Ukukhutshwa kweFirefox 74

Ibhrawuza yewebhu yakhululwa Firefox 74, kwakunye inguqulelo yeselula IFirefox 68.6 yeqonga le-Android. Ukongeza, uhlaziyo lwenziwe amasebe ngenkxaso yexesha elide 68.6.0. Uyeza ngokukhawuleza eqongeni uvavanyo lwe-beta isebe leFirefox 75 liza kufuduka, ukukhutshwa kwayo kucwangciselwe uAprili 7 (iprojekthi isusiwe kwiiveki ezi-4-5 umjikelo wophuhliso). KwiFirefox 75 beta yesebe waqala ekubumbeni iindibano yeLinux kwifomathi yeFlatpak.

Siseko ezintsha:

• I-Linux yakha sebenzisa indlela yokwahlula I-RLBox, ejolise ekuthinteleni ukusetyenziswa kobuthathaka kumathala eencwadi omsebenzi womntu wesithathu. Kweli nqanaba, ukuba yedwa kuvuleleke kuphela kwithala leencwadi IGraphite, inoxanduva lokunikezela ngeefonti. I-RLBox iqulunqa ikhowudi ye-C / C ++ yelayibrari ezimeleyo kwikhowudi ephakathi ye-WebAssembly ephakathi, eyilwe njengemodyuli yeWebAssembly, iimvume ezibekwe ngokumalunga kuphela kule modyuli. Imodyuli edibeneyo isebenza kwindawo yememori eyahlukileyo kwaye ayinakho ukufikelela kuyo yonke indawo yedilesi. Ukuba ubuthathaka kwithala leencwadi kusetyenziswa, umhlaseli uya kulinganiselwa kwaye akayi kukwazi ukufikelela kwiindawo zememori yenkqubo ephambili okanye ulawulo lokudlulisa ngaphandle kwendawo esecaleni.
• DNS ngaphezulu kwemowudi ye-HTTPS (DoH, DNS ngaphezulu kweHTTPS) yenziwe ngokungagqibekanga kubasebenzisi base-US. Umboneleli weDNS ongagqibekanga nguCloudFlare (mozilla.cloudflare-dns.com idwelisiwe в uluhlu lwebhlokhi Roskomnadzor), kunye ne-NextDNS iyafumaneka njengokhetho. Guqula umboneleli okanye uvule i-DoH kumazwe angaphandle kwe-US, unako kwisethingi yoqhagamshelo lwenethiwekhi. Unokufunda ngakumbi malunga ne-DoH kwiFirefox apha isaziso esahlukileyo.
  

• Kukhubazekile inkxaso ye-TLS 1.0 kunye ne-TLS 1.1 protocol. Ukufikelela iisayithi kumjelo wonxibelelwano okhuselekileyo, umncedisi kufuneka abonelele ngenkxaso ubuncinane ye-TLS 1.2. NgokukaGoogle, okwangoku malunga ne-0.5% yokukhutshelwa kwamaphepha ewebhu kuqhubeka kusetyenziswa iinguqulelo eziphelelwe lixesha zeTLS. Ukuvalwa kwaqhutywa ngokuhambelana ne iingcebiso IETF (i-Internet Engineering Task Force). Isizathu sokwenqaba ukuxhasa i-TLS 1.0 / 1.1 kukungabikho kwenkxaso ye-ciphers yanamhlanje (umzekelo, i-ECDHE kunye ne-AEAD) kunye nemfuno yokuxhasa i-ciphers endala, ukuthembeka kwayo okubuzwayo kwinqanaba langoku lophuhliso lwethekhnoloji yekhompyutha (umzekelo, i-ECDHE kunye ne-AEAD) umzekelo, inkxaso ye-TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA iyafuneka, i-MD5 isetyenziselwa ukujonga imfezeko kunye nokuqinisekiswa kunye ne-SHA-1). Xa uzama ukusebenzisa i-TLS 1.0 kunye ne-TLS 1.1 ukuqala ngeFirefox 74, impazamo iya kuboniswa. Unokubuyisela amandla okusebenza ngeenguqulelo zeTLS eziphelelwe lixesha ngokuseta security.tls.version.enable-deprecated = true okanye ngokusebenzisa iqhosha elikwiphepha lempazamo elibonisiweyo xa undwendwela indawo eneprotocol endala.
  

• Inqaku lokukhululwa licebisa ukongezwa Isiqulatho seFacebook, ethi ithintele ngokuzenzekelayo iiwijethi ze-Facebook zomntu wesithathu ezisetyenziselwa ukuqinisekiswa, ukuphawula, kunye nokuthanda. Iiparamitha zokuchongwa kwe-Facebook zibekwe zodwa kwisikhongozeli esahlukileyo, okwenza kube nzima ukuchonga umsebenzisi ngeendawo abazindwendwelayo. Ukukwazi ukusebenza kunye neyona ndawo iphambili ye-Facebook ihlala, kodwa ihlukaniswe kwezinye iindawo.

  Ukwahlulwa okubhetyebhetye ngakumbi kweendawo ezingafanelekanga, kucetywa ukongezwa Iziqulathi zeAkhawunti ezininzi ngokuphunyezwa kwengqikelelo yezikhongozeli zomxholo. Iziqulatho zibonelela ngokukwazi ukwahlula iindidi ezahlukeneyo zomxholo ngaphandle kokudala iiprofayili ezahlukeneyo, ezikuvumela ukuba uhlukanise ulwazi lwamaqela ngamanye amaphepha. Ngokomzekelo, unokwenza iindawo ezihlukeneyo, ezizimeleyo zonxibelelwano lomntu siqu, umsebenzi, ukuthenga kunye neentengiselwano zebhanki, okanye uququzelele ukusetyenziswa kwangaxeshanye kweeakhawunti ezahlukeneyo zomsebenzisi kwindawo enye. Isikhongozeli ngasinye sisebenzisa iivenkile ezahlukeneyo zeeKuki, i-API yoGcino lwaseKhaya, i-indexedDB, i-cache, kunye ne-OriginAttributes content.

• Yongezwe "browser.tabs.allowTabDetach" ukuseta malunga:uqwalaselo ukuthintela iithebhu ukuba zingabotshelelwa kwiifestile ezintsha. Ukukhutshwa kwethebhu ngengozi yenye yezona mpazamo zeFirefox ezicaphukisayo ezifuna ukulungiswa. efunwayo Iminyaka eyi-9. Umkhangeli zincwadi uvumela imouse ukuba irhuqe isithuba kwifestile entsha, kodwa phantsi kweemeko ezithile isithuba ikhutshelwa kwifestile eyahlukileyo ngexesha lomsebenzi xa imouse ihamba ngokungakhathaliyo ngelixa unqakraza kwisithuba.
• Iyekisiwe inkxaso yezongezo ezifakwe kwindlela ejikelezayo kwaye ayibotshwanga kwiiprofayili zabasebenzisi. Utshintsho luchaphazela kuphela ufakelo lwezongezo kulawulo ekwabelwana ngalo (/usr/lib/mozilla/izandiso/, /usr/share/mozilla/extensions/ okanye ~/.mozilla/extensions/) eqhutyekwa zizo zonke iimeko zeFirefox kwinkqubo ( ayidityaniswanga nomsebenzisi) . Le ndlela iqhele ukusetyenziselwa ukufakela ukongezwa kwangaphambili kunikezelo, ukutshintshwa okungacelwanga kunye nezicelo zomntu wesithathu, ukudibanisa izongezo ezinobungozi, okanye ukuhambisa ngokwahlukeneyo isongezo kunye nesifakeli saso. KwiFirefox 73, izongezo ebezifakwe ngokunyanzeliswa ngaphambili ziye zasuswa ngokuzenzekelayo kulawulo ekwabelwana ngalo ukuya kwiiprofayile zomsebenzisi ngamnye kwaye ngoku zinokubakho. isuswe ngokusebenzisa umphathi wokongeza oqhelekileyo.
• Kwinkqubo ye-Lockwise i-add-on efakwe kwisikhangeli, ebonelela "malunga: nokungena" ujongano lokulawula amagama ayimfihlo agciniweyo, inkxaso hlela ngokulandelelana umva (Z ukuya ku-A).
• IWebRTC inyuse ukhuseleko ekuvuzeni kolwazi malunga nedilesi ye-IP yangaphakathi ngexesha lelizwi kunye neefowuni zevidiyo kusetyenziswa "mDNS ICE", ukufihla idilesi yendawo ngasemva kwesazisi esiveliswe ngokuguquguqukayo esigqitywe ngeMulticast DNS.
• Utshintshe indawo yokujonga umfanekiso-emfanekisweni ogqithise iqhosha lomfanekiso olandelayo kwi-batch yokulayisha ujongano lwefoto kwi-Instagram.
• KwiJavaScript yongezwa umsebenzisi "?.", Yenzelwe ukujonga ngaxeshanye lonke uluhlu lweepropati okanye iifowuni. Umzekelo, ngokuchaza "db?.user?.name?.length" ungafikelela kwixabiso lika "db.user.name.length" ngaphandle kokuhlolwa kokuqala. Ukuba nayiphi na into icutshungulwa njenge-null okanye engachazwanga, imveliso iya kuba "ngachazwanga".
• Iyekisiwe inkxaso kwiiwebhusayithi kunye nezongezo zendlela ye-Object.toSource () kunye nomsebenzi wehlabathi jikelele ukungasebenzi ().
• Umsitho omtsha wongeziwe utshintsho lolwimi_kunye kunye nepropati enxulumeneyo kutshintsho lweelwimi, ekuvumela ukuba ufowunele isibambi xa umsebenzisi etshintsha ulwimi lojongano.
• Uqhubekeko lwesihloko se-HTTP sivuliwe Cross-Origin-Resource-Policy (CORP.), ukuvumela iisayithi ukuba zithintele ukufakwa kwemithombo (umzekelo, imifanekiso kunye nezikripthi) ezilayishwe kwezinye iindawo (i-cross-origin and cross-site). Iheda inokuthatha amaxabiso amabini: "imvelaphi efanayo" (ivumela kuphela izicelo zezibonelelo ezineskimu esifanayo, igama lenginginya kunye nenombolo yesiqhagamshelanisi) kunye "nesiza esinye" (ivumela kuphela izicelo ezisuka kwindawo enye).

  Cross-Origin-Resource-Policy: efanayo-site

• Iheader yeHTTP yenziwe ngokuzenzekelayo Umgaqo-nkqubo, ekuvumela ukuba ulawule ukuziphatha kwe-API kwaye uvumele iimpawu ezithile (umzekelo, unokukhubaza ukufikelela kwi-Geolocation API, ikhamera, imakrofoni, isikrini esipheleleyo, i-autoplay, i-encrypted-media, i-animation, i-API yentlawulo, imowudi ye-synchronous XMLHttpRequest, njl.). Kwiibhloko ze-iframe, uphawu “kuvumela", enokusetyenziswa kwikhowudi yephepha ukwabela amalungelo kwiibhloko ezithile ze-iframe.

  Umgaqo-nkqubo wophawu: umbhobho ‘akukho nanye’; indawo yomhlaba 'akukho'

  Ukuba isiza sivumela, ngophawu “lokuvumela” ukusebenza kunye nesixhobo se-iframe ethile, kwaye isicelo sifunyenwe kwi-iframe ukufumana iimvume zokusebenza nesi sixhobo, umkhangeli zincwadi ngoku ubonisa incoko yababini yokunika imvume umxholo wephepha eliphambili kunye namagunya agunyazisiweyo aqinisekiswa ngumsebenzisi kwi-iframe (endaweni yoqinisekiso olwahlukileyo lwe-iframe kunye nephepha eliphambili). Kodwa, ukuba iphepha eliphambili alinayo imvume kwisixhobo esiceliweyo ngophawu lokuvumela, iframe inofikelelo kwisixhobo ngoko nangoko. ivaliwe, ngaphandle kokubonisa incoko yababini kumsebenzisi.

• Inkxaso yeepropathi zeCSS 'eyenziwe ngokungagqibekanga'umbhalo-krwelela-indawo‘, emisela indawo yokukrwelelwa kombhalo (umzekelo, xa ubonisa okubhaliweyo ngokuthe nkqo, ungaququzelela ukukrwelelwa ekhohlo okanye ekunene, kwaye xa ubonisa ngokuthe tye, kungekuphela nje ukusuka ezantsi, kodwa nangaphezulu). Ukongeza kwiimpawu zeCSS ezilawula isimbo sokukrwela umgca ngaphantsi umbhalo-ukrwela umgca phantsi-offset и text-decoration-thickness Inkxaso eyongeziweyo yokusebenzisa amaxabiso epesenti.
• Kwipropati yeCSS isimbo solwandlalo, echaza isimbo somgca esijikeleze izinto, ukungagqibeki ku "auto" (ngaphambili ikhubazekile ngenxa yeengxaki kwi-GNOME).
• KwiJavaScript debugger yongezwe ukukwazi ukulungisa iimpazamo kwi-Web Workers, ukuphunyezwa kwayo kunokunqunyanyiswa kwaye kulungiswe inyathelo ngenyathelo usebenzisa i-breakpoints.
  

• Ujongano lokuhlola iphepha lewebhu ngoku lubonelela ngezilumkiso kwiipropathi zeCSS ezixhomekeke ku-z-index, phezulu, ekhohlo, ezantsi, nakwizinto ezibekwe ekunene.
  

• KwiWindows kunye neMacOS, ukukwazi ukungenisa iiprofayili ukusuka kwisiphequluli seMicrosoft Edge esekwe kwinjini yeChromium kuphunyeziwe.

Ukongeza kwizinto ezintsha kunye nokulungiswa kwebug, iFirefox 74 ilungisiwe 20 ubuthathaka, apho i-10 (iqokelelwe phantsi I-CVE-2020-6814 и I-CVE-2020-6815) ziphawulwe njengabanakho ukukhokelela ekuphumezeni ikhowudi yomhlaseli xa uvula amaphepha ayilwe ngokukodwa. Masikukhumbuze ukuba iingxaki zememori, ezifana nokuphuphuma kwe-buffer kunye nokufikelela kwiindawo zememori esele zikhululiwe, kutshanje ziphawulwe njengeziyingozi, kodwa zingabalulekanga.

umthombo: opennet.ru