I-ProHoster > Блог > izindaba ze-inthanethi > Ukukhishwa kwe-Chrome 90

Ukukhishwa kwe-Chrome 90

I-Google iveze ukukhishwa kwesiphequluli sewebhu se-Chrome 90. Ngesikhathi esifanayo, ukukhululwa okuzinzile kwephrojekthi yamahhala ye-Chromium, esebenza njengesisekelo se-Chrome, kuyatholakala. Isiphequluli se-Chrome sihlukaniswa ngokusetshenziswa kwezimpawu ze-Google, ukuba khona kwesistimu yokuthumela izaziso uma kwenzeka ingozi, amamojula okudlala okuqukethwe kwevidiyo evikelwe (DRM), isistimu yokufaka ngokuzenzakalelayo izibuyekezo, nokudlulisa amapharamitha e-RLZ lapho usesha. Ukukhishwa okulandelayo kwe-Chrome 91 kuhlelelwe uMeyi 25.

Izinguquko ezibalulekile ku-Chrome 90:

  • Bonke abasebenzisi bavunyelwe ukuvula amasayithi nge-HTTPS ngokuzenzakalelayo lapho uthayipha amagama osokhaya kubha yekheli. Isibonelo, uma ufaka umsingathi we-example.com, isayithi elithi https://example.com lizovulwa ngokuzenzakalelayo, futhi uma izinkinga zivela lapho kuvulwa, lizobuyiselwa emuva kokuthi http://example.com. Ukuze ulawule ukusetshenziswa kokuzenzakalelayo kokuthi “https://”, isilungiselelo esithi “chrome://flags#omnibox-default-typed-navigations-to-https” siyaphakanyiswa.
  • Manje sekungenzeka ukwabela amalebula ahlukene windows ukuze uwahlukanise ngokubonakalayo kuphaneli yedeskithophu. Ukusekelwa kokushintsha igama lewindi kuzokwenza kube lula ukuhleleka komsebenzi uma usebenzisa amawindi esiphequluli ahlukene emisebenzini ehlukene, isibonelo, lapho uvula amawindi ahlukene emisebenzi yomsebenzi, izithakazelo zomuntu siqu, ukuzijabulisa, izinto ezihlehlisiwe, njll. Igama lishintshwa ngento ethi “Engeza isihloko sewindi” kumenyu yokuqukethwe evela lapho uchofoza kwesokudla endaweni engenalutho kubha yethebhu. Ngemva kokushintsha igama kuphaneli yohlelo lokusebenza, esikhundleni segama lesayithi elisuka kuthebhu esebenzayo, igama elikhethiwe liyaboniswa, elingasiza lapho kuvulwa amasayithi afanayo kumafasitela ahlukene axhunywe kuma-akhawunti ahlukene. Ukubophezela kugcinwa phakathi kwamaseshini futhi ngemva kokuqala kabusha amawindi azobuyiselwa ngamagama akhethiwe.
    Ukukhishwa kwe-Chrome 90
  • Kwengezwe amandla okufihla “Uhlu Lokufunda” ngaphandle kokuthi ushintshe izilungiselelo kokuthi “chrome://flags” (“chrome://flags#read-later”). Ukuze ufihle, manje ungasebenzisa inketho ethi “Bonisa Uhlu Lokufunda” ngezansi kwemenyu yokuqukethwe eboniswa lapho uchofoza kwesokudla kubha yamabhukhimakhi. Ake sikukhumbuze ukuthi ekukhishweni kokugcina, lapho abanye abasebenzisi bechofoza inkanyezi kubha yekheli, ngaphezu kwenkinobho ethi “Engeza ibhukhimakhi”, kuvela inkinobho yesibili ethi “Engeza ohlwini lokufunda”, futhi ekhoneni elingakwesokudla Iphaneli yamabhukumaka kuvela imenyu ethi “Uhlu lokufunda”, ebonisa wonke amakhasi angaphambilini angezwe ohlwini. Uma uvula ikhasi ohlwini, limakwa njengelifundiwe. Amakhasi ohlwini angaphinda amakwe ngesandla njengafundiwe noma angafundiwe, noma akhishwe ohlwini.
  • Usekelo olungeziwe lokuhlukaniswa kwenethiwekhi ukuze kuvikelwe ezindleleni zokulandelela ukunyakaza komsebenzisi phakathi kwamasayithi asekelwe ekugcinweni kwezihlonzi ezindaweni ezingahloselwe ukugcinwa unomphela kolwazi (“Ama-Supercookies”). Ngenxa yokuthi izinsiza ezifakwe kunqolobane zigcinwa endaweni yamagama evamile, kungakhathaliseki ukuthi isizinda sini, isayithi elilodwa linganquma ukuthi enye isayithi ilayisha izinsiza ngokuhlola ukuthi leyo nsiza ikunqolobane yini. Ukuvikelwa kusekelwe ekusetshenzisweni kwesegmentation yenethiwekhi (I-Network Partitioning), ingqikithi yakho okuwukwengeza kuma-caches okwabelwana ukubophezela okwengeziwe kwamarekhodi esizindeni lapho kuvulwa ikhasi eliyinhloko, elikhawulela ukumbozwa kwenqolobane yemibhalo yokulandelela ukunyakaza kuphela. kusayithi lamanje (iskripthi esivela ku-iframe ngeke sikwazi ukuhlola ukuthi insiza ilandwe kwenye isayithi). Intengo yokuhlukaniswa iwukwehla ekusebenzeni kahle kwe-caching, okuholela ekwenyukeni okuncane kwesikhathi sokulayisha ikhasi (esiphezulu ngo-1.32%, kodwa ku-80% wamasayithi ngo-0.09-0.75%).
  • Uhlu olumnyama lwamachweba wenethiwekhi okuvinjiwe ukuthumela izicelo ze-HTTP, i-HTTPS ne-FTP selugcwalisiwe ukuze kuvikelwe ekuhlaselweni kwe-NAT, okuvumela, lapho uvula ikhasi lewebhu elilungiswe ngokukhethekile umhlaseli esipheqululini, ukusungula inethiwekhi. uxhumano olusuka kuseva yomhlaseli kuya kunoma iyiphi imbobo ye-UDP noma ye-TCP kusistimu yomsebenzisi , ngaphandle kokusetshenziswa kwebanga langaphakathi lamakheli (192.168.xx, 10.xxx). Kwengezwe 554 (RTSP protocol) kanye 10080 (esetshenziswa kukhophi yasenqolobaneni ka-Amanda kanye ne-VMWare vCenter) ohlwini lwamachweba angavunyelwe. Ngaphambilini, amachweba angu-69, 137, 161, 554, 1719, 1720, 1723, 5060, 5061 kanye ne-6566 asevele evinjiwe.
  • Kwengezwe ukwesekwa kokuqala kokuvula amadokhumenti e-PDF ngamafomu e-XFA esipheqululini.
  • Kubasebenzisi abathile, isigaba esisha sezilungiselelo "Izilungiselelo ze-Chrome > Ubumfihlo Nokuphepha > I-sandbox yobumfihlo" senziwe sasebenza, esikuvumela ukuthi uphathe amapharamitha e-FLoC API, okuhloswe ngawo ukunquma isigaba sezintshisekelo zabasebenzisi ngaphandle kokuhlonza komuntu ngamunye futhi ngaphandle kwereferensi umlando wokuvakashela amasayithi athile.
  • Isaziso esicace kakhudlwana esinohlu lwezenzo ezivunyelwe manje siyaboniswa uma umsebenzisi exhuma kuphrofayela lapho ukuphathwa okumaphakathi kuvunyelwe khona.
  • Yenze isixhumi esibonakalayo sesicelo sezimvume singaphazamisi kangako. Izicelo okungenzeka ukuthi umsebenzisi angazigunyaza manje zivinjwa ngokuzenzakalelayo ngesibonisi esihambisanayo esiboniswa kubha yekheli, umsebenzisi angaya ngaso kusixhumi esibonakalayo ukuze aphathe izimvume ngokwesisekelo sesayithi ngalinye.
