ProHoster > Ibhulogi > iindaba ze-intanethi > Ukukhutshwa kweChrome 84

Ukukhutshwa kweChrome 84

uphando thaca ukukhutshwa komkhangeli wewebhu Chrome 84. Ngaxeshanye iyafumaneka ukukhululwa okuzinzileyo kweprojekthi yasimahla Chromium, esebenza njengesiseko seChrome. Isikhangeli seChrome hlukile ukusetyenziswa kweempawu zikaGoogle, ubukho benkqubo yokuthumela izaziso kwimeko yokuphazamiseka, ukukwazi ukukhuphela imodyuli yeFlash kwisicelo, iimodyuli zokudlala umxholo wevidiyo okhuselweyo (DRM), inkqubo yokufaka ngokuzenzekelayo uhlaziyo kunye nokuhanjiswa ngexesha lokukhangela. Iiparamitha zeRLZ. Ukukhutshwa okulandelayo kweChrome 85 kucwangciselwe i-25 ka-Agasti.

Siseko utshintsho Π² chrome 84:

  • Kukhubazekile inkxaso ye-TLS 1.0 kunye ne-TLS 1.1 protocol. Ukufikelela kwiisayithi kwitshaneli yonxibelelwano ekhuselekileyo, umncedisi kufuneka abonelele ngenkxaso ubuncinane ye-TLS 1.2, kungenjalo isikhangeli ngoku siya kubonisa impazamo. NgokukaGoogle, okwangoku malunga ne-0.5% yokukhutshelwa kwamaphepha ewebhu kuqhubeka kusetyenziswa iinguqulelo eziphelelwe lixesha zeTLS. Ukuvalwa kwaqhutywa ngokuhambelana ne iingcebiso IETF (i-Internet Engineering Task Force). Isizathu sokugatya i-TLS 1.0/1.1 kukungabikho kwenkxaso kwii-ciphers zanamhlanje (umzekelo, i-ECDHE kunye ne-AEAD) kunye nemfuno yokuxhasa ii-ciphers ezindala, ukuthembeka okubuzwayo kwinqanaba langoku lophuhliso lweteknoloji yekhompyutha (umzekelo. , inkxaso ye-TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA iyafuneka, MD5 kunye ne-SHA-1). Isetingi evumela ukubuyiselwa kwi-TLS 1.0/1.1 iya kugcinwa de kube nguJanuwari 2021.
  • Uthintelo lunikezelwe I-boot engakhuselekanga (ngaphandle koguqulelo oluntsonkothileyo) lweefayile ezisebenzisekayo kunye nezilumkiso ezongeziweyo xa ulayisha oovimba ngokungakhuselekanga. Kwixesha elizayo, kucwangciswe ukuyeka ngokuthe ngcembe ukuxhasa ukulayishwa kwefayile ngaphandle koguqulelo oluntsonkothileyo. Ukuthintela kuphunyeziwe kuba ukukhuphela iifayile ngaphandle kwe-encryption ingasetyenziselwa ukwenza izenzo ezinobungozi ngokutshintsha umxholo ngexesha lokuhlaselwa kwe-MITM.
  • Yongeziwe inkxaso yokuqala isichongi Iingcebiso zabaThengi, iphuhliswe njengenye indlela yoMsebenzisi-intloko ye-Agent. Indlela yeeNgcebiso zabaThengi inika uluhlu lwezihloko ze-"Sec-CH-UA-*" njengokutshintshwa kwe-Agent-Agent, ekuvumela ukuba uququzelele unikezelo olukhethiweyo lwedatha malunga nomkhangeli othile kunye neeparameters zenkqubo (uguqulelo, iqonga, njl.) kuphela. emva kwesicelo somncedisi. Umsebenzisi ufumana ithuba lokugqiba ukuba zeziphi iiparameters ezamkelekileyo ukuhanjiswa kunye nokubonelela ngolwazi olunjalo kubanikazi besayithi. Xa usebenzisa iingcebiso zoMthengi, isichongi asihanjiswa ngokungagqibekanga ngaphandle kwesicelo esicacileyo, esenza ukuba uchongo olwenziwayo lungenzeki (ngokungagqibekanga, kuphela igama lomkhangeli libonisiwe). umsebenzi kwi Umanyano lomsebenzisi-Arhente imisiwe kude kube ngunyaka ozayo.
  • Iqhubekile ukwenza kusebenze
    ngqongqo ngakumbi ukulinganiselwa ukudluliselwa Cookies phakathi iziza, nto leyo irhoxisiwe ngenxa ye-COVID-19. Ngezicelo ezingezizo ze-HTTPS, ukusetyenzwa kwee-cookies zeqela lesithathu ezibekwe xa ufikelela kumaziko ngaphandle kwesizinda sephepha langoku akuvumelekanga. IiCookies ezinjalo zisetyenziselwa ukulandelela ukunyakaza komsebenzisi phakathi kweesayithi kwikhowudi yeenethiwekhi zentengiso, iiwijethi zenethiwekhi yoluntu kunye neenkqubo zokuhlalutya kwewebhu.

