Ukukhishwa kwe-OpenBSD 7.3

Ukukhishwa kwesistimu yokusebenza yamahhala efana ne-UNIX i-OpenBSD 7.3 kwethulwa. Iphrojekthi ye-OpenBSD yasungulwa ngu-Theo de Raadt ngo-1995 ngemva kokungqubuzana nabathuthukisi be-NetBSD, okubangele ukuthi u-Theo anqatshelwe ukufinyelela endaweni yokugcina ye-NetBSD CVS. Ngemuva kwalokhu, u-Theo de Raadt kanye neqembu labantu abanomqondo ofanayo bakha uhlelo olusha lokusebenza oluvulekile olusekelwe esihlahleni somthombo we-NetBSD, izinhloso eziyinhloko zokuthuthuka okwakuwukuphatheka (izingxenyekazi ze-hardware eziyi-13 zisekelwa), ukumisa, ukusebenza okulungile, ukuphepha okuqinile. kanye namathuluzi ahlanganisiwe we-cryptographic. Isithombe esigcwele sokufakwa kwe-ISO sesistimu eyisisekelo ye-OpenBSD 7.3 ngu-620 MB.

Ngaphandle kohlelo lokusebenza ngokwalo, iphrojekthi ye-OpenBSD yaziwa ngezingxenye zayo, eziye zamukelwa ezinye izinhlelo futhi sezizimise njengezinye zezixazululo eziphephile kakhulu nezisezingeni eliphezulu. Lezi zifaka: i-LibreSSL (ifoloko le-OpenSSL), i-OpenSSH, isihlungi sephakethe le-PF, ama-daemons okuqondisa i-OpenBGPD kanye ne-OpenOSPFD, iseva ye-OpenNTPD NTP, kanye neseva yeposi. isifiso I-OpenSMTPD, i-multiplexer yesiphelo sombhalo (efana nesikrini se-GNU), i-tmux, i-daemon eqondile enokusetshenziswa kwephrothokholi ye-IDENT, enye indlela ye-BSDL esikhundleni sephakheji ye-GNU groff — i-mandoc, iphrothokholi yokuhlela izinhlelo ezibekezelela amaphutha i-CARP (i-Common Address Redundancy Protocol), iseva ye-HTTP elula, kanye nosizo lokuvumelanisa amafayela lwe-OpenRSYNC.

Ukuthuthukiswa okuyinhloko:

• Isistimu ibiza i-waitid (linda ukuguqulwa kwesimo senqubo), i-pinsyscall (ukudlulisa ulwazi mayelana nendawo yokungena ukuze uvikeleke ezenzweni ze-ROP), i-getthrname ne-setthrname (thola futhi usethe igama lochungechunge) ziyasetshenziswa.
• Zonke izakhiwo zisebenzisa i-clockintr, isihleli sesikhathi esizimele sezingxenyekazi zekhompyutha.
• Kwengezwe i-sysctl kern.autoconf_serial, engasetshenziswa ukuqapha izinguquko zesimo sesihlahla sedivayisi ku-kernel ukusuka esikhaleni somsebenzisi.
• Ukusekelwa kwezinhlelo ze-multiprocessor (SMP) kuthuthukisiwe. Izihlungi zomcimbi ze-tun kanye namadivayisi we-tap zithuthukiselwe ku-mp-safe. Imisebenzi ekhethiwe, i-pselect, i-poll, i-ppoll, i-getsockopt, i-setsockopt, mmap, munmap, mprotect, sched_yield, minherit, kanye ne-utrace, kanye ne-SIOCGIFCONF, SIOCGIFGMEMB, SIOCGIFGATTR, ne-SIOCGIFGLIST ioctls, kususwe ukuvinjelwa. Ukuphathwa kokuvinjwa kwesihlungi sephakethe le-pf kuthuthukisiwe. Ukusebenza kwesitaki sesistimu nenethiwekhi kumasistimu abalulekile kakhulu kuthuthukisiwe.
• Ukusetshenziswa kohlaka lwe-drm (Direct Rendering Manager) kuvumelaniswa ne-kernel Linux 6.1.15 (ukukhishwa kwangaphambilini: 5.15.69). Umshayeli we-amdgpu manje usekela ama-GPU alandelayo: i-Ryzen 7000 "Raphael", i-Ryzen 7020 "Mendocino", i-Ryzen 7045 "Dragon Range", i-Radeon RX 7900 XT/XTX "Navi 31", kanye ne-Radeon RX 7600M (XT), 7700S, kanye ne-7600S "Navi 33". Umshayeli we-amdgpu manje usekela ukulawula ukukhanya kwangemuva futhi uqinisekisa ukusebenza kwe-xbacklight uma usebenzisa imodi yokusetha umshayeli we-X.Org. I-Shader caching manje inikwe amandla ngokuzenzakalelayo ku-Mesa.
• Ukuthuthukiswa kwenziwe ku-VMM hypervisor.
• Izici ezengeziwe zokuvikela inkumbulo zezinqubo zesikhala somsebenzisi sezisetshenzisiwe: ucingo lwesistimu olushintshekayo nomsebenzi welabhulali ohlotshaniswayo wegama elifanayo kuvumela amalungelo okufinyelela ukuthi akhiyelwe ngesikhathi sokuhlelwa kwememori. Uma sezikhiyiwe, izimvume ezisethelwe indawo yenkumbulo, njengokubhala nokwenza imikhawulo, azikwazi ukushintshwa izingcingo ezilandelayo ziye ku-mmap(), mprotect(), kanye ne-munmap(), njengoba imizamo yokukushintsha lokhu izobuyisela iphutha le-EPERM.
• Esakhiweni se-AMD64, indlela yokuvikela i-RETGUARD inikwe amandla izingcingo zesistimu, okuhloswe ngayo ukufaka inkimbinkimbi ukwenziwa kwemisebenzi eyakhiwe kusetshenziswa izingcezu zekhodi ebolekiwe kanye namasu okuhlela agxile ekubuyiseleni.
• Ukuvikela ubungozi kunikwe amandla, ngokusekelwe ekuxhumeni kabusha okungahleliwe kwe-sshd esebenzisekayo ekuqaliseni kwesistimu ngayinye. Lokhu kuxhumanisa kabusha kwenza ama-funset offsets ku-sshd abikezeleke kancane, okwenza kube nzima kakhulu ukudala ukuxhashazwa usebenzisa amasu okuhlela agxile ekubuyiseleni.
• I-randomization yesakhiwo sesitaki esinamandla isetshenziswe kumasistimu we-64-bit.
• Ukuvikelwa okungeziwe ngokumelene nokuba sengozini kwe-Specter-BHB ku-processor microarchitectural structures.
• Kumaphrosesa e-ARM64, ifulegi le-DIT (Isikhathi Esizimele Sedatha) linikwe amandla kukho kokubili isikhala somsebenzisi nesikhala se-kernel ukuvimba ukuhlasela kwesiteshi esiseceleni okushintsha ukuncika kwesikhathi sokwenza imiyalelo kudatha ecutshungulwe kuleyo miyalelo.