    Ukukhishwa kwe-Chrome 90
  • Ukusekelwa kwezandiso ze-Intel CET (I-Intel Control-flow Enforcement Technology) kufakiwe ukuze kuvikelwe izingxenyekazi zekhompuyutha ezenzweni ezakhiwe kusetshenziswa izinhlelo ezigxile ekubuyiseleni (i-ROP, i-Return-Oriented Programming) amasu.
  • Umsebenzi uyaqhubeka nokuguqula isiphequluli ukuze sisebenzise amagama asetshenziswayo. Ifayela elithi "master_preferences" liqanjwe kabusha laba "okuncamelayo_kokuqala" ukuze kugwenywe ukulimaza imizwa yabasebenzisi ababona igama elithi "master" njengesu lokusikisela mayelana nobugqila bangaphambili bokhokho babo. Ukuze ugcine ukuhambisana, usekelo lwe-"master_preferences" luzohlala kusiphequluli isikhathi esithile. Ngaphambilini, isiphequluli besesivele sikuyekile ukusetshenziswa kwamagama “uhlu olumhlophe”, “uhlu olumnyama” kanye “nomdabu”.
  • Enguqulweni ye-Android, uma imodi yokulondoloza ithrafikhi ethi “Lite” inikwe amandla, i-bitrate iyancishiswa uma ulanda ividiyo uma ixhunywe ngamanethiwekhi o-opharetha beselula, okuzonciphisa izindleko zabasebenzisi abanamanani asekelwe kuthrafikhi avuliwe. Imodi "Lite" iphinda inikeze ukuminyanisa kwezithombe ezicelwe ezinsizeni ezitholakala esidlangalaleni (engadingi ukuqinisekiswa) nge-HTTPS.
  • Kwengezwe isishumeki sefomethi yevidiyo ye-AV1, elungiselelwe ngokukhethekile ukusetshenziswa enkomfeni yevidiyo ngokusekelwe kuphrothokholi ye-WebRTC. Ukusetshenziswa kwe-AV1 engqungqutheleni ngevidiyo kwenza kube nokwenzeka ukukhulisa ukusebenza kahle kokucindezela futhi kunikeze ikhono lokusakaza eziteshini ezinomkhawulokudonsa ongu-30 kbit/sec.
  • Ku-JavaScript, izinto ze-Array, String, kanye ne-TypedArrays zisebenzisa indlela ethi at(), ekuvumela ukuthi usebenzise inkomba ehlobene (indawo ehlobene icaciswe njengenkomba yohlu), okuhlanganisa ukucacisa amanani angalungile ahlobene nesiphetho (isibonelo, "arr.at(-1)" izobuyisela ingxenye yokugcina yamalungu afanayo).
  • I-JavaScript yengeze isici esithi “.indices” sezinkulumo ezivamile, eziqukethe amalungu afanayo anezindawo zokuqala nezokugcina zamaqembu okufanayo. Isakhiwo sigcwaliswa kuphela lapho kusetshenziswa isisho esivamile ngefulegi elithi "/d". const re = /(a)(b)/d; const m = re.exec('ab'); console.log(m.indices[0]); // 0 — wonke amaqembu omdlalo // → [0, 2] console.log(m.indices[1]); // 1 iqembu lokuqala lokufanisa // → [0, 1] console.log(m.indices[2]); // 2 - iqembu lesibili lemidlalo // → [1, 2]
  • Ukusebenza kwezici “ezinhle kakhulu” (isibonelo, i-super.x) lapho inqolobane esemgqeni ivuliwe ithuthukisiwe. Ukusebenza kokusebenzisa "super" manje sekusondele ekusebenzeni kokufinyelela izakhiwo ezijwayelekile.
  • Ukushayela imisebenzi ye-WebAssembly kusuka ku-JavaScript kusheshiswe ngokuphawulekayo ngenxa yokusetshenziswa komugqa wokuthunyelwa. Lokhu kulungiselelwa kusalokhu kuwukuhlola okwamanje futhi kudinga ukusebenzisa ifulegi elithi “-turbo-inline-js-wasm-calls”.
