ProHoster > Ibhulogi > iindaba ze-intanethi > Ukukhutshwa kweChrome 90

Ukukhutshwa kweChrome 90

UGoogle uye watyhila ukukhululwa kwesiphequluli sewebhu se-Chrome 90 Ngexesha elifanayo, ukukhululwa okuzinzile kweprojekthi yamahhala yeChromium, esebenza njengesiseko seChrome, iyafumaneka. Umkhangeli weChrome uhlukaniswa ngokusetyenziswa kweempawu zeGoogle, ubukho benkqubo yokuthumela izaziso kwimeko yokuphazamiseka, iimodyuli zokudlala umxholo wevidiyo okhuselweyo (DRM), inkqubo yokufaka uhlaziyo ngokuzenzekelayo, kunye nokuhambisa iiparamitha zeRLZ xa ukhangela. Ukukhutshwa okulandelayo kweChrome 91 kucwangciselwe i-25 kaMeyi.

Utshintsho oluphambili kwiChrome 90:

  • Bonke abasebenzisi banikwe amandla ukuba bavule iisayithi nge-HTTPS ngokungagqibekanga xa uchwetheza amagama omamkeli kwibha yedilesi. Umzekelo, xa ungenisa inginginya example.com, indawo ethi https://example.com iya kuvulwa ngokungagqibekanga, kwaye ukuba kuvela iingxaki xa uvula, iya kuqengqeleka umva kwi-http://example.com. Ukulawula usetyenziso olungagqibekanga "https://", isicwangciso "chrome://flags#omnibox-default-typed-navigations-to-https" siyacetywa.
  • Ngoku kuyenzeka ukwabela iilebhile ezahlukeneyo kwiifestile ukuzohlula ngokubonakalayo kwiqela lenjongo yedesktop. Inkxaso yokutshintsha igama lefestile iya kwenza lula umbutho womsebenzi xa usebenzisa iifestile ezahlukeneyo zesiphequluli kwimisebenzi eyahlukeneyo, umzekelo, xa uvula iifestile ezahlukeneyo kwimisebenzi yomsebenzi, izinto ezinomdla, ukuzonwabisa, izinto ezihlehlisiwe, njl. Igama litshintshwa ngento ethi "Yongeza isihloko sefestile" kwimenyu yomxholo evelayo xa ucofa ekunene kwindawo engenanto kwibar yethebhu. Emva kokutshintsha igama kwiqela lenjongo yesicelo, endaweni yegama lesayithi kwithebhu esebenzayo, igama elikhethiweyo libonisiwe, elinokuba luncedo xa uvula iziza ezifanayo kwiifestile ezahlukeneyo ezidityaniswe kwiiakhawunti ezahlukeneyo. Isibophelelo siyagcinwa phakathi kweeseshoni kwaye emva kokuphinda kuqalwe kwakhona iifestile ziya kubuyiselwa ngamagama akhethiweyo.
    Ukukhutshwa kweChrome 90
  • Yongezwe ukukwazi ukufihla "uLuhlu lokuFunda" ngaphandle kokutshintsha iisetingi kwi-"chrome://flags" ("chrome://flags#read-later"). Ukufihla, ngoku unokusebenzisa inketho ethi "Bonisa uLuhlu lokuFunda" ezantsi kwimenyu yomxholo eboniswe xa ucofa ekunene kwibha yeebhukmakhi. Masikukhumbuze ukuba kukhupho lokugqibela, xa abanye abasebenzisi becofa kwi-asterisk kwibar yedilesi, ukongeza kwiqhosha elithi "Yongeza ibhukhimakhi", iqhosha lesibini elithi "Yongeza kuluhlu lokufunda" livela, kwaye kwikona yasekunene Iphaneli yeebhukhimakhi Kuvela imenyu ethi “Uluhlu lokufunda”, edwelisa onke amaphepha angaphambili awongezwe kuluhlu. Xa uvula iphepha kuluhlu, liphawulwa njengelifundiweyo. Amaphepha akuluhlu nawo anokuphawulwa ngesandla njengafundiweyo okanye angafundwanga, okanye asuswe kuluhlu.
