ProHoster > Ibhulogi > iindaba ze-intanethi > Ukukhutshwa komphathi wenkqubo ye-251

Ukukhutshwa komphathi wenkqubo ye-251

Emva kweenyanga ezintlanu zophuhliso, ukukhululwa komphathi wenkqubo systemd 251 kubonisiwe.

Utshintsho oluphambili:

  • Iimfuno zenkqubo zonyusiwe. Ubuncinci be-Linux kernel version exhaswayo yonyusiwe ukusuka kwi-3.13 ukuya kwi-4.15. Isibali-xesha CLOCK_BOOTTIME siyafuneka ekusebenzeni. Ukwakha, udinga umqokeleli oxhasa umgangatho we-C11 kunye nezandiso ze-GNU (umgangatho we-C89 uyaqhubeka usetyenziselwa iifayile zentloko).
  • Yongeze into esetyenziswayo yovavanyo ye-systemd-sysupdate ukubona ngokuzenzekelayo, ukukhuphela kunye nokuhlohla uhlaziyo kusetyenziswa indlela yeatom yokutshintsha izahlulelo, iifayile okanye abalawuli (izahlulo ezimbini ezizimeleyo/iifayile/abalawuli basetyenziswa, enye equlathe isixhobo esisebenzayo sangoku, kunye nolunye uhlohlo. uhlaziyo olulandelayo, emva koko amacandelo/iifayile/abalawuli batshintshwa).
  • Ukwaziswa kwethala leencwadi elitsha langaphakathi ekwabelwana ngalo libsystemd-core- .so, efakwe kwi/usr/lib/systemd/system directory kwaye ihambelana nelayibrari ekhoyo ekwabelwana ngayo. .ngoko. Ukusebenzisa ilayibrari ekwabelwana ngayo i-libsystemd-core- .so ikuvumela ukuba unciphise ubungakanani bofako ngokubanzi ngokusebenzisa kwakhona ikhowudi yokubini. Inombolo yoguqulelo inokuchazwa kusetyenziswa iparamitha 'ekwabelwana ngayo-lib-tag' kwinkqubo yokwakha ye-meson kwaye ivumela unikezelo ukuthumela iinguqulelo ezininzi zala mathala ngaxeshanye.
  • Kuphunyezwe utshintshiselwano lwezinto eziguquguqukayo zokusingqongileyo $MONITOR_SERVICE_RESULT, $MONITOR_EXIT_CODE, $MONITOR_EXIT_STATUS, $MONITOR_INVOCATION_ID kunye ne-$MONITOR_UNIT ukusuka kulwazi malunga neyunithi ebekwe esweni kwi-OnFailure/OnSuccess handlers.
  • Ukwenzela iiyunithi, isicwangciso se-ExtensionDirectories siphunyeziwe, esinokusetyenziselwa ukucwangcisa ukulayishwa kwamalungu eSixokelelwano Solwandiso kubalawuli abaqhelekileyo, kunemifanekiso yedisk. Imixholo yolawulo lolwandiso lwenkqubo yalekwe ngaphezulu kusetyenziswa i-OverlayFS kwaye isetyenziselwa ukwandisa i-hierarchy ye /usr/ kunye /opt/ abalawuli, kunye nokongeza iifayile ezongezelelweyo ngexesha lokuqhuba, nokuba abalawuli abaxeliweyo banyuswe ukufunda kuphela. Umyalelo othi 'portablectl attach --extension=' wongeze inkxaso yokuchaza uvimba weefayili.
  • Kwiiyunithi eziyekiswe ngenkani sisibambi se-systemd-oomd ngenxa yokunqongophala kwenkumbulo kwisixokelelwano, uphawu loyelelwano lwe-'oom-kill' luyahanjiswa kwaye inani loyekiso ngenkani luboniswa kuphawu loyelelwano lwe-'user.oomd_ooms'.
  • Kwiiyunithi, iindlela ezintsha zokukhankanya i-%y/%Y zongeziwe, ezibonisa indlela eqhelekileyo kwiyunithi (ngokwandiswa koqhagamshelo olunomqondiso). Kwakhona kongezwe ngabaxeli be-%q bokutshintsha PRETTY_HOSTNAME ixabiso kunye ne-%d ye-CREDENTIALS_DIRECTORY endaweni.