  • Kwengezwe i-WebXR Depth Sensing API, ekuvumela ukuthi unqume ibanga phakathi kwezinto ezisendaweni yomsebenzisi kanye nedivayisi yomsebenzisi, isibonelo, ukuze udale izinhlelo zokusebenza ezingokoqobo ezingathandwa kwabathelisi esikubona. Ake sikukhumbuze ukuthi i-WebXR API ikuvumela ukuthi uhlanganise umsebenzi ngezigaba ezahlukahlukene zamadivayisi ento engekho ngokoqobo, kusukela kuzigqoko ezimile ze-3D kuya kuzixazululo ezisekelwe kumadivayisi eselula.
  • Isici se-WebXR AR Lighting Estimation sizinzile, sivumela amaseshini e-WebXR AR ukuthi anqume amapharamitha okukhanya okuzungezile ukuze anikeze amamodeli ukubukeka kwemvelo kakhudlwana nokuhlanganiswa okungcono nendawo yomsebenzisi.
  • Imodi Yezilingo Zomsuka (izici zokuhlola ezidinga ukwenziwa kusebenze okuhlukile) ingeza ama-API amaningana amasha okwamanje anomkhawulo kunkundla ye-Android. I-Origin Trial isho amandla okusebenza ne-API eshiwo ezinhlelweni ezilandwe ku-localhost noma 127.0.0.1, noma ngemva kokubhalisa nokwamukela ithokheni elikhethekile elisebenza isikhathi esilinganiselwe sesayithi elithile.
    • Indlela ye-getCurrentBrowsingContextMedia(), eyenza kube nokwenzeka ukuthwebula ukusakaza kwevidiyo ye-MediaStream ebonisa okuqukethwe kwethebhu yamanje. Ngokungafani nendlela ye-getDisplayMedia() efanayo, lapho ushayela i-getCurrentBrowsingContextMedia(), ingxoxo elula yethulwa kumsebenzisi ukuze kuqinisekiswe noma kuvinjwe ukusebenza kokudlulisa ividiyo ngokuqukethwe kwethebhu.
    • I-Insertable Streams API, ekuvumela ukuthi ulawule ukusakazwa kwemidiya eluhlaza esakazwa nge-MediaStreamTrack API, njengedatha yekhamera nemakrofoni, imiphumela yokuthwebula isikrini, noma idatha yokuqoshwa kwekhodekhi emaphakathi. Izixhumi ezibonakalayo ze-WebCodec zisetshenziselwa ukwethula ozimele abangavuthiwe futhi ukusakaza kukhiqizwa okufanayo nalokho okukhiqizwa i-WebRTC Insertable Streams API ngokusekelwe ku-RTCPeerConnections. Ngasohlangothini olungokoqobo, i-API entsha ivumela ukusebenza okufana nokusebenzisa amasu okufunda komshini ukuhlonza noma ukuchasisa izinto ngesikhathi sangempela, noma ukwengeza imithelela efana nokunamathisela ingemuva ngaphambi kokufaka ikhodi noma ngemva kokuqoshwa ngekhodekhi.
    • Ikhono lokupakisha izinsiza kumaphakheji (Inqwaba Yewebhu) ukuze uhlele ukulayishwa okuphumelelayo kwenani elikhulu lamafayela ahambisanayo (izitayela ze-CSS, i-JavaScript, izithombe, ama-iframe). Phakathi kokushiyeka ekusekelweni okukhona kwamaphakheji wamafayela e-JavaScript (i-webpack), i-Web Bundle ezama ukuyiqeda: iphakheji ngokwayo, kodwa hhayi izingxenye zayo zengxenye, ingagcina ku-cache ye-HTTP; ukuhlanganisa nokwenza kungaqala kuphela ngemva kokuba iphakheji selilandiwe ngokuphelele; Izinsiza ezengeziwe ezifana ne-CSS nemifanekiso kufanele zibhalwe ngekhodi ngendlela yeyunithi yezinhlamvu ye-JavaScript, ekhulisa usayizi futhi idinga esinye isinyathelo sokuhlaziya.
