ProHoster > Блог > rongo ipurangi > Kua whakatakotohia he whakatinanatanga o /dev/tupurangi mo te pata Linux, kua wetekina mai i te here ki SHA-1

Kua whakatakotohia he whakatinanatanga o /dev/tupurangi mo te pata Linux, kua wetekina mai i te here ki SHA-1

Ko Jason A. Donenfeld, te kaituhi o VPN WireGuard, kua whakatakotohia he whakatinanatanga hou o te RDRAND pseudo-tupurangi tau kaihanga te kawenga mo te mahi o nga taputapu / dev / tupurangi me / dev / urandom i roto i te kernel Linux. I te mutunga o Whiringa-a-rangi, i whakauruhia a Jason ki te maha o nga kaitiaki o te taraiwa matapōkere, a, kua whakaputahia e ia nga hua tuatahi o ana mahi mo tana tukatuka.

Ko te whakatinanatanga hou he mea rongonui mo tana huri ki te whakamahi i te mahi hash BLAKE2s hei utu mo SