Inkampani ye-Red Hat ukukhutshwa kokusasazwa . Iindibano zokufakela zilungiselelwe x86_64, s390x (IBM System z), ppc64le kunye ne-Aarch64 izakhiwo, kodwa kuba kuphela kubasebenzisi ababhalisiweyo bePortal yoMthengi weRed Hat. Imithombo yeRed Hat Enterprise Linux 8 rpm packages isasazwa nge CentOS. Ukusasazwa kuya kuxhaswa kude kube ngu-2029 ubuncinane.
Itekhnoloji efakiweyo kwi . Isebe elitsha liphawuleka ngokutshintshela kwi-Wayland ngokungagqibekanga, ukutshintsha iptables kunye ne-nftables, ukuhlaziya amacandelo angundoqo (i-kernel 4.18, i-GCC 8), usebenzisa umphathi wephakheji ye-DNF endaweni ye-YUM, usebenzisa i-repository ye-modular, ukuphelisa inkxaso ye-KDE kunye ne-Btrfs.
Isitshixo :
- Ukutshintshela kumphathi wephakheji ngolungiselelo lomaleko wokuhambelana neYum kwinqanaba leenketho zomgca womyalelo. Xa kuthelekiswa ne-Yum, i-DNF inesantya esiphezulu esibonakalayo kunye nokusetyenziswa kwememori ephantsi, ilawula ngcono ukuxhomekeka kunye nokuxhasa iipakethi zamaqela kwiimodyuli;
- Yahlulwe kwindawo yokugcina i-BaseOS kunye nemodyuli ye-AppStream yokugcina. I-BaseOS isasaza ubuncinane beepakethe ezifunekayo ukuze inkqubo isebenze; kwindawo yokugcina i-AppStream. I-AppStream ingasetyenziswa kwiinguqulelo ezimbini: njengendawo yokugcina ye-RPM yakudala kwaye njengendawo yokugcina kwifomathi yeemodyuli.
Indawo yokugcina iimodyuli ibonelela ngeeseti zeepakethe ze-rpm ezidityaniswe kwiimodyuli, ezixhaswa kungakhathaliseki ukukhutshwa kokusasazwa. Iimodyuli zingasetyenziswa ukufaka ezinye iinguqulelo zesicelo esithile (umzekelo, ungafaka iPostgreSQL 9.6 okanye iPostgreSQL 10). Umbutho wemodyuli uvumela umsebenzisi ukuba atshintshele ekukhutshweni okutsha okubalulekileyo kwesicelo ngaphandle kokulinda ukukhutshwa okutsha kokusasazwa kwaye ahlale ekudala, kodwa axhaswayo, iinguqulelo emva kokuhlaziya ukuhanjiswa. Iimodyuli zibandakanya ukusetyenziswa kwesiseko kunye neelayibrari eziyimfuneko ekusebenzeni kwayo (ezinye iimodyuli zingasetyenziswa njengokuxhomekeka);
- Icetywa njengedesktop ehlala ikho usebenzisa i-Wayland-based display server ngokungagqibekanga. Indawo esekwe kwiseva ye-X.Org iyafumaneka njengokhetho. Imipakethe ene KDE desktop ayiqukwanga, ishiya kuphela inkxaso yeGNOME;
- Iphakheji ye-Linux kernel isekwe kukhupho . Yenziwe yasebenza njengomhlanganisi omiselweyo . Ithala leencwadi lenkqubo ye-Glibc lihlaziywe ukuba likhululwe .
- Ukuphunyezwa okungagqibekanga kolwimi lwenkqubo yePython yiPython 3.6. Inkxaso encinci yePython 2.7 inikezelwe. I-Python ayifakwanga kwiphakheji esisiseko; Iinguqulelo ezihlaziyiweyo zeRuby 2.5, PHP 7.2, Perl 5.26, Node.js 10, Java 8 and 11, Clang/LLVM Toolset 6.0, .NET Core 2.1, Git 2.17, Mercurial 4.8, Subversion 1.10. Inkqubo yokwakha ye-CMake (3.11) ibandakanyiwe;
- Inkxaso eyongeziweyo yokufaka inkqubo kwi-NVDIMM drives kwi-installer ye-Anaconda;
- Ukukwazi ukufihla iidiski usebenzisa i-LUKS2 ifomathi yongezwe kwi-installer kunye nenkqubo, eyathatha indawo yefomathi ye-LUKS1 esetyenziswe ngaphambili (kwi-dm-crypt kunye ne-cryptsetup LUKS2 ngoku inikezelwa ngokungagqibekanga). I-LUKS2 iphawuleka ngenkqubo yayo yokulawula engundoqo eyenziwe lula, ukukwazi ukusebenzisa amacandelo amakhulu (4096 endaweni ye-512, inciphisa umthwalo ngexesha lokuchithwa kwe-decryption), izichazi zezahlulo ezingokomfanekiso (iileyibhile) kunye nezixhobo zokugcina i-metadata kunye nokukwazi ukuzibuyisela ngokuzenzekelayo kwikopi ukuba umonakalo ubhaqwe.
