ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Hauv-kernel kev siv ntawm WireGuard rau OpenBSD tshaj tawm

Hauv-kernel kev siv ntawm WireGuard rau OpenBSD tshaj tawm

Ntawm lub tuam txhab Twitter EdgeSecurity, nrhiav tau los ntawm tus sau ntawm WireGuard, qhia hais txog kev tsim ib haiv neeg thiab txhawb nqa kev siv VPN WireGuard nyob rau hauv OpenBSD. Txhawm rau kom paub meej cov lus, ib qho screenshot qhia txog kev ua haujlwm tau luam tawm. Qhov muaj thaj ua rau thaj rau OpenBSD kernel kuj tau lees paub los ntawm Jason A. Donenfeld, tus sau ntawm WireGuard, hauv tshaj tawm wireguard-cov cuab yeej siv hloov tshiab.

Hauv-kernel kev siv ntawm WireGuard rau OpenBSD tshaj tawm

Tam sim no tsuas muaj nyob lwm thaj ua rau thajTxawm li cas los xij, cov kws sau ntawv cog lus tias yuav xa lawv cov ntawv kawg mus rau OpenBSD tus neeg tsim khoom xa tuaj rau yav tom ntej. Lub WireGuard code rau OpenBSD kernel muaj 3322 kab, uas yog tsawg dua li Linux kernel siv. Yog tias txoj cai siv WireGuard thaum kawg tau txais rau hauv OpenBSD qhov chaw ntoo, nws yuav dhau los ua OS thib ob (tom qab Linux) nrog kev txhawb nqa tag nrho thiab kev koom ua ke rau WireGuard tawm ntawm lub thawv. Kev txhawb nqa dav dav rau WireGuard xav tau hauv OpenBSD 6.8 tso tawm (hauv OpenBSD 6.7 tso tawm, uas yog tsiv txij lub Tsib Hlis 1 txog Lub Tsib Hlis 19, thaj ua rau thaj tsis muaj). Lub sijhawm no, cov uas xav siv WireGuard ntawm OpenBSD yuav tsum siv qhov chaw nres nkoj net/wireguard-mus los yog manually nruab qhov muab thaj ua rau thaj.

Tsis tas li ntawd, koj tuaj yeem nco ntsoov qhov kev tshaj tawm ntawm kev kho pob hloov tshiab wireguard-cov cuab yeej v1.0.20200510 ΠΈ wireguard-linux-compat v1.0.20200506, suav nrog cov neeg siv qhov chaw siv xws li wg thiab wg-ceev, thiab ib txheej los muab kev sib raug zoo nrog cov laus Linux kernels (3.10 txog thiab suav nrog 5.5) uas tsis muaj kev txhawb nqa rau WireGuard. Qhov kev tso tawm tshiab ntawm wg thiab wg-kev siv ceev ceev ntxiv kev txhawb nqa rau kev sib cuam tshuam nrog OpenBSD kernel siv WireGuard. Nws tau tshaj tawm tias thaj ua rau thaj rau OpenBSD kernel tau npaj yuav muab faib rau lub lim tiam tom ntej. Txhawm rau teeb tsa lub qhov hauv OpenBSD, tus paub wg interface thiab "ifconfig wg0 tsim" yuav raug siv.

Ntawm cov kev hloov pauv tsis cuam tshuam txog kev txhawb nqa OpenBSD, qhov tseem ceeb tshaj plaws yog qhov ntxiv rau wg-kev siv hluav taws xob nrawm ntawm cov npe uas poob rau hauv "dns nrhiav" daim npog qhov ncauj hauv resolv.conf. Rau Android, ntxiv kev txhawb nqa rau daim ntawv thov whitelisting ntxiv rau blacklisting. Ntxiv wg-quick.target kev pabcuam rau systemd rov pib dua thiab tswj wg-ceev. Qhov kev hloov pauv tseem ceeb tshaj plaws hauv pob wireguard-linux-compat yog txhawm rau ua kom muaj kev sib raug zoo nrog cov kev hloov tshiab yav tom ntej rau cov pob ntsiav rau Ubuntu 19.10 thiab 18.04-hwe, uas tam sim no nyob rau hauv seem "them" thiab tsis tau nqa mus rau qhov hloov tshiab.

Tau qhov twg los: opennet.ru

Ntxiv ib saib