  • Kwiinkonzo ezingafanelekanga eziqaliswe ngumsebenzisi oqhelekileyo usebenzisa i-"--user" iflegi, utshintsho kwizicwangciso ze RootDirectory, MountAPIVFS, ExtensionDirectories, *Capabilities*, ProtectHome, *Directory, TemporaryFileSystem, PrivateTmp, PrivateDevices, PrivateNetwork, NetworkNamespacePath, PrivateIPCNameIPC, , Abasebenzisi babucala, i-ProtectClock ivumelekile , ProtectKernelTunables, ProtectKernelModules, ProtectKernelLogs kunye neMountFlags. Olu phawu lufumaneka kuphela xa izithuba zamagama zomsebenzisi zenziwe zasebenza kwisixokelelwano.
  • I LoadCredential isicwangciso sivumela igama likavimba weefayili ukuba lixelwe njengempikiswano, apho ke kuzanywa ukulayisha iimqinisekiso kuzo zonke iifayile kulawulo olukhankanyiweyo.
  • Kwi-systemctl, kwi-parameter "-timestamp", kuye kwenzeka ukuba ucacise iflegi "unix" ukubonisa ixesha kwifomathi ye-epochal (inani lemizuzwana ukususela ngoJanuwari 1, 1970).
  • I-"systemctl status" isebenzisa iflegi "ye-kernel endala", eboniswa ukuba i-kernel elayishwe kwiseshoni inenombolo yenguqulo endala kune-base kernel ekhoyo kwinkqubo. Kwakhona kongezwe iflegi "engadityaniswanga-usr" ukumisela ukuba imixholo ye /bin/ kunye /sbin/ oovimba beefayili ayenziwanga ngeesymlink ukuya ku/usr.
  • Kuba iijeneretha eziqalwe ngenkqubo ye-PID 1, izinto ezintsha eziguquguqukayo zemeko-bume zibonelelwa: $SYSTEMD_SCOPE (ukuqala kwindlela okanye kwinkonzo yomsebenzisi), $SYSTEMD_IN_INITRD (qala kwi-initrd okanye kwindawo yokusingatha), $SYSTEMD_FIRST_BOOT (isalathisi sokuqala), $SYSTEMD_VIRTUALIZATION ( ubukho bokubonwa okanye ukuqaliswa kwisikhongozeli ) kunye ne-$SYSTEMD_ARCHITECTURE (isakhiwo esakhelwe sona i-kernel).
  • Umphathi we-PID 1 usebenzisa ukukwazi ukulayisha iiparamitha zenkcaso yenkqubo ukusuka kwi-QEMU fw_cfg ujongano okanye ngokucacisa i-systemd.set_credential parameter kumgca womyalelo we-kernel. Umyalelo weLoadCredential ubonelela ngophendlo oluzenzekelayo lweziqinisekiso kwi/etc/credstore/, /run/credstore/ kunye/usr/lib/credstore/ abalawuli ukuba indlela ezalanayo ichaziwe njengengxabano. Ukuziphatha okufanayo kusebenza kumyalelo we-LoadCredentialEncrypted, ephinda ijonga /etc/credstore.encrypted/, /run/credstore.encrypted/ kunye /usr/lib/credstore.encrypted/ directory.
  • Ukukwazi ukuthumela ngaphandle ngefomathi ye-JSON kuzinzisiwe kwi-systemd-journald. I "journalctl --list-boots" kunye ne "bootctl list" imiyalelo ngoku ixhasa imveliso ngefomathi ye-JSON (i "--json" iflegi).
  • Iifayile ezintsha ezineedatha ze-hwdb zongezwa kwi-udev, equlethe ulwazi malunga nezixhobo eziphathekayo (i-PDA, ii-calculators, njl.) kunye nezixhobo ezisetyenziselwa ukudala isandi kunye nevidiyo (i-DJ consoles, i-keypads).
  • Iinketho ezintsha "-prioritized-subsystem" ziye zongezwa kwi-udevadm ukuseta okuphambili kweenkqubo ezilandelayo (ezisetyenziswa kwi-systemd-udev-trigger.service ukucubungula izixhobo zebhloko kunye nee-TPMs kuqala), "-uhlobo = zonke", "-iqaliswe -match" kunye "--initialized-nomatch" ukukhetha izixhobo eziqalisiweyo okanye ezingasetyenziswanga, "udevadm info -tree" ukubonisa umthi wezinto kwi/sys/ hierarchy. I-udevadm yongeza kwakhona "ukulinda" kunye ne "tshixa" imiyalelo yokulinda ukungena kwesixhobo ukuba kuvele kuvimba wedatha kwaye utshixe isixhobo sebhlokhi ngelixa ufomatha okanye ubhala itafile yokwahlulahlula.
