Ngemuva konyaka wokuthuthuka, i-SUSE yethule ukukhululwa kokusatshalaliswa kwe-SUSE Linux Enterprise 15 SP4. Ngokusekelwe kuplathifomu ye-SUSE Linux Enterprise, kwakhiwa imikhiqizo efana ne-SUSE Linux Enterprise Server, SUSE Linux Enterprise Desktop, SUSE Manager kanye neSUSE Linux Enterprise High Performance Computing. Ukusabalalisa kumahhala ukulanda futhi kusetshenziswe, kodwa ukufinyelela kuzibuyekezo namapeshi kukhawulelwe esikhathini sesivivinyo sezinsuku ezingama-60. Ukukhishwa kuyatholakala ekwakhiweni kwezakhiwo ze-aarch64, ppc64le, s390x kanye ne-x86_64.
I-SUSE Linux Enterprise 15 SP4 isekela ukuhambisana kwephakheji kanambambili okugcwele nokusatshalaliswa okuthuthukiswe umphakathi kwe-OpenSUSE Leap 15.4, okuhlelelwe ukukhishwa kusasa. Izinga eliphezulu lokusebenzisana lafinyelelwa ngenxa yokusetshenziswa ku-openSUSE yesethi eyodwa yamaphakheji kanambambili nge-SUSE Linux Enterprise, esikhundleni sokwakha kabusha amaphakheji e-src. Kulindeleke ukuthi abasebenzisi baqale bakhe futhi bahlole isixazululo esisebenzayo besebenzisa i-openSUSE, bese beshintshela ngaphandle komthungo enguqulweni yezohwebo ye-SUSE Linux ngokusekelwa okugcwele, i-SLA, isitifiketi, ukukhishwa kwesibuyekezo sesikhathi eside namathuluzi athuthukile okwamukelwa ngobuningi.
Izinguquko eziyinhloko:
- I-Linux kernel ibuyekeziwe ukuze ikhulule i-5.14.
- Indawo yedeskithophu ibuyekeziwe yaba yi-GNOME 41 ne-GTK4. Kunikezwe amandla okusebenzisa iseshini yedeskithophu esekelwe kuphrothokholi ye-Wayland ezindaweni ezinamashayeli e-NVIDIA okuphathelene.
- Kungezwe iseva yemidiya ye-Pipewire, okwamanje esetshenziselwa kuphela ukunikeza ukwabelana kwesikrini ezindaweni ezisekelwe e-Wayland. Ngomsindo, i-PulseAudio iyaqhubeka nokusetshenziswa.
- Amaphakheji we-Python 2 asusiwe, ashiya kuphela iphakheji ye-python3.
- Izinguqulo ezibuyekeziwe ze-PHP 8, i-OpenJDK 17, i-Python 3.10, i-MariaDB 10.6, i-PostgreSQL 14, i-Apparmor 3.0, i-Samba 4.15, i-OpenSSL 3.0.1, i-systemd 249, i-QEMU 6.2, i-Xen 4.16, i-libvirt 0.8.0, i-4.0.0mana.
- Ikhono lokusebenzisa iziqephu ezibukhoma ukuze kuthuthukiswe izingxenye zesikhala somsebenzisi endizeni, njenge-Glibc ne-OpenSSL, seliqalisiwe. Amapeshi asetshenziswa ngaphandle kwezinqubo zokuqalisa kabusha, kusetshenziswa iziqephu kumitapo yolwazi yenkumbulo.
- Izithombe ze-JeOS (ukwakhiwa okuncane kwe-SUSE Linux Enterprise yezinhlelo ze-virtualization) ziqanjwe kabusha ngokuthi i-Minimal-VM.
- Ihlangabezana nezimfuneko ze-SLSA Level 4 ukuze uvikeleke ezinguqukweni ezinonya phakathi nokuthuthukiswa. Ukuze uqinisekise izinhlelo zokusebenza nezithombe zesiqukathi kusetshenziswa amasiginesha edijithali, isevisi ye-Sigstore iyasetshenziswa, egcina ilogi yomphakathi ukuze kuqinisekiswe ubuqiniso (ilogi ebonisa ngale).
