterprise 15 SP3 luyafumaneka

Emva konyaka wophuhliso, i-SUSE ibonise ukukhutshwa kwe-SUSE Linux Enterprise 15 SP3 ukuhanjiswa. Ngokusekwe kwiqonga loShishino lwe-SUSE Linux, iimveliso ezinje nge-SUSE Linux Enterprise Server, i-SUSE Linux Enterprise Desktop, uMphathi we-SUSE kunye ne-SUSE Linux Enterprise High Performance Computing ziyasekwa. Ukuhanjiswa kukhululekile ukukhuphela kunye nokusetyenziswa, kodwa ukufikelela kuhlaziyo kunye neepatches kunqunyelwe kwixesha le-60 leentsuku zesilingo. Ukukhutshwa kufumaneka kwizakhiwo ze-aarch64, ppc64le, s390x kunye ne-x86_64 izakhiwo.

I-SUSE Linux Enterprise 15 SP3 ibonelela nge-100% yokuhambelana kokubini kweepakethe kunye nosasazo olukhutshwe ngaphambili lwe-OpenSUSE Leap 15.3, oluvumela ukufuduka okunokwenzeka okunokwenzeka kweenkqubo eziqhuba i-OpenSUSE ukuya kwi-SUSE Linux Enterprise, kwaye ngokuphambanayo. Kulindeleke ukuba abasebenzisi baqale ukwakha kunye nokuvavanya isisombululo esisebenzayo ngokusekelwe kwi-openSUSE, kwaye emva koko batshintshele kwinguqu yorhwebo ngenkxaso epheleleyo, i-SLA, isatifikethi, ukuhlaziywa kwexesha elide kunye nezixhobo eziphambili zokwamkelwa kobuninzi. Umgangatho ophezulu wokuhambelana waphunyezwa ngokusetyenziswa kwi-openSUSE yeseti enye yeepakethe zokubini kunye ne-SUSE Linux Enterprise, endaweni yokwakhiwa kwakhona kweepakethe ze-src.

Utshintsho oluphambili:

  • Njengoko kukhutshwe kwangaphambili, i-Linux 5.3 kernel iyaqhubeka nokuhanjiswa, eyandisiweyo ukuxhasa i-hardware entsha. Ukongezwa okongeziweyo kwe-AMD EPYC, i-Intel Xeon, i-Arm kunye ne-Fujitsu processors, kubandakanywa ukulungelelaniswa okuthe ngqo kwi-AMD EPYC 7003. Inkxaso eyongeziweyo ye-Habana Labs Goya AI Processor (AIP) amakhadi ePCIe. Inkxaso eyongeziweyo ye-NXP i.MX 8M Mini, i-NXP Layerscape LS1012A, i-NVIDIA Tegra X1 (T210) kunye ne-Tegra X2 (T186) ye-SoCs.
  • Ukuhanjiswa kweemodyuli zekernel kwifom ecinezelweyo kuphunyeziwe.
  • Kuyenzeka ukuba ukhethe iindlela zokhuseleko (PREEMPT) kumcwangcisi womsebenzi kwinqanaba lokuqala (preempt=none/voluntary/ full).
  • Yongeze amandla okugcina ukulahla kwe-kernel crash kwindlela ye-pstore, ikuvumela ukuba ugcine idatha kwiindawo zememori ezingalahlekanga phakathi kokuqalisa kwakhona.
  • Umda welona nani liphezulu leenkcazo zeefayili zeenkqubo zabasebenzisi (RLIMIT_NOFILE) wondisiwe. Umda onzima uphakanyiswe ukusuka kwi-4096 ukuya kwi-512K, kwaye umda othambileyo, onokunyuswa ukusuka ngaphakathi kwesicelo, uhlala ungatshintshi (izibambo ze-1024).
  • I-Firewalld yongeze inkxaso ye-backend yokusebenzisa i-nftables endaweni yee-iptables.
  • Inkxaso eyongeziweyo ye-VPN WireGuard (iphakheji yezixhobo ze-wireguard kunye nemodyuli ye-kernel).
  • I-Linuxrc ixhasa ukuthunyelwa kwezicelo ze-DHCP kwifomati ye-RFC-2132 ngaphandle kokuchaza idilesi ye-MAC ukwenza kube lula ukugcina inani elikhulu lenginginya.
  • I-dm-crypt yongeza inkxaso yoguqulelo oluntsonkothileyo, olunikwe amandla usebenzisa i-no-read-workqueue kunye ne-no-write-workqueue options kwi/etc/crypttab. Imowudi entsha ibonelela ngokuphuculwa kokusebenza ngaphezulu kwemowudi engagqibekanga engatshintshiyo.
  • Inkxaso ephuculweyo ye-NVIDIA yeModyuli yeKhompyutha, iCUDA (Compute Ulwakhiwo lweSixhobo esiManyeneyo) kunye ne-Virtual GPU.
  • Inkxaso eyongeziweyo ye-SEV (i-Secure Encrypted Virtualization) izandiso ze-virtualization ezicetywayo kwisizukulwana sesibini se-AMD EPYC processors, ebonelela nge-encryption ecacileyo yememori yomatshini.
  • I-exfatprogs kunye neepakethe zezixhobo ze-bcache ezinezixhobo ze-exFAT kunye ne-BCache zibandakanyiwe.
  • Kongezwe ukukwazi ukwenza i-DAX (uFikelelo oluNgqo) kwiifayile zomntu ngamnye kwi-Ext4 kunye ne-XFS kusetyenziswa i-"-o dax=inode" ukhetho lokunyuka kunye neflegi yeFS_XFLAG_DAX.
  • Izixhobo ze-Btrfs (btrfsprogs) zongeze inkxaso yolandelelwano (ukwenziwa ngokolandelelwano lomgca) lwemisebenzi engenakwenziwa ngaxeshanye, njengokulinganisa, ukucima/ukongeza izixhobo kunye nokutshintsha ubungakanani benkqubo yefayile. Endaweni yokuphosa impazamo, imisebenzi efanayo ngoku iyenziwa enye emva kwenye.
  • Umfaki wongeze izitshixo ezishushu u-Ctrl+Alt+Shift+C (kwimowudi yomzobo) kunye no-Ctrl+D Shift+C (kwimowudi ye-console) ukubonisa incoko yababini enezicwangciso ezongezelelweyo (iisetingi zenethiwekhi, ukukhetha iindawo zokugcina kunye nokutshintshela kwimo yengcaphephe).
  • I-YaST yongeze inkxaso ye-SELinux. Ngexesha lofakelo ngoku ungayenza i-SELinux kwaye ukhethe nokuba "ukunyanzeliswa" okanye "indlela yokuvumela". Inkxaso ephuculweyo yezikripthi kunye neeprofayili kwi-AutoYaST.
  • Iinguqulelo ezintsha ze-GCC 10, glibc 2.31, systemd 246, PostgreSQL 13, MariaDB 10.5, postfix 3.5, nginx 1.19, bluez 5.55, bind 9.16, clamav 0.103, erlang 22.3, Node 14 flat, PJS 3.9, PJS, Node 1.43, 1.10. I-8.4 iye yacetywa 5.2, openssh 4.13 , QEMU 1.14.43, samba 1.5, zypper XNUMX, fwupd XNUMX.
  • Ukongeza: Umqhubi we-JDBC we-PostgreSQL, iipakethe nodejs-eziqhelekileyo, i-python-kubernetes, i-python3-kerberos, i-python-cassandra-driver, i-python-arrow, i-comat-libpthread_nonshared, i-librabbitmq.
  • Njengakukhupho lwangaphambili, i-desktop ye-GNOME 3.34 ibonelelwe, apho ulungiso lwebug oluqokelelweyo lugqithiselwe khona. I-Inkscape 1.0.1 ehlaziyiweyo, iMesa 20.2.4, iFirefox 78.10.
  • Into entsha ye-xca (iSatifikethi se-X kunye noLawulo oluPhambili) yongezwe kwisixhobo solawulo lwesatifikethi, onokuthi ngayo wenze amagunya esiqinisekiso sendawo, uvelise, usayine kwaye urhoxise izatifikethi, izitshixo zokungenisa kunye nezokuthumela ngaphandle kunye nezatifikethi kwi-PEM, i-DER kunye neefomathi ze-PKCS8.