    Khumbula ukuba ukulawula ukuhanjiswa kweeKuki, uphawu lweSameSite oluchazwe kwi-Set-Cookie header lusetyenziswa, oluthi ngokungagqibekanga lubekwe kwixabiso elithi "SameSite=Lax", elikhawulela ukuthunyelwa kweeCookies kwizicelo ezisezantsi ze-cross-site. , njengesicelo somfanekiso okanye ukulayisha umxholo nge-iframe kwenye indawo. IiSayithi zinokubhala ngaphezulu ukuziphatha okumiselweyo kweSameSite ngokuseta ngokucacileyo useto lweCookie ku-SameSite=None. Ngaphezu koko, ixabiso SameSite=Akukho nanye kwiCookie enokusetwa kuphela kwimo eKhuselekileyo (esebenzayo kuqhagamshelo nge-HTTPS). Utshintsho luya kukhutshwa ngokwezigaba, ukuqala ngepesenti encinci yabasebenzisi kwaye ngokuthe ngcembe kwandise ukufikelela kwayo.

  • Ukuphunyezwa kovavanyo kongezwe i-ad blocker enemithombo yobutyebi, enokwenziwa kusetyenziswa i-"chrome://flags/#enable-heavy-ad-intervention" setting. I-blocker ikuvumela ukuba uvale ngokuzenzekelayo iibhloko zentengiso ye-iframe emva kokuba i-traffic kunye nemida yomthwalo we-CPU igqithisiwe. Ukuthintela kuya kubangelwa ukuba intambo eyintloko idle ngaphezu kwemizuzwana ye-60 yexesha le-CPU iyonke okanye imizuzwana ye-15 kwithuba le-30-yesibini (idla i-50% yezibonelelo ngaphezu kwemizuzwana ye-30), kunye naxa ingaphezu kwe-4 MB. idatha ikhutshelwe kwinethiwekhi.

    Ukuthintela kuya kusebenza kuphela ukuba, ngaphambi kokuba kugqithwe imida, umsebenzisi akazange asebenzisane neyunithi yentengiso (umzekelo, akazange acofe kuyo), nto leyo, ngokuqwalasela izithintelo zendlela, iya kuvumela ukudlala ngokuzenzekelayo kwezinto ezinkulu. iividiyo kwintengiso ziya kuvalwa ngaphandle kokuba umsebenzisi avule ukudlala kwakhona. Amanyathelo acetywayo aya kusindisa abasebenzisi kwiintengiso kunye nokuphunyezwa kwekhowudi engasebenziyo okanye umsebenzi we-parasitic ngabom (umzekelo, imigodi). Ngokwezibalo zeGoogle, intengiso ehlangabezana nemilinganiselo yokuthintela yenza kuphela i-0.30% yazo zonke iiyunithi zentengiso, kodwa kwangaxeshanye, ukufakwa kwentengiso okunjalo kudla i-28% yezixhobo ze-CPU kunye ne-27% yetrafikhi ukusuka kumthamo opheleleyo wentengiso.

  • Umsebenzi wenziwe ukunciphisa ukusetyenziswa kwezixhobo ze-CPU xa i-browser yefestile ingekho kwindawo yokujonga yomsebenzisi. I-Chrome ngoku ijonga ukuba ingaba ifestile yesikhangeli igqunywe ngezinye iifestile kwaye inqanda ukuzoba ipixels kwiindawo zokugqithelana. Inqaku elitsha liza kuhanjiswa kancinci kancinci: ukwenziwa ngcono kuya kwenziwa ngokukhethiweyo kubasebenzisi abathile kwiChrome 84, nakwabanye kwiChrome 85.
  • Ukhuseleko lwenziwa ngokungagqibekanga izaziso ezicaphukisayo, umzekelo, spam kunye nezicelo zokufumana izaziso zokutyhala. Ekubeni ezo zicelo ziphazamisa umsebenzi womsebenzisi kwaye ziphazamise ingqalelo kwizenzo kwiingxoxo zokuqinisekisa, endaweni yencoko yababini eyahlukileyo kwibar yedilesi, i-prompt yolwazi engafuni ntshukumo kumsebenzisi iya kuboniswa ngesilumkiso sokuba isicelo semvume sivaliwe. , ewela ngokuzenzekelayo kwisalathisi esinomfanekiso wentsimbi enqamlezileyo. Ngokucofa kwisalathisi, unokuvula okanye ukwale imvume eceliweyo nangaliphi na ixesha elifanelekileyo.