- Kuhlinzekwe ngosekelo lokuphatha amaseva asebenzisa i-SUSE Linux Enterprise kusetshenziswa isistimu yokulawula ukumisa okuphakathi kukasawoti.
- Kungezwe ukusekelwa kokuhlola kwe-schedutil (cpufreq governor) processor frequency regulation mechanism, esebenzisa ngokuqondile imininingwane evela kusihleli somsebenzi ukwenza isinqumo sokushintsha imvamisa futhi engakwazi ukufinyelela ngokushesha kubashayeli be-cpufreq ukuze bashintshe ngokushesha imvamisa, ukulungisa ngokushesha imingcele yokusebenza ye-CPU. emthwalweni wamanje.
- Ikhono lokuhlola lokunquma ukwakheka kwe-SMBIOS Management Controller Host Interface futhi ulungiselele I-Host Network Interface ku-BMC usebenzisa i-Redfish over IP protocol yengezwe kusilungisi senethiwekhi esikhohlakele esisetshenziswa ku-SLES, esikuvumela ukuthi usebenzise isevisi ye-Redfish ekulawuleni isistimu ukude. .
- Ukusekelwa kwenkundla yezithombe ze-Intel Alderlake kuthuthelwe kumshayeli we-i915. Kuzinhlelo ze-ARM, kufaka phakathi umshayeli we-etnaviv wama-Vivante GPU asetshenziswa kuma-ARM SoC ahlukahlukene, njenge-NXP Layerscape LS1028A/LS1018A ne-NXP i.MX 8M, kanye nelabhulali ye-etnaviv_dri ye-Mesa.
- Kuyenzeka wenze kusebenze imodi Yesikhathi Sangempela ku-kernel kumasistimu esikhathi sangempela ngokusetha ipharamitha ye-preempt=full lapho ulayisha i-kernel ye-SUSE Linux evamile. Iphakheji ehlukile ye-kernel-preempt isusiwe ekusabalaliseni.
- Ku-kernel, ngokuzenzakalelayo, amandla okusebenzisa izinhlelo ze-eBPF ngabasebenzisi abangenamalungelo avaliwe (ipharamitha /proc/sys/kernel/unprivileged_bpf_disabled isethiwe) ngenxa yezingozi zokusebenzisa i-eBPF ukuhlasela uhlelo. Usekelo lwendlela ye-BTF (ifomethi yohlobo lwe-BPF) seluqalisiwe, luhlinzeka ngolwazi lokuhlola izinhlobo ku-BPF pseudocode. Amathuluzi e-BPF abuyekeziwe (libbpf, bcc). Kwengezwe usekelo lwendlela yokulandelela i-bpftrace.
- Manje sekungenzeka ukuthi usebenzise amakhasi enkumbulo angama-64K kuma-Btrfs lapho usebenza nesistimu yefayela efomethwe ngosayizi webhulokhi omncane kunosayizi wekhasi lememori ye-kernel (isibonelo, amasistimu wefayela anamabhulokhi angu-4KB manje angasetshenziswa hhayi kuphela kuma-kernel anosayizi ofanayo. yamakhasi enkumbulo).
- I-kernel ihlanganisa ukusekelwa kwendlela ye-SVA (I-Shared Virtual Addressing) yokwabelana ngamakheli abonakalayo phakathi kwe-CPU namadivayisi aseduze, okuvumela ama-accelerator ezingxenyekazi zekhompuyutha ukuthi afinyelele izakhiwo zedatha ku-CPU eyinhloko.
- Ukusekelwa okuthuthukisiwe kwamadrayivu e-NVMe futhi kwengeza amandla okusebenzisa izici ezithuthukile njenge-CDC (Centralized Discovery Controller). Iphakheji ye-nvme-cli ibuyekezelwe kunguqulo 2.0. Amaphakheji amasha i-libnvme 1.0 kanye ne-nvme-stas 1.0 engeziwe.