  • Yongeza iseti entsha yamakhonkco omfuziselo kwizixhobo /dev/disk/by-diskseq/ ukuchonga izixhobo zebhloko ngenombolo yesiriyali ("diskseq").
  • Inkxaso eyongeziweyo yeparameter "yeFirmware" kwi-.link iifayile kwi- [Match] icandelo lokutshatisa isixhobo ngomgca kunye nenkcazo ye-firmware.
  • Kwi-systemd-networkd, kwiindlela ze-unicast eziqwalaselweyo ngapha kwe [Route] icandelo, ixabiso lomda litshintshiwe laya ku-"link" ngokungagqibekanga ukuze litshatise ukuziphatha komyalelo we "ip route". I-Isolated=inyani|yobuxoki iparameter yongezwe kwi [Bridge] icandelo ukumisela uphawu loyelelwano lwegama elifanayo kwiibhlorho zothungelwano kwi-kernel. Kwicandelo [Itonela], iparamitha yaNgaphandle yongezwe ukuseta uhlobo lwetonela yangaphandle (imowudi yokuqokelela imetadata). Kwicandelo le [DHCPSServer], iBootServerName, iBootServerAddress kunye neBootFilename iparameters zongeziwe ukuze kuqwalaselwe idilesi yomncedisi, igama lomncedisi kunye negama lefayile yokuqalisa ithunyelwe ngumncedisi we DHCP xa uqalisa imo ye PXE. Kwi [Network] icandelo, iparameter ye-L2TP isusiwe, endaweni yoko kwiifayile ze.netdev ungasebenzisa isicwangciso esitsha saseKhaya ngokudityaniswa nojongano lwe-L2TP.
  • Yongezwe iyunithi entsha "systemd-networkd-wait-online@" .service", enokusetyenziswa ukulinda ujongano oluthile lomsebenzi wothungelwano ukuba luvele.
  • Ngoku kunokwenzeka ukusebenzisa iifayile ze-.netdev ukwenza izixhobo ze-WLAN ezinenyani, ezinokuthi ziqwalaselwe kwicandelo le- [WLAN].
  • Kwiifayile ze-.link/.network, icandelo elithi [Umdlalo] liphumeza uhlobo lweparamitha yokuthelekisa ngohlobo lwesixhobo (“bond”, “bridge”, “gre”, “tun”, “veth”).
  • I-Systemd-isonjululwe isungulwe kwinqanaba lokuqala lokuqala, ukuquka ukundululwa ukusuka kwi-initrd ukuba inkqubo-isonjululwe ikhoyo kumfanekiso we-initrd.
  • i-systemd-cryptenroll yongeza i --fido2-credential-algorithm ukhetho lokukhetha i-algorithm yoguqulelo oluyimfihlo kunye ne --tpm2-nge-pin ukhetho lokulawula ungeno lwe-PIN xa uvula ulwahlulo usebenzisa i-TPM. Ukhetho olufanayo lwe-tpm2-pin longezwe kwi/etc/crypttab. Xa uvula izixhobo ngeTPM, useto luguqulelwa ngokuntsonkothileyo ukuze lukhusele ekuthinteleni izitshixo zoguqulelo oluntsonkothileyo.
  • systemd-timesyncd yongeza i-D-Bus API yokufumana kwakhona ulwazi olusuka kwiseva ye-NTP nge-IPC.
  • Ukumisela imfuno yokuphuma kombala, yonke imiyalelo iphumeza itshekhi yokutshintsha kwemeko-bume COLORTERM ukongeza kokukhe kwakhangelwa ngaphambili NO_COLOR, SYSTEMD_COLORS kunye neTERM.
  • Inkqubo yokwakha ye-Meson isebenzisa i-install_tag ukhetho lwendibano ekhethiweyo kunye nofakelo lwamacandelo ayimfuneko: pam, nss, devel (pkg-config), systemd-boot, libsystemd, libudev. Kongezwe ukhetho lokwakha olungagqibekanga-uxinzelelo ukukhetha i-algorithm yoxinzelelo lwe-systemd-journald kunye ne-systemd-coredump.
  • Kongezwe umfuniselo "reboot-for-bitlocker" useto kwi-sd-boot in loader.conf ukuqalisa iMicrosoft Windows ngeBitLocker TPM.

umthombo: opennet.ru

Yongeza izimvo