  • Inkxaso eyongezelelweyo yokwahlulahlula inethiwekhi ukukhusela kwiindlela zokulandelela indawo ezahlukeneyo ngokusekelwe ekugcinweni kwezazisi kwiindawo ezingenzelwanga ukugcina ixesha elide ("iiSupercookies"). Ekubeni izixhobo ezigciniweyo zigcinwa kwindawo yegama ekwabelwana ngayo, nokuba yeyiphi na idomeyini evela kuyo, indawo enye inokubona ukulayishwa kwezixhobo ezivela kwenye indawo ngokujonga ukuba ingaba isixhobo sikhona na kwi-cache. Olu khuseleko lusekelwe ekusebenziseni ukwahlulwahlulwa kwenethiwekhi, okubandakanya ukongeza iimephu ezongezelelweyo kwii-cache ezabelwana ngazo. idomeyini, apho iphepha eliphambili livulwe khona, elithintela ukugubungela i-cache kwiiskripthi zokulandelela kwisiza sangoku kuphela (iskripthi esivela kwi-iframe asiyi kukwazi ukujonga ukuba isixhobo silayishwe kwenye indawo). Ixabiso lokwahlulahlula liyancipha ukusebenza kwe-caching, okukhokelela ekwandeni kancinci kwexesha lokulayisha iphepha (ngobuninzi be-1.32%, kodwa kwi-80% yeendawo nge-0.09-0.75%).
  • Uluhlu olumnyama lweeports zenethiwekhi apho izicelo ze-HTTP, HTTPS kunye ne-FTP zivaliweyo lwandisiwe ukukhusela ukuhlaselwa kwe-NAT slipstreaming, okuvumela uqhagamshelo lwenethiwekhi ukuba lusekwe xa iphepha lewebhu elilungiselelwe ngokukodwa livulwa kwisikhangeli ngumhlaseli. umncedisi umhlaseli kuyo nayiphi na i-UDP okanye i-TCP port kwinkqubo yomsebenzisi, nangona kusetyenziswa uluhlu lwedilesi yangaphakathi (192.168.xx, 10.xxx). IiPorts 554 (RTSP protocol) kunye ne-10080 (ezisetyenziswa kwi-Amanda backup kunye ne-VMWare vCenter) zongezwe kuluhlu lweeports ezivaliweyo. IiPorts 69, 137, 161, 554, 1719, 1720, 1723, 5060, 5061, kunye ne-6566 zazivaliwe ngaphambili.
  • Inkxaso yokuqala eyongeziweyo yokuvula amaxwebhu ePDF ngeefomu zeXFA kwisikhangeli.
  • Kubasebenzisi abathile, icandelo elitsha leseto "Izicwangciso zeChrome> Ubumfihlo kunye nokhuseleko> Ibhokisi yesanti yangasese" yenziwe yasebenza, ekuvumela ukuba ulawule iiparameters ze-FLoC API, ejolise ekumiseleni udidi lwemidla yomsebenzisi ngaphandle kokuchongwa komntu kwaye ngaphandle kokubhekisela imbali yokutyelela iindawo ezithile.
  • Isaziso esicacileyo esinoluhlu lwezenzo ezivunyelweyo ngoku siboniswa xa umsebenzisi eqhagamshela kwiprofayile apho ulawulo oluphakathi luvulelwe.
  • Wenze ujongano lwesicelo semvume lungaphazamisi. Izicelo apho umsebenzisi anokuthi angavunywa ngoku zivaliwe ngokuzenzekelayo ngesalathisi esihambelanayo esiboniswe kwibha yedilesi, apho umsebenzisi angaya kwi-interface yokulawula iimvume kwisiseko sendawo nganye.
    Ukukhutshwa kweChrome 90
  • Inkxaso ye-Intel CET (i-Intel Control-flow Enforcement Enforcement) isandiso sifakwe kwi-hardware yokukhusela kwizinto ezisetyenzisiweyo ezakhiwe kusetyenziswa iinkqubo ezijoliswe ekubuyiseleni (i-ROP, i-Return-Oriented Programming) ubuchule.
  • Umsebenzi uyaqhubeka nokuguqula isikhangeli ukuba sisebenzise isigama esibandakanyayo. Ifayile ye-"master_preferences" iye yanikwa elinye igama ku-"initial_preferences" ukunqanda ukulimaza iimvakalelo zabasebenzisi ababona igama elithi "master" njengophawu malunga nobukhoboka bangaphambili bookhokho babo. Ukugcina ukuhambelana, inkxaso ye-"master_preferences" iya kuhlala kwi-browser ixesha elithile. Ngaphambili, isikhangeli sele siyilahlile ukusetyenziswa kwamagama athi "uluhlu olumhlophe", "uluhlu olumnyama" kunye "nomdabu".
  • Kwinguqulelo ye Android Xa imo yokugcina idatha ethi "Lite" ivuliwe, i-bitrate yokukhuphela iividiyo kwiinethiwekhi zeselfowuni iyancitshiswa, nto leyo enciphisa iindleko kubasebenzisi abanezicwangciso ezisebenzisa idatha eninzi. Imo ethi "Lite" ikwacinezela imifanekiso eceliweyo kwizixhobo ezifikelelekayo kuluntu (ezingadingi kuqinisekiswa) kwi-HTTPS.
  • Yongezwe i-AV1 yefomathi ye-encoder yevidiyo, elungiselelwe ngokukodwa ukusetyenziswa kwinkomfa yevidiyo esekwe kwiprothokholi yeWebRTC. Ukusetyenziswa kwe-AV1 kwi-conferencing yevidiyo kwenza kube lula ukunyusa ukunyanzeliswa koxinzelelo kunye nokubonelela ngokukwazi ukusasaza kwiitshaneli kunye ne-bandwidth ye-30 kbit / sec.
  • KwiJavaScript, i-Array, i-String, kunye ne-TypedArrays izinto ziphumeza i-() indlela, ekuvumela ukuba usebenzise isalathiso esizalanayo (indawo ezalanayo ixelwa njengesalathiso soluhlu), kuquka ukukhankanya amaxabiso angalunganga anxulumene nesiphelo (umzekelo, "arr.at(-1)" iya kubuyisela into yokugqibela yoluhlu).
  • IJavaScript yongeze ipropathi ethi ".indices" yeentetho eziqhelekileyo, eziqulathe uluhlu oluneendawo zokuqalisa kunye nesiphelo samaqela omatshisi. Ipropati igcwaliswa kuphela xa kusenziwa intetho eqhelekileyo nge "/d" iflegi. const re = /(a)(b)/d; const m = re.exec('ab'); console.log(m.indices[0]); // 0 - onke amaqela ahambelanayo // → [0, 2] console.log(m.indices[1]); // 1 liqela lokuqala lematshisi // → [0, 1] console.log(m.indices[2]); // 2 - iqela lesibini lematshisi // → [1, 2]
  • Ukusebenza kweepropathi "eziphezulu" (umzekelo, i-super.x) apho i-cache engaphakathi yenziwe yasebenza iye yalungiswa. Ukusebenza kokusebenzisa "super" ngoku kusondele ekusebenzeni kokufikelela kwiipropati eziqhelekileyo.
  • Ukufowunela imisebenzi yeWebAssembly esuka kwiJavaScript iye yakhawuleziswa kakhulu ngenxa yokusetyenziswa kwe-inline deployment. Olu lungiselelo luhlala luvavanyiwe okwangoku kwaye lufuna ukubaleka “-turbo-inline-js-wasm-calls” iflegi.
  • Yongeze i-API ye-WebXR ye-Depth Sensing, ekuvumela ukuba unqume umgama phakathi kwezinto ezikummandla womsebenzisi kunye nesixhobo somsebenzisi, umzekelo, ukwenza usetyenziso lwenyani oluyinyani. Masikukhumbuze ukuba iWebXR API ikuvumela ukuba udibanise umsebenzi kunye neeklasi ezahlukeneyo zezixhobo zokwenyani, ukusuka kwizigcina-ntloko ze-3D ezimileyo ukuya kwizisombululo ezisekelwe kwizixhobo eziphathwayo.
  • I-WebXR AR Lighting Estimation feature iye yazinziswa, ivumela iiseshini zeWebXR AR ukuba zimisele iiparamitha zokukhanyisa ezijikelezayo ukunika iimodeli inkangeleko yendalo ngakumbi kunye nokudibanisa okungcono kunye nokusingqongileyo komsebenzisi.
  • I-Origin Trials (iimpawu zovavanyo ezifuna ukwenziwa kusebenze ngokwahlukileyo) yongeze ii-API ezintsha ezininzi ezilinganiselweyo kwiqonga okwangoku. AndroidI-Origin Trial ikuvumela ukuba usebenzise i-API echaziweyo evela kwizicelo ezilayishwe kwi-localhost okanye kwi-127.0.0.1, okanye emva kokubhalisa nokufumana ithokheni ekhethekileyo esebenzayo ixesha elithile kwiwebhusayithi ethile.
    • Indlela ye getCurrentBrowsingContextMedia (), eyenza ukuba kuthathwe umlambo wevidiyo weMediaStream ebonisa imixholo yethebhu yangoku. Ngokungafaniyo nendlela ye-getDisplayMedia () efanayo, xa ufowunela i-getCurrentBrowsingContextMedia (), incoko yababini elula inikezelwa kumsebenzisi ukuqinisekisa okanye ukuvala umsebenzi wokudlulisa ividiyo ngomxholo wethebhu.
    • I-Insertable Streams API, ekuvumela ukuba ulawule imijelo yeendaba eluhlaza ehanjiswa ngeMediaStreamTrack API, njengekhamera kunye nedatha yemakrofoni, iziphumo zokubamba isikrini, okanye idatha ye-codec ephakathi. Ujongano lweWebCodec lusetyenziswa ukubonisa izakhelo ekrwada kwaye umlambo uveliswa ngokufana noko kwenziwa yiWebRTC Insertable Streams API esekwe kwiRTCPeerConnections. Kwicala elisebenzayo, i-API entsha ivumela ukusebenza okufana nokusetyenziswa kobuchule bokufunda komatshini ukuchonga okanye ukucacisa izinto ngexesha langempela, okanye ukongeza iziphumo ezinje ngokucofa ngasemva ngaphambi kokufakwa kweekhowudi okanye emva kokuchazwa kwekhowudi.
    • Ukukwazi ukupakisha izixhobo kwiipakethi (i-Web Bundle) ukucwangcisa ukulayishwa ngokufanelekileyo kwenani elikhulu leefayile ezihamba kunye (izitayile zeCSS, iJavaScript, imifanekiso, iframes). Phakathi kweentsilelo kwinkxaso ekhoyo yeepakethe zeefayile zeJavaScript (i-webpack), apho i-Web Bundle izama ukuyiphelisa: iphakheji ngokwayo, kodwa kungekhona inxalenye yayo, inokuphela kwi-cache ye-HTTP; ukuqokelela kunye nokuphunyezwa kunokuqala kuphela emva kokuba ipakethe ikhutshelwe ngokupheleleyo; Imithombo eyongezelelweyo efana neCSS kunye nemifanekiso kufuneka ifakwe kwifom yeJavaScript strings, eyandisa ubungakanani kwaye ifuna elinye inyathelo lokwahlulahlula.
    • Inkxaso yokuphatha ngaphandle kwiWebAssembly.
  • Kuzinzisiwe i-Declarative Shadow DOM API ukwenza amasebe amatsha eengcambu kwi-Shadow DOM, umzekelo ukwahlula isimbo seqela lesithathu elirhweba ngaphandle kunye nesebe eliphantsi leDOM elinxulumeneyo kuxwebhu olungundoqo. I-API ecetywayo ebhengezayo ikuvumela ukuba usebenzise i-HTML kuphela ukungafihli amasebe e-DOM ngaphandle kwesidingo sokubhala ikhowudi yeJavaScript.