• Ivumela i-lladdr ukuthi isetshenziswe uma kuchazwa izilungiselelo zenethiwekhi. Isibonelo, ngaphezu kokubophezela egameni lesixhumi esibonakalayo (igama lomethuleli.fxp0), ungaphinda ubophe ekhelini le-MAC (igama lomethuleli.00:00:6e:00:34:8f).
• Usekelo oluthuthukisiwe lokushintshela kumodi yokulala yamasistimu asuselwe ekwakhiweni kwe-ARM64.
• Ukusekelwa kwama-chips we-Apple ARM kunwetshwe kakhulu.
• Kwengezwe usekelo lwezingxenyekazi zekhompuyutha ezintsha futhi kwafaka namashayeli amasha.
• Umshayeli we-bwfm wamakhadi angenantambo asekelwe ku-Broadcom kanye ne-Cypress chips usebenzisa ukusekelwa kokubethela kwe-WEP.
• Isifaki sithuthukise ukwesekwa kwe-RAID yesofthiwe futhi sasebenzisa ukusekelwa kokuqala kokubethelwa kwediski (Ukubethelwa Kwediski Eqondisiwe).
• Imiyalo emisha yokuskrola phezulu naphansi kwe-scroll yengezwe ku-tmux ("i-terminal multiplexer") yokuskrola ikhesa phezulu naphansi. Amaphakheji we-LibreSSL kanye ne-OpenSSH abuyekeziwe. Ukubuka konke okunemininingwane yokuthuthukiswa kungatholakala kuzibuyekezo ze-LibreSSL 3.7.0, OpenSSH 9.2, kanye ne-OpenSSH 9.3.
• Inani lamachweba okwakhiwa kwe-AMD64 manje seliyi-11764 (lisuka ku-11451), le-aarch64—11561 (lisuka ku-11261), kanye ne-i386—10572 (lisuka ku-10225). Izinguqulo zohlelo lokusebenza ezimbobeni zifaka:
  • Inkanyezi 16.30.0, 18.17.0 kanye no-20.2.0
  • I-Audacity 3.2.5
  • I-CMake 3.25.2
  • I-Chromium 111.0.5563.110
  • I-Emacs 28.2
  • FFmpeg 4.4.3
  • I-GCC 8.4.0 kanye ne-11.2.0
  • I-GHC 9.2.7
  • I-GNOME 43.3
  • Iya ku-1.20.1
  • I-JDK 8u362, 11.0.18 kanye ne-17.0.6
  • Amagiya e-KDE 22.12.3
  • I-KDE Frameworks 5.103.0
  • I-Krita 5.1.5
  • I-LLVM/Clang 13.0.0
  • LibreOffice 7.5.1.2
  • I-Lua 5.1.5, 5.2.4, 5.3.6 kanye no-5.4.4
  • UMariaDB 10.9.4
  • IMono 6.12.0.182
  • I-Mozilla Firefox 111.0 kanye ne-ESR 102.9.0
  • IMozilla Thunderbird 102.9.0
  • I-Mutt 2.2.9 kanye ne-NeoMutt 20220429
  • I-Node.js 18.15.0
  • I-OCaml 4.12.1
  • I-OpenLDAP 2.6.4
  • PHP 7.4.33, 8.0.28, 8.1.16 kanye 8.2.3
  • I-Postfix 3.5.17 kanye ne-3.7.3
  • I-PostgreSQL 15.2
  • I-Python 2.7.18, 3.9.16, 3.10.10, kanye no-3.11.2
  • Qt 5.15.8 kanye 6.4.2
  • R 4.2.1
  • I-Ruby 3.0.5, 3.1.3 kanye no-3.2.1
  • Ukugqwala 1.68.0
  • I-SQLite 2.8.17 kanye ne-3.41.0
  • I-Shotcut 22.12.21
  • I-Sudo 1.9.13.3
  • I-Meerkat 6.0.10
  • Tcl/Tk 8.5.19 kanye 8.6.13
  • I-TeX Live 2022
  • I-Vim 9.0.1388 kanye ne-Neovim 0.8.3
  • I-Xfce 4.18
• Izingxenye ezibuyekeziwe zezinkampani zangaphandle ezifakwe ne-OpenBSD 7.3:
  • Isitaki sezithombe ze-Xenocara esisekelwe ku-X.Org 7.7 ene-xserver 1.21.6 + amapeshi, i-freetype 2.12.1, fontconfig 2.14, Mesa 22.3.4, xterm 378, xkeyboard-config 2.20, fonttosfnt 1.2.2.
  • I-LLVM/Clang 13.0.0 (+ iziqephu)
  • I-GCC 4.2.1 (+ iziqephu) kanye no-3.3.6 (+ iziqephu)
  • I-Perl 5.36.1 (+ iziqephu)
  • I-NSD 4.6.1
  • Ukukhulula 1.17
  • Abahlengikazi 5.7
  • I-Binutils 2.17 (+ iziqephu)
  • I-Gdb 6.3 (+ ipheshana)
  • Awk 12.9.2022/XNUMX/XNUMX
  • Expat 2.5.0.

  Source: opennet.ru