  • Yongeze amandla okusebenzisa izixhobo zokulawula izikhongozeli zePodman ezikwanti ngaphandle kwamalungelo eengcambu.
  • Inkxaso eyongeziweyo ye-IPSec VPN StrongSwan kwi-NetworkManager (ifuna ukufakwa kwe-NetworkManager-strongswan kunye ne-NetworkManager-strongswan-gnome packages). Inkxaso ye-NetworkManager yeenkqubo zomncedisi iye yarhoxiswa kwaye inokususwa kukhupho lwexesha elizayo (engendawo isetyenziselwa ukuqwalasela inkqubo esezantsi yothungelwano yeeseva).
  • Iphakheji ye-wpa_supplicant iye yahlaziywa kwi-version 2.9, ngoku iquka inkxaso ye-WPA3.
  • Inkxaso yeeskena zandisiwe, iphakheji ye-sane-backends ihlaziywe kwi-version 1.0.32, eyazisa i-backend entsha ye-escl ye-scanners ehambelana nobuchwepheshe be-Airprint.
  • Iquka umqhubi we-etnaviv we-Vivante GPUs esetyenziswa kwii-ARM ezahlukeneyo ze-SoCs, ezifana ne-NXP Layerscape LS1028A/LS1018A kunye ne-NXP i.MX 8M. Kwiibhodi zeRaspberry Pi, i-U-Boot bootloader iyasetyenziswa.
  • Kwi-KVM, ubungakanani bememori ephezulu kumatshini obonakalayo bonyuswa ukuya kwi-6 TiB. I-Xen hypervisor ihlaziywe ukukhulula i-4.14, i-libvirt ihlaziywe kwinguqulo ye-7.0, kwaye i-virt-manager ihlaziywe ukukhulula i-3.2. Iinkqubo ze-Virtualization ngaphandle kwe-IOMMU zibonelela ngenkxaso ngaphezu kwe-256 CPUs koomatshini benyani. Ukuphunyezwa okuhlaziyiweyo kweSpice protocol. spice-gtk yongeze inkxaso yokunyuswa kwemifanekiso ye-iso kwicala lomxhasi, umsebenzi ophuculweyo ngebhodi eqhotyoshwayo kwaye wasusa umva wePulseAudio. Kongezwe iibhokisi zeVagrant ezisemthethweni ze-SUSE Linux Enterprise Server (x86-64 kunye ne-AArch64).
  • Iphakheji ye-swtpm eyongeziweyo ngokuphunyezwa kwe-TPM (iModyuli yeQonga eliThenjiweyo) ukulinganisa isoftware.
  • Kwiinkqubo ze-x86_64, i-CPU i-idle handler yongeziwe- "i-haltpoll", ethatha isigqibo sokuba i-CPU inokufakwa nini kwiindlela zokugcina amandla; ngokunzulu imo, kokukhona ukonga okukhulu, kodwa kwakhona kuthatha ixesha elide ukuphuma kwimowudi. . Umphathi omtsha wenzelwe ukusetyenziswa kwiinkqubo ze-virtualization kwaye uvumela i-CPU yenyani (VCPU) esetyenziswa kwinkqubo yeendwendwe ukuba icele ixesha elongezelelweyo ngaphambi kokuba i-CPU ingene kwimeko yokungasebenzi. Le ndlela iphucula ukusebenza kwezicelo ezibonakalayo ngokuthintela ulawulo ukuba lubuyiselwe kwi-hypervisor.
  • Iseva ye-OpenLDAP iyekisiwe kwaye iza kususwa kwi-SUSE Linux Enterprise 15 SP4, kulungiselelwa i-389 Directory Server LDAP server (package 389-ds). Ukuhanjiswa kwamathala eencwadi abaxhasi be-OpenLDAP kunye nezinto eziluncedo ziya kuqhubeka.
  • Inkxaso yezikhongozeli ezisekwe kwi-LXC toolkit (i-libvirt-lxc kunye neepakethe ze-virt-sandbox) iye yarhoxiswa kwaye iza kuyekwa kwi-SUSE Linux Enterprise 15 SP4. Kucetyiswa ukuba usebenzise iDocker okanye iPodman endaweni yeLXC.
  • Inkxaso yeSystem V init.d izikripthi zokuqalisa iye yarhoxiswa kwaye iya kuguqulwa ngokuzenzekelayo ibe ziiyunithi zesistim.
  • I-TLS 1.1 kunye ne-1.0 zihlelwe njengezingacetyiswanga ukuba zisetyenziswe. Ezi prothokholi zinokuyekwa kukhupho lwexesha elizayo. I-OpenSSL, i-GnuTLS kunye ne-Mozilla NSS zinikezelwe ngenkxaso yokusabalalisa i-TLS 1.3.
  • I-database yephakheji ye-RPM (rpmdb) iye yafuduswa ukusuka eBerkeleyDB ukuya kwi-NDB (isebe le-Berkeley DB 5.x aligcinwanga iminyaka eliqela, kwaye ukufudukela kukukhutshwa okutsha kuthintelwa lutshintsho kwilayisenisi ye-Berkeley DB 6 ukuya kwi-AGPLv3, ethi ikwasebenza kwizicelo ezisebenzisa iBerkeleyDB kwifom yethala leencwadi - iRPM inikezelwa phantsi kweGPLv2, kwaye iAGPL ayihambelani neGPLv2).
  • Iqokobhe leBash ngoku liyafumaneka njenge "/usr/bin/bash" (ukwazi ukuyibiza njenge/bin/bash igciniwe).
  • I-SUSE Linux Enterprise Base Container IMifanekiso (SLE BCI) indululwa ukwakha, ukuzisa nokugcina imifanekiso yesikhongozeli equlethe iseti encinci yamalungu asekwe kwi-SUSE Linux Enterprise Server eyimfuneko ukuqhuba izicelo ezithile kwisikhongozeli (kuquka iPython, Ruby, Perl kunye njl.)

umthombo: opennet.ru

Yongeza izimvo