  • Ipropathi ye-aspect-retio ye-CSS, ekuvumela ukuba ubophelele ngokuthe gca umlinganiselo wembonakalo kuyo nayiphi na into (ukubala ngokuzenzekelayo ubungakanani obulahlekileyo xa ukhankanya kuphela umphakamo okanye ububanzi), iphumeza isakhono sokudibanisa amaxabiso ngexesha lopopayi (utshintsho olugudileyo ukusuka kwelinye. umyinge womlinganiselo komnye).
  • Kongezwe ukukwazi ukubonisa ubume bezinto zeHTML zesiko kwi-CSS nge-pseudo-class ":state ()". Umsebenzi uphunyezwa ngokulinganisa kunye nokukwazi kwezinto eziqhelekileyo zeHTML zokutshintsha imeko yazo ngokuxhomekeke ekusebenzisaneni komsebenzisi.
  • Ipropathi yeCSS ethi "appearance" ngoku ixhasa ixabiso elithi 'auto', elimiselwe ngokuzenzekelayo kwi Kwaye , nakwiqonga Android ukongeza kwi , , , Kwaye .
  • Inkxaso yexabiso elithi "clip" yongezwe kwipropathi ye-CSS "yokuphuphuma", xa isetyenzisiwe, umxholo ogqithisa ngaphaya kwebhloko unqanyuliwe ukuya kumda wokuphuphuma okuvumelekileyo kwebhloko ngaphandle kokukwazi ukuskrola. Ixabiso elimisela ukuba umgama omde kangakanani umxholo onokudlulela ngaphaya komda wokwenyani webhokisi ngaphambi kokuba ukunqunyulwa kuqale kumiselwe ngepropathi entsha yeCSS "overflow-clip-margin". Xa kuthelekiswa "nokuphuphuma: kufihliwe", usebenzisa "ukuphuphuma: ikliphu" ivumela ukusebenza okungcono.
    Ukukhutshwa kweChrome 90Ukukhutshwa kweChrome 90
  • Isihloko soMGaqo-nkqubo we-HTTP sithathelwe indawo yisihloko esitsha seeMvume-uMgaqo-nkqubo wokulawula unikezelo lweemvume kunye nokwenziwa kweempawu eziphambili, ezibandakanya inkxaso yamaxabiso acwangcisiweyo entsimi (umzekelo, ngoku ungacacisa "Iimvume-Umgaqo-nkqubo: i-geolocation. =()" endaweni yokuba "Uphawu-Umgaqo-nkqubo: indawo yelizwe 'akukho'").
  • Ukhuseleko olomeleziweyo oluchasene nokusetyenziswa kweProtocol Buffers kuhlaselo olubangelwa kukuqikelelwa kokwenziwa kwemiyalelo kwiiprosesa. Ukhuseleko lwenziwa ngokongeza “i-application/x-protobuffer” uhlobo lwe-MIME kuluhlu lweentlobo ze-MIME ezingazange zifuthwe, eziqhubekekiswa ngendlela ye-Cross-Origin-Read-Blocking. Ngaphambili, uhlobo lwe-MIME “application/x-protobuf” lwalusele luqukiwe kuluhlu olufanayo, kodwa “isicelo/x-protobuffer” yayishiywe ngaphandle.
  • I-File System Access API isebenzisa ukukwazi ukutshintsha indawo yangoku kwifayile ngaphaya kwesiphelo sayo, igcwalise isithuba esiphumayo ngo-zero ngexesha lokubhala okulandelayo ngeFayileSystemWritableFileStream.write () call. Eli nqaku likuvumela ukuba wenze iifayile ezinqabileyo ezinezithuba ezingenanto kwaye ulula kakhulu umbutho wokubhala kwiifayile zefayile kunye nokufika okungacwangciswanga kweebhloko zedatha (umzekelo, oku kwenziwa kwiBitTorrent).