    • Ukusekela ukuphatha okuhlukile ku-WebAssembly.
  • Kuqiniswe i-Declarative Shadow DOM API ukuze kudalwe amagatsha ezimpande amasha ku-Shadow DOM, isibonelo ukuze kuhlukaniswe isitayela sesici senkampani yangaphandle esingenisiwe kanye negatsha laso le-DOM elihlobene nedokhumenti enkulu. I-API yesimemezelo ehlongozwayo ikuvumela ukuthi usebenzise i-HTML kuphela ukuze ususe ukuphina amagatsha e-DOM ngaphandle kwesidingo sokubhala ikhodi ye-JavaScript.
  • Isici se-aspect-ratio se-CSS, esikuvumela ukuthi ubophe ngokucacile ukubukeka kwe-aspect ratio kunoma iyiphi i-elementi (ukubala ngokuzenzakalelayo usayizi ongekho lapho ucacisa ubude noma ububanzi kuphela), sisebenzisa ikhono lokuhlanganisa amanani ngesikhathi sokugqwayiza (inguquko ebushelelezi isuka kokukodwa). i-aspect ratio kwesinye).
  • Kwengezwe amandla okubonisa isimo sezinto ze-HTML ngokwezifiso ku-CSS ngesigaba-mbumbulu esithi “:state()”. Umsebenzi wenziwa ngokufanisa nekhono lezinto ezijwayelekile ze-HTML ukushintsha isimo sazo ngokuya ngokusebenzisana komsebenzisi.
  • Isici se-CSS "ukubukeka" manje sisekela inani elithi 'okuzenzakalelayo', elisethelwe ngokuzenzakalela Futhi , kanye nenkundla ye-Android ngaphezu kwalokho , , , Futhi .
  • Ukusekelwa kwevelu "yesiqeshana" kwengezwe esakhiweni se-CSS "esichichimayo", lapho kusethiwe, okuqukethwe okudlulela ngale kwebhulokhi kusifinyezwa kumkhawulo wokuchichima okuvunyelwe kwebhulokhi ngaphandle kokuba nokwenzeka kokuskrola. Inani elinquma ukuthi okuqukethwe kungadlulela kude kangakanani komngcele wangempela webhokisi ngaphambi kokuthi ukusika kuqale lisethwa ngesakhiwo esisha se-CSS esithi "overflow-clip-margin". Uma kuqhathaniswa "nokuchichima: kufihliwe", ukusebenzisa "ukuchichima: isiqeshana" kuvumela ukusebenza okungcono.
    Ukukhishwa kwe-Chrome 90Ukukhishwa kwe-Chrome 90
  • Isihloko se-Feature-Policy HTTP sithathelwe indawo unhlokweni omusha Wezimvume-Inqubomgomo ukuze ulawule ukudluliselwa kwezimvume nokunika amandla izici ezithuthukisiwe, okuhlanganisa ukusekelwa kwamanani enkambu ehleliwe (ngokwesibonelo, manje ungacacisa "Inqubomgomo Yezimvume: I-geolocation =()" esikhundleni sokuthi "Inqubomgomo Yesici: indawo yendawo 'akukho'").
  • Ukuvikela okuqinisiwe ekusetshenzisweni Kwezivimbela Zephrothokholi ekuhlaselweni okubangelwa ukuqagela kwemiyalelo kumaphrosesa. Ukuvikela kusetshenziswa ngokwengeza uhlobo lwe-MIME lwe-“application/x-protobuffer” ohlwini lwezinhlobo ze-MIME ezingakaze zihoge, olucutshungulwa ngomshini we-Cross-Origin-Read-Blocking. Ngaphambilini, uhlobo lwe-MIME oluthi “application/x-protobuf” lwaluvele lufakiwe kuhlu olufanayo, kodwa “uhlelo lokusebenza/x-protobuffer” lwalushiywe ngaphandle.
