Inguqulo entsha ye-DBMS Redis 7.0 isikhishiwe, I-Redis inikeza izici zokugcina idatha ngefomethi yokhiye/inani, enwetshwe ngokusekelwa kwamafomethi edatha ahlelekile njengohlu, ama-hashi, namasethi, kanye nekhono lokuqhuba izishayeli zeskripthi ze-Lua eziseceleni kweseva.
Ngokungafani nezinhlelo ze-in-memory storage ezifana ne-Memcached, i-Redis inikeza ukugcinwa okuqhubekayo kwedatha kudiski futhi iqinisekisa ukuvikeleka kwesizindalwazi uma kwenzeka kuvaleka ngokungavamile. Imibhalo yomthombo yephrojekthi isatshalaliswa ngaphansi kwelayisensi ye-BSD.
Imitapo yolwazi yamaklayenti iyatholakala ngezilimi ezidume kakhulu, okuhlanganisa i-Perl, i-Python, i-PHP, i-Java, i-Ruby, ne-Tcl. I-Redis isekela ukuthengiselana okukuvumela ukuthi wenze iqembu lemiyalo ngesinyathelo esisodwa, uqinisekise ukuvumelana nokuvumelana (imiyalo evela kwezinye izicelo ayikwazi ukuvimba) ukwenziwa kwesethi yemiyalo enikeziwe, futhi uma kunezinkinga, ikuvumela ukuthi ubuyele emuva. izinguquko. Yonke idatha ifakwe kunqolobane ngokugcwele ku-RAM.
Izici ezintsha ezintsha ze-Redis 7.0
Kule nguqulo entsha ye-DBMS eyethulwa ungeze ukwesekwa kwemisebenzi eseceleni kweseva, ngokungafani nemibhalo yesiLua esekelwe ngaphambilini, imisebenzi ayiqondile ngohlelo lokusebenza futhi ihloselwe ukusebenzisa ingqondo eyengeziwe lokho kwandisa amandla eseva.
Imisebenzi icutshungulwa ngokungenakuhlukaniswa ngedatha futhi ngokuhlobene nesizindalwazi, hhayi uhlelo lokusebenza, okuhlanganisa ukuphindaphinda nokugcinwa okuqhubekayo.
Enye into entsha egqamayo kuRedis 7.0 yile Uhlelo lwesibili lwe-ACL, okukuvumela ukuthi ulawule ukufinyelela kudatha ngokusekelwe kokhiye futhi ikuvumela ukuthi uchaze amasethi ahlukene emithetho yokufinyelela yemiyalo enekhono lokubopha izikhethi eziningi (amasethi wemvume) kumsebenzisi ngamunye. Ukhiye ngamunye ungakhonjwa ngezimvume ezithile, isibonelo, ungakhawulela ukufinyelela ekufundeni noma ekubhaleni kuphela isethi yokhiye abathile.
Ngaphezu kwalokhu, kuyaphawulwa ukuthi I-Redis 7.0 ihlinzeka una ukuqaliswa okuhlukene yepharadigm yokusabalalisa umlayezo Shicilela-Bhalisa, esebenza kuqoqo, lapho umlayezo uthunyelwa endaweni ethile lapho isiteshi somlayezo sinamathiselwe khona, ngemva kwalokho lo mlayezo uqondiswa kabusha kumanodi asele afakwe ku-hull. Amaklayenti angathola imilayezo ngokubhalisela isiteshi, kokubili ngokuxhuma endaweni eyinhloko kanye namanodi esibili esigaba.
Kubuye kuqhakanjiswe lokho inikeze ikhono lokusingatha ukucupha okuningi ngesikhathi esisodwa ocingweni olulodwa lwe-CONFIG SET/GET nokuthi izinketho “–json”, “-2”, “–scan”, “-functions-rdb” zengezwe kunsiza ye-redis-cli.
Ngephutha, ukufinyelela kuzilungiselelo nemiyalo ethinta ukuphepha kuvaliwe kumakhasimende (ngokwesibonelo, imiyalo ye-DEBUG ne-MODULE ikhutshaziwe, ukushintsha ukulungiselelwa ngefulegi le-PROTECTED_CONFIG akuvunyelwe). I-Redis-cli iyeke ukuthumela imiyalo equkethe idatha ebucayi kufayela lomlando.
Ngakolunye uhlangothi, kuyagqama lokhoe wenze ingxenye enkulu yokulungiselelwa okuhloswe ngayo ukuthuthukisa ukusebenza futhi unciphise ukusetshenziswa kwenkumbulo. Ngokwesibonelo, ukusetshenziswa kwenkumbulo kwehliswe kakhulu lapho imodi yeqoqo inikwe amandla, lapho kwenziwa imisebenzi yokukopisha-on-write, futhi lapho usebenza ngokhiye be-hashi no-zset, kanye nendlela yokucabanga iye yathuthukiswa ukuze kuhanjiswe idatha kudiski (ebizwa ngokuthi i-fsync).
Ukuba sengozini okugxilile CVE-2022-24735 endaweni yokukhishwa kweskripthi se-Lua, ekuvumela ukuthi ubhale ngaphezulu ikhodi yakho ye-Lua futhi ubangele ukuthi isebenze kumongo womunye umsebenzisi, okuhlanganisa nalabo abanamalungelo aphezulu.
Ngaphezu kwalokho, singakhomba ubungozi (CVE-2022-0543) kumaphakheji ane-Redis ye-Ubuntu ne-Debian (udaba luqondene nemihlangano ngayinye futhi aluhlobene ne-Redis ngokwayo), okuvumela ikhodi ye-Lua engafanele ukuthi ifakwe kuseva ekude futhi yeqe indlela yokuhlukanisa i-sandbox yemvelo ukuze kusetshenziswe imibhalo ku-Redis.
Kubhekwane nokuba sengozini kwe-CVE-2022-24736 okungase kuvumele inqubo yeseva ye-redis ukuthi iphahlazeke ngenxa yokungaqondi lutho kwesikhombi. Ukuhlasela kwenziwa ngokulayisha imibhalo ye-Lua eklanywe ngokukhethekile.
ekugcineni uma ukhona unentshisekelo yokwazi okwengeziwe ngayo, Ungahlola imininingwane kokulandelayo isixhumanisi