- Isixhobo esitsha soMqambi songeziwe, ukubonelela ngezixhobo zokwenza imifanekiso yenkqubo ye-bootable eyenziwe ngokwezifiso ezifanelekileyo ukuthunyelwa kwiindawo ezahlukeneyo zamafu;
- Isusiwe inkxaso yenkqubo yefayile ye-Btrfs. Imodyuli ye-btrfs.ko kernel, i-btrfs-progs eziluncedo, kunye nephakheji ye-snapper ayisabandakanywa;
- Ikhithi yezixhobo ifakiwe , ebonelela ngezixhobo zokudibanisa kunye nokwenza lula ukuseta kunye nolawulo lwephuli yedrive zasekhaya enye okanye ngaphezulu. I-Stratis iphunyezwa njengomaleko (i-stratisd daemon) eyakhiwe phezu kwesixhobo se-devicemapper kunye nenkqubo ephantsi ye-XFS, kwaye ikuvumela ukuba usebenzise iimpawu ezifana nolwabiwo oluguquguqukayo logcino, imifanekiso ekhawulezayo, isiqinisekiso sengqibelelo kunye nokudalwa kweeleya ze-caching, ngaphandle kweziqinisekiso zengcali ulawulo lwenkqubo yokugcina;
- Imigaqo-nkqubo ebanzi yenkqubo yokuseta i-cryptographic subsystems iphunyeziwe, iquka i-TLS, IPSec, SSH, DNSSec kunye ne-Kerberos protocol. Ukusebenzisa i-update-crypto-polisi umyalelo ngoku ungakhetha enye
iindlela zokukhetha i-cryptographic algorithms: ukungagqibeki, ilifa, ikamva kunye neefips. Ukukhutshwa kwenziwe ngokungagqibekanga nge TLS 1.3 inkxaso; - Ukubonelela ngenkxaso yenkqubo ebanzi yamakhadi ahlakaniphile kunye ne-HSM (Iimodyuli zoKhuseleko lwe-Hardware) kunye ne-PKCS # 11 iithokheni ze-cryptographic;
- I-iptables, i-ip6tables, i-arptables kunye ne-ebtables packet filter ithathelwe indawo yi-nftables packet filter, ngoku isetyenziswa ngokungagqibekanga kwaye iphawuleka ngokudibanisa i-interfaces yokucoca ipakethe ye-IPv4, IPv6, ARP kunye neebhuloho zenethiwekhi. I-Nftables inikezela kuphela i-generic, i-interface-ezimeleyo ye-protocol kwinqanaba le-kernel elibonelela ngemisebenzi eyisiseko yokukhupha idatha kwiipakethi, ukwenza imisebenzi yedatha, kunye nokulawula ukuhamba. Ingqiqo yokucoca ngokwayo kunye ne-protocol-specific handlers ihlanganiswe kwi-bytecode kwindawo yomsebenzisi, emva koko le bytecode ilayishwa kwi-kernel isebenzisa ujongano lwe-Netlink kwaye iqhutywe kumatshini okhethekileyo okhumbuza i-BPF (i-Berkeley Packet Filters). I-firewalld daemon itshintshelwe ekusebenziseni ii-nftables njengomva wayo ongasemva. Ukuguqula imithetho emidala, i-iptables-translate kunye ne-ip6tables-translate-translate utilities zongeziwe;
- Ukuqinisekisa unxibelelwano lwenethiwekhi phakathi kwezikhongozeli ezininzi, inkxaso yabaqhubi bokwakha inethiwekhi ye-IPVLAN ebonakalayo yongeziwe;
- Iphakheji esisiseko ibandakanya iseva ye-nginx ye-http (1.14). I-Apache httpd ihlaziywe kuguqulelo lwe-2.4.35, kunye ne-OpenSSH ukuya kwi-7.8p1.
Ukusuka kwi-DBMS, i-MySQL 8.0, i-MariaDB 10.3, i-PostgreSQL 9.6/10 kunye ne-Redis 4.0 ziyafumaneka kwiindawo zokugcina. I-MongoDB DBMS ayizange ibandakanywe ngenxa kwilayisensi entsha ye-SSPL, engekaqatshelwa njengevuliwe;
- Amacandelo e-virtualization aphuculwe. Ngokungagqibekanga, xa udala oomatshini benyani, uhlobo lusetyenziswa (ICH9 chipset emulation) ngenkxaso PCI Express. Ngoku ungasebenzisa ujongano lwewebhu ye-Cockpit ukwenza nokulawula oomatshini bokwenene. Ujongano lomphathi we-virt lurhoxisiwe. I-QEMU ihlaziywe kuguqulelo . I-QEMU isebenzisa imowudi yokwahlula yebhokisi yesanti, enciphisa inkqubo ebiza ukuba amacandelo e-QEMU anokusebenzisa;
- Inkxaso eyongeziweyo yeendlela zokulandela umkhondo ezisekelwe kwi-eBPF, kuquka nokusebenzisa i-SystemTap (4.0) toolkit. Ukuqulunqwa kubandakanya izinto eziluncedo zokudibanisa kunye nokulayisha iinkqubo ze-BPF;
- Inkxaso yovavanyo eyongeziweyo ye-XDP (i-eXpress Data Path) engaphantsi, evumela ukuqhuba iinkqubo ze-BPF kwi-Linux kwinqanaba lomqhubi wenethiwekhi kunye nokukwazi ukufikelela ngokuthe ngqo kwi-packet buffer ye-DMA kunye nenqanaba phambi kokuba i-skbuff buffer yabiwe yi-stack yenethiwekhi;
- Into eluncedo ye-boom yongeziwe ukulawula useto lwesilayidi sokuqala. I-Boom yenza kube lula ukwenza imisebenzi efana nokwenza amangeno amatsha e-boot, umzekelo, ukuba ufuna ukuqala kwi-LVM ekhawulezayo. I-Boom ithintelwe kuphela ukongeza amangeno esiqalo amatsha kwaye ayinakusetyenziselwa ukulungisa esele ikho;
- Izixhobo ezidityanisiweyo ezikhaphukhaphu zokulawula izikhongozeli ezizimeleyo, ezisetyenziselwa ukwakha izikhongozeli , ukuqala - kunye nokukhangela imifanekiso esele ilungile- ;
- Izakhono ezinxulumene nokudibanisa zandisiwe. Umphathi wesixhobo se-Pacemaker cluster uhlaziywe kwinguqulo 2.0. Kwisixhobo Inkxaso epheleleyo ye-Corosync 3, idolo kunye nokubiza igama le-node inikwe;
- Izikripthi zakudala zokuseta umsebenzi wothungelwano (uthungelwano-izikripthi) zibhengezwe njengeziphelelwe lixesha kwaye azisabonelelwanga ngokwendalo. Ukuqinisekisa ukuhambelana komva, endaweni ye-ifup kunye ne-ifdown scripts, izibophelelo zongezwe kwi-NetworkManager, isebenza nge-nmcli eluncedo;
- ipakethe: crypto-utils, cvs, dmraid, uvelwano, umnwe, gnote, gstreamer, ImageMagick, mgetty, phonon, pm-utils, rdist, ntp (ithatyathwe yi chrony), qemu ( endaweni yayo qemu-kvm), qt (ithatyathwe ngu qt5-qt), rsh, rt, rubygems (ngoku ibandakanyiwe kwiphakheji yerubhi ephambili), inkqubo-config-firewall, tcp_wrappers, wxGTK.
- Kulungiswe umfanekiso osisiseko jikelele (UBI, ) ngokwenza izikhongozeli ezizimeleyo, kubandakanya ukuvumela ukuba wenze izikhongozeli zesicelo esinye. I-UBI ibandakanya indawo encinci yokuhluthwa, i-runtime-on-ons ukuxhasa iilwimi zeprogram (i-nodejs, i-ruby, i-python, i-php, i-perl) kunye neseti yeepakethe ezongezelelweyo kwindawo yokugcina.
umthombo: opennet.ru