- Kunikezwe ukwesekwa okusemthethweni kokufaka ukushintshwa kwedivayisi yebhulokhi ye-zRAM, eqinisekisa ukuthi idatha igcinwa ku-RAM ngendlela ecindezelwe.
- Usekelo olungeziwe lwe-NVIDIA vGPU 12 no-13.
- Esikhundleni sabashayeli be-fbdev abasetshenziselwa okukhiphayo nge-Framebuffer, kuhlongozwa umshayeli we-simpledrm jikelele osebenzisa i-EFI-GOP noma i-VESA framebuffer ehlinzekwa yi-UEFI firmware noma i-BIOS ukuze ikhiphe.
- Ukwakheka kufaka phakathi umtapo wezincwadi we-cryptographic we-OpenSSL 3.0, ngaphezu kwenguqulo ye-OpenSSL 1.1.1 esetshenziswa ezinhlelweni zokusebenza zesistimu.
- I-YaST ithuthukise ukubhutha kusuka kumadrayivu enethiwekhi alungiselelwe kusetshenziswa inketho ethi "_netdev".
- Isitaki se-Bluetooth se-BlueZ sibuyekezwe enguqulweni engu-5.62. Iphakheji ye-pulseaudio ingeza amakhodekhi omsindo wekhwalithi ephezulu ye-Bluetooth.
- Kunikwe amandla ukuguqulwa okuzenzakalelayo kwezikripthi ze-System V init.d zibe yizinsiza ze-systemd kusetshenziswa i-systemd-sysv-generator. Egatsheni elikhulu elilandelayo le-SUSE, ukusekelwa kwezikripthi ze-init.d kuzokwehliswa ngokuphelele futhi ukuguqulwa kuzokhutshazwa.
- Imihlangano ye-ARM inwebise ububanzi be-ARM SoCs esekelwayo.
- Ukwesekwa okwengeziwe kobuchwepheshe be-AMD SEV, ezingeni lezingxenyekazi zekhompuyutha elihlinzeka ngokubethela okusobala kwenkumbulo yomshini (isistimu yamanje yesivakashi kuphela ekwazi ukufinyelela idatha esusiwe, kuyilapho eminye imishini ebonakalayo kanye ne-hypervisor zithola isethi yedatha ebethelwe lapho zizama ukufinyelela lokhu. inkumbulo).
- Iseva ye-chrony NTP ihlanganisa ukusekelwa kokuvumelanisa isikhathi esinembayo ngokusekelwe kuphrothokholi ye-NTS (Network Time Security), esebenzisa izici zengqalasizinda yokhiye womphakathi (i-PKI) futhi evumela ukusetshenziswa kwe-TLS kanye nokubethela okuqinisekisiwe kwe-AEAD (Ukubethela Okuqinisekisiwe Ngedatha Ehlobene) ukuze vikela nge-cryptographically ukusebenzisana phakathi kweklayenti neseva nge-NTP (Network Time Protocol).
- I-389 Directory Server isetshenziswa njengeseva eyinhloko ye-LDAP. Ukusekela iseva ye-OpenLDAP kunqanyuliwe.
- Ikhithi yamathuluzi yokusebenza ngeziqukathi ze-LXC (i-libvirt-lxc ne-virt-sandbox) isusiwe.
- Kuphakanyiswe inguqulo encane encane yesiqukathi se-BCI (Base Container Image), esithumela iphakheji lebhokisi elimatasa esikhundleni se-bash nama-coreutils. Isithombe sakhelwe ukuthi sisetshenziselwe ukusebenzisa izinhlelo zokusebenza ezakhelwe ngaphambilini nakho konke ukuncika esitsheni. Kwengezwe iziqukathi ze-BCI zeRust neRuby.
Source: opennet.ru