    Ukukhutshwa kweChrome 84

  • Ukhetho lomsebenzisi lukhunjulwa xa kuvulwa abaphathi kwiiprothokholi zangaphandle - umsebenzisi unokukhetha "usoloko uvumela le ndawo" kumphathi othile kwaye isikhangeli siya kukhumbula esi sigqibo ngokumalunga nesiza sangoku.
  • Ukhuseleko olongeziweyo ngokuchasene nokutshintsha useto lomsebenzisi ngaphandle kwemvume ecacileyo. Ukuba i-add-on itshintsha i-injini yokukhangela engagqibekanga okanye iphepha eliboniswe kwithebhu entsha, isikhangeli ngoku siza kubonisa ingxoxo ekucela ukuba uqinisekise umsebenzi ochaziweyo okanye urhoxise utshintsho.
  • Iqhubekile ukuphunyezwa kokhuseleko ngokuchasene nokulayisha umxholo oxutyiweyo wemultimedia (xa izixhobo zilayishwa kwiphepha le-HTTPS nge-http:// protocol). Kumaphepha avulwe nge-HTTPS, β€œhttp://” amakhonkco ngoku aza kutshintshwa ngokuzenzekelayo ngo-"https://" kwiibhloko ezinxulumene nokulayisha imifanekiso (iincwadi kunye neeframes zatshintshwa ngaphambili, ukutshintshwa ngokuzenzekelayo kwemithombo yomsindo kunye nevidiyo kulindeleke ukukhululwa okulandelayo). Ukuba umfanekiso awufumaneki nge-https, ke ukukhuphela kwawo kuvaliwe (ungamakisha ngesandla isithintelo ngemenyu efikelelekayo ngesimboli sokutshixa kwibha yedilesi).
  • Inkxaso ye-API eyongeziweyo Web OTP (ephuhliswe njenge-API ye-SMS ye-Receiver), evumela ukuba uququzelele ukungena kwegama eliyimfihlo lexesha elilodwa kwiphepha lewebhu emva kokufumana umyalezo we-SMS kunye nekhowudi yokuqinisekisa ehanjiswe kwi-smartphone ye-Android yomsebenzisi apho isikhangeli sisebenza khona. Ukuqinisekiswa kweSMS, umzekelo, kungasetyenziselwa ukuqinisekisa inombolo yefowuni echazwe ngumsebenzisi ngexesha lokubhalisa. Ukuba ngaphambili umsebenzisi kwafuneka avule isicelo se-SMS, kopisha ikhowudi kuyo kwibhodi eqhotyoshwayo, buyela kwisikhangeli kwaye unamathisele le khowudi, ngoko i-API entsha yenza ukuba kwenzeke ngokuzenzekelayo le nkqubo kwaye uyinciphise kumnxeba omnye.
  • I-API yandisiwe Oopopayi bewebhu
    ukulawula ukudlalwa kwakhona oopopayi bewebhu. Ukukhutshwa okutsha kwongeza inkxaso yemisebenzi yokuqulunqa, ikuvumela ukuba ulawule indlela iziphumo ezidityaniswa ngayo kunye nokubonelela ngabaphangi abatsha ababizwa xa iziganeko zokutshintshwa komxholo zenzeka. IWeb Animations API nayo ngoku ixhasa iSithembiso sokuchaza indlela apho oopopayi baboniswayo kunye nokulawula ngcono indlela oopopayi abadibana ngayo nezinye iimpawu zesicelo.

  • Ii-API ezininzi ezintsha zongezwe kwimowudi yoLingo lweMvelaphi (iimpawu zovavanyo ezifuna ukusebenza ngokwahlukileyo). Uvavanyo lwemvelaphi luthetha ukukwazi ukusebenza kunye ne-API echaziweyo kwizicelo ezikhutshelwe kwi-localhost okanye i-127.0.0.1, okanye emva kokubhalisa kunye nokufumana ithokheni ekhethekileyo esebenzayo ixesha elilinganiselweyo kwindawo ethile.
    • API Cookie Store ukwenzela ukufikelela komsebenzi kwi-HTTP Cookies, esebenza njengenye indlela engahambelaniyo yokusebenzisa i-document.cookie.
    • API Ukufunyanwa kokungasebenzi ukukhangela ukungasebenzi komsebenzisi, okukuvumela ukuba ubone ixesha xa umsebenzisi engasebenzisani nekhibhodi / imouse, isigcini sesikrini siyasebenza, isikrini sitshixiwe, okanye umsebenzi uyenziwa kwenye imonitha. Ukwazisa isicelo malunga nokungasebenzi kuqhutywa ngokuthumela isaziso emva kokufikelela kumda ochaziweyo wokungasebenzi.
    • Indlela Imvelaphi Ukwahlulwa, ivumela umphuhlisi ukuba asebenzise ukubekwa yedwa okupheleleyo kokucutshungulwa komxholo kwinkqubo eyahlukileyo ngokunxulumene nomthombo (imvelaphi - isizinda + i-port + protocol), kunokuba isayithi, ngexabiso lokuyeka inkxaso kwezinye iimpawu zelifa, ezifana ne-synchronous. ukuphunyezwa kwezikripthi kusetyenziswa document.domain kunye nokufowunela postMessage () ukuthumela imiyalezo kwiWebAssembly.Iimodyuli iimeko. Ngamanye amagama, i-Origin Isolation ikuvumela ukuba uququzelele ukwahlukana phakathi kweenkqubo ezahlukeneyo ezisekelwe kwi-domain ye-resource, kwaye kungekhona isayithi kunye nazo zonke ezidityanisiweyo ezingaphandle kwamaphepha.
    • API WebAssembly SIMD ngokusebenzisa imiyalelo ye-SIMD yevektha kwizicelo kwifomathi yeWebAssembly. Ukuqinisekisa ukuzimela kweqonga, inika uhlobo olutsha lwe-128-bit olunokumela iindidi ezahlukeneyo zedatha epakishweyo, kunye nemisebenzi emininzi ye-vector esisiseko yokucubungula idatha epakishweyo. I-SIMD ikuvumela ukuba ukwandise imveliso ngokuthelekisa ukusetyenzwa kwedatha kwaye iya kuba luncedo xa uqulunqa ikhowudi yemveli kwiWebAssembly. Ukwenza inkxaso ye-SIMD isebenze, ungasebenzisa i-"chrome://flags/#enable-webassembly-simd" setting.
  • Izinzisiwe kwaye ngoku isasazwe ngaphandle kovavanyo lweMvelaphi
    API Isalathiso somxholo, ebonelela ngemetadata malunga nomxholo owawugcinwe kwi-cache ngaphambili zizicelo zewebhu ezisebenza kwi-Progressive Web Apps (PWS) indlela. Isicelo sinokugcina idatha eyahlukeneyo kwicala lomkhangeli, kubandakanywa imifanekiso, iividiyo kunye namanqaku, kwaye xa uxhulumaniso lwenethiwekhi lulahlekile, lusebenzise usebenzisa i-Cache Storage kunye ne-IndexedDB APIs. Umxholo we-Indexing API yenza kube lula ukongeza, ukufumana kunye nokucima izixhobo ezinjalo. Kwi-browser, le API sele isetyenziselwa ukudwelisa uluhlu lwamaphepha kunye nedatha yemultimedia ekhoyo ukujongwa ngaphandle kweintanethi.

  • Uguqulelo lwe-API luzinzile Vuka lock ngokusekelwe kwindlela yeSithembiso, ebonelela ngendlela ekhuselekileyo yokulawula ukukhubaza izikrini zokutshixa ngokuzenzekelayo kunye nokutshintsha izixhobo kwiindlela zokugcina amandla.
  • Kwinguqulelo yeqonga le-Android yongezwe inkxaso yeendlela ezimfutshane zesicelo, ikuvumela ukuba unikeze ufikelelo olukhawulezayo kwiintshukumo eziqhelekileyo ezithandwayo kwisicelo. Ukwenza iindlela ezimfutshane, yongeza nje izinto kumboniso wesicelo sewebhu kwi-PWA (IiNkqubo zeWebhu eziqhubela phambili) ifomathi.
    Ukukhutshwa kweChrome 84

  • Web Worker uvumelekile ukusebenzisa API IngxeloUmjongi, ekuvumela ukuba uchaze isiphathi sokwenza ingxelo, ebizwa xa ufikelela kwizakhono eziphelelwe lixesha. Ingxelo eyenziweyo ingagcinwa, ithunyelwe kumncedisi, okanye iqhutywe ngumbhalo weJavaScript ngokokubona komsebenzisi.
  • I-API ihlaziyiwe Phinda ubungakanani boMjongi, ekuvumela ukuba udibanise umphathi apho izaziso malunga notshintsho kubungakanani bezinto ezikhankanyiweyo kwiphepha ziya kuthunyelwa. Iipropati ezintathu ezintsha zongezwa kwi-ResizeObserverEntry: contentBoxSize, i-borderBoxSize kunye ne-devicePixelContentBoxSize ukunika ulwazi oluthe kratya lwegranular, olubuyiselwe njengoluhlu lwezinto ze-ResizeObserverSize.
  • Igama elingundoqo elifakwe "bu yiselaΒ» ukuseta kwakhona isimbo sesiqalelo kwixabiso laso elingagqibekanga.
  • Isusiwe isimaphambili seempawu zeCSS "-webkit-appearance" kunye ne "-webkit-ruby-position", ngoku zikhoyo njenge "kuvela"Kwaye"irubhi-indawoΒ«.
  • KwiJavaScript iphunyeziwe inkxaso yeendlela zokumakisha kunye neepropathi zeklasi njengabucala, emva koko ukufikelela kuzo kuya kuvuleka kuphela ngaphakathi kweklasi (ngaphambili kuphela iindawo ezinokuthi zibe ngasese). Ukumakisha iindlela kunye neepropati bucala: bonisa phambi kwegama lendawo kukho uphawu β€œ#”.
  • KwiJavaScript yongezwe inkxaso amakhonkco abuthathaka (ireferensi ebuthathaka) kwizinto zeJavaScript ezikuvumela ukuba ugcine ireferensi kwinto, kodwa ungavali umqokeleli wenkunkuma ekucimeni into ehambelana nayo. Inkxaso yabagqibeli nayo yongezwa, okwenza kube lula ukuchaza umqhubi obizwa emva kokuqokelelwa kwenkunkuma yento echaziweyo.
  • Ukuqaliswa kwezicelo kwiWebAssembly kuye kwakhawuleziswa, ngenxa yokuphunyezwa kokuqala (isiseko) Umqambi weLiftoff imiyalelo yeathom ΠΈ imisebenzi yememori yebhetshi. Izixhobo zokulungisa i-WebAssembly ziye zaphuculwa, ukusebenza kwe-debugging kuye kwaphuculwa kakhulu xa usebenzisa i-breakpoints (ngaphambili, itoliki yayisetyenziselwa ukulungisa ingxaki, kwaye ngoku i-Liftoff compiler).
  • Kwizixhobo zabaphuhlisi bewebhu pphttps://developers.google.com/web/updates/2020/05/devtools iphaneli yohlalutyo lokusebenza ihlaziyiwe. Kongezwe ulwazi jikelele malunga ne-metric I-TBT (Ixesha Lokuvimba Lilonke), libonisa ukuba iphepha libonakala lide kangakanani, kodwa ngokwenene alifumaneki (oko kukuthi iphepha sele linikezelwe, kodwa ukuphunyezwa komtya oyintloko kusavaliwe kwaye ukufakwa kwedatha akunakwenzeka). Kongezwe icandelo elitsha laMava lohlalutyo lweemetriki CLS (I-Cumulative Layout Shift), ebonisa uzinzo olubonakalayo lomxholo. Iphaneli yokuhlola izitayile zeCSS ibonelela ngemboniso yemifanekiso echazwe ngepropathi "yomfanekiso ongasemva".

Ukongeza kwizinto ezintsha kunye nokulungiswa kwe-bug, inguqulelo entsha iyaphelisa 38 ubuthathaka. Uninzi lobuthathaka luchongiwe ngenxa yovavanyo oluzenzekelayo ngezixhobo IdilesiSanitizer, MemorySanitizer, Lawula Imfezeko yokuHamba, LibFuzzer ΠΈ AFL. Umba omnye (i-CVE-2020-6510, ukuphuphuma kwe-buffer kwisibambi sangasemva) uphawulwe njengolubalulekileyo, okt. ikuvumela ukuba ugqithe kuwo onke amanqanaba okhuseleko lomkhangeli zincwadi kwaye wenze ikhowudi kwisixokelelwano esingaphandle kwendawo yebhokisi yesanti. Njengenxalenye yenkqubo yokuhlawula imbuyekezo yemali ngokufumanisa ubuthathaka ngokukhutshwa kwangoku, uGoogle uhlawule amabhaso angama-26 axabisa iidola ezingama-21500 (amabhaso amabini e-5000 yeedola, amabhaso amabini e-$3000, ibhaso le-$2000 enye, amabhaso amabini e-$1000, kunye neebhaso ezintathu zeedola ezingama-500). Ubungakanani bemivuzo ye-16 ayikachazwa.

umthombo: opennet.ru

Yongeza izimvo