Aikin Fedora ya bayyana shirin don kashe tallafi don sa hannu na dijital bisa ga SHA-1 algorithm a Fedora Linux 39. Kashewa ya haɗa da kawo karshen amincewa ga sa hannun da ke amfani da SHA-1 hashes (SHA-224 za a bayyana a matsayin mafi ƙarancin tallafi a cikin dijital. sa hannu), amma kiyaye goyon baya ga HMAC tare da SHA-1 da kuma ba da damar ba da damar bayanin martabar LEGACY tare da SHA-1. Bayan amfani da canje-canje, ɗakin karatu na OpenSSL ta tsohuwa zai fara toshe tsarawa da tabbatar da sa hannu tare da SHA-1.
Ana shirin aiwatar da nakasa a matakai da yawa: A cikin Fedora Linux 36, za a cire sa hannu na tushen SHA-1 daga manufofin “FUTURE”, an ba da tsarin gwajin TEST-FEDORA39 don kashe SHA-1 bisa buƙatar mai amfani (sabuntawa-crypto-manufofin -saitin TEST-FEDORA39), lokacin ƙirƙirar da tabbatar da sa hannu dangane da SHA-1, za a nuna gargaɗin a cikin log ɗin. Yayin fitowar pre-beta na Fedora Linux 38, ma'ajiyar rawhide za ta sami manufar hana amfani da sa hannun tushen SHA-1, amma ba za a yi amfani da wannan canjin a cikin beta da sakin Fedora Linux 38 ba. Tare da fitowar Fedora Linux 39, za a yi amfani da manufar ragewa don sa hannun tushen SHA-1 ta tsohuwa.
Har yanzu ba a sake nazarin shirin da aka tsara ba ta hanyar FEsco (Kwamitin Gudanar da Injiniya na Fedora), wanda ke da alhakin sashin fasaha na haɓaka rarraba Fedora. Ƙarshen goyan bayan sa hannu na tushen SHA-1 shine saboda haɓakar haɓakar hare-hare tare da prefix ɗin da aka bayar (ana kiyasta farashin zaɓen karo akan dubun dubatar daloli). Masu bincike sun sanya alamar takaddun shaida ta amfani da SHA-1 algorithm a matsayin marasa tsaro tun tsakiyar 2016.
source: budenet.ru