  • I-File System Access API isebenzisa ikhono lokushintsha indawo yamanje efayelini lidlule ekugcineni kwayo, igcwalise igebe eliwumphumela ngoziro ngesikhathi sokubhala okulandelayo ngocingo lwe-FileSystemWritableFileStream.write(). Lesi sici sikuvumela ukuthi udale amafayela agqagqene anezikhala ezingenalutho futhi senza kube lula ukuhleleka kokubhala ekusakazweni kwefayela ngokufika okungahleliwe kwamabhulokhi wedatha (ngokwesibonelo, lokhu kwenziwa ku-BitTorrent).
  • Kwengezwe umakhi we-StaticRange esebenzisa izinhlobo ze-lightweight Range ezingadingi ukubuyekeza zonke izinto ezihlotshaniswayo njalo uma isihlahla se-DOM sishintsha.
  • Kusetshenziswe ikhono lokucacisa ububanzi nobude bemingcele yezakhi kucaciswe ngaphakathi kwe-elementi . Lesi sici sikuvumela ukuthi ubale i-aspect ratio yama-elementi , ngokufanisa nendlela okwenziwa ngayo , Futhi .
  • Ukusekelwa okungajwayelekile kweziteshi zedatha ye-RTP kususiwe ku-WebRTC, futhi kuyatuswa ukusebenzisa amashaneli edatha asekelwe ku-SCTP.
  • Izakhiwo ze-navigator.plugins kanye ne-navigator.mimeTypes manje zihlala zibuyisela inani elingenalutho (ngemuva kokuphela kosekelo lwe-Flash, lezi zici zazingasadingeki).
  • Ingxenye enkulu yentuthuko encane yenziwe kumathuluzi abathuthukisi bewebhu futhi ithuluzi elisha lokususa iphutha le-CSS, i-flexbox, yengeziwe.
    Ukukhishwa kwe-Chrome 90

Ngokungeziwe ezenzweni ezintsha nokulungiswa kweziphazamisi, inguqulo entsha isusa ubungozi obungu-37. Ubungozi obuningi buhlonzwe njengomphumela wokuhlolwa okuzenzakalelayo kusetshenziswa i-AddressSanitizer, MemorySanitizer, Control Flow Integrity, LibFuzzer kanye namathuluzi e-AFL. Azikho izinkinga ezibucayi ezitholiwe ezingavumela umuntu ukuthi adlule wonke amazinga okuvikela isiphequluli futhi akhiphe ikhodi kusistimu engaphandle kwendawo ye-sandbox. Njengengxenye yohlelo lomklomelo wemali lokuthola ubungozi ekukhishweni kwamanje, i-Google ikhokhele imiklomelo engu-19 ebiza u-$54000 (umklomelo owodwa ongu-$20000, umklomelo owodwa ongu-$10000, imiklomelo emibili ka-$5000, imiklomelo emithathu engu-$3000, umklomelo owodwa ongu-$2000, umklomelo owodwa ongu-$1000, nomklomelo ongu-$500 owodwa )). Usayizi wemiklomelo engu-6 awukakanqunywa.

Ngokwehlukana, kungaphawulwa ukuthi izolo, ngemva kokwakhiwa kokukhululwa kokulungisa 89.0.4389.128, kodwa ngaphambi kokukhululwa kwe-Chrome 90, okunye ukuxhashazwa kwanyatheliswa, okwasebenzisa ubungozi obusha be-0-day obungalungiswanga ku-Chrome 89.0.4389.128 . Okwamanje akukacaci ukuthi le nkinga isilungisiwe yini ku-Chrome 90. Njengakwisimo sokuqala, ukuxhaphaza kuhlanganisa kuphela ubungozi obubodwa futhi akuqukethe ikhodi yokudlula ukuhlukaniswa kwe-sandbox (uma usebenzisa i-Chrome nefulegi elithi “--no-sandbox” , ukuxhaphaza kwenzeka lapho uvula ikhasi lewebhu ku-Windows platform ikuvumela ukuthi usebenzise i-Notepad). Ukuba sengozini okuhlobene nokuxhashazwa okusha kuthinta ubuchwepheshe be-WebAssembly.

Source: opennet.ru

Engeza amazwana