  • Umakhi weStaticRange eyongeziweyo ngokuphunyezwa koLwandi olukhaphukhaphu iintlobo ezingadingi ukuhlaziya zonke izinto ezinxulumeneyo ngalo lonke ixesha umthi weDOM utshintsha.
  • Kuphunyezwe ukukwazi ukukhankanya ububanzi kunye nobude iiparamitha zezinto ichaziwe ngaphakathi kwesiqalelo . Eli nqaku likuvumela ukubala umlinganiselo wembonakalo yezinto , ngokuthelekisa nendlela ekwenziwa ngayo , Kwaye .
  • Inkxaso engekho mgangathweni ye-RTP Data Channels isusiwe kwiWebRTC, kwaye kuyacetyiswa ukuba kusetyenziswe iziteshi zedatha ezisekelwe kwi-SCTP endaweni yoko.
  • Iipropathi ze-navigator.plugins kunye ne-navigator.mimeTypes ngoku zihlala zibuyisela ixabiso elingenanto (emva kokuba inkxaso yeFlash iphelile, ezi mpawu bezingasafuneki).
  • Inxalenye enkulu yophuculo oluncinci lwenziwe kwizixhobo zabaphuhlisi bewebhu kunye nesixhobo esitsha sokulungisa i-CSS, i-flexbox, yongezwe.
    Ukukhutshwa kweChrome 90

Ukongeza kwizinto ezintsha kunye nokulungiswa kwe-bug, inguqulelo entsha isusa ubuthathaka be-37. Uninzi lobuthathaka luchongiwe ngenxa yovavanyo oluzenzekelayo kusetyenziswa idilesi yeSanitizer, MemorySanitizer, Control Flow Integrity, LibFuzzer kunye nezixhobo zeAFL. Akukho zingxaki zibalulekileyo zichongiwe eziya kuvumela umntu ukuba adlule kuwo onke amanqanaba okhuseleko lomkhangeli zincwadi kwaye enze ikhowudi kwisistim ngaphandle kwendawo yebhokisi yesanti. Njengenxalenye yenkqubo yokuvuza imali yokufumana ubuthathaka kukhupho lwangoku, uGoogle uhlawule amabhaso ali-19 axabisa i-54000 yeedola (ibhaso elinye le-20000 yeedola, ibhaso le-10000 yeedola, amabhaso amabini e-$5000, amabhaso amathathu e-$3000, ibhaso elinye le-2000 yeedola, i-1000 yeedola enye, kunye ne-500 yeedola. ). Ubungakanani bemivuzo emi-6 ayikacaciswa.

Kuyafaneleka ukuqaphela ukuba izolo, emva kokwenziwa kokukhululwa kokulungisa i-89.0.4389.128, kodwa ngaphambi kokukhutshwa kwe-Chrome 90, kwapapashwa enye i-exploit, eyayisebenzisa i-vulnency entsha yeentsuku ezi-0 eyayingalungiswanga kwi-Chrome 89.0.4389.128. Akukacaci nokuba le ngxaki ilungisiwe na kwi-Chrome 90. Njengakwimeko yokuqala, i-exploit igubungela i-vulnency enye kuphela kwaye ayinayo ikhowudi yokudlula i-sandbox isolation (xa usebenzisa i-Chrome eneflegi ethi "--no-sandbox", i-exploit ikhutshwa xa kuvulwa iphepha lewebhu kwiqonga. Windows (yenza iNotepad iqalise). Ubuthathaka obunxulumene nokuxhaphazwa okutsha buchaphazela itekhnoloji yeWebAssembly.

umthombo: opennet.ru

Thenga ukusingathwa okuthembekileyo kwiindawo ezinokhuseleko lweDDoS, iiseva zeVPS VDS 🔥 Thenga ukusingathwa kwewebhusayithi okuthembekileyo ngokhuseleko lwe-DDoS, iiseva zeVPS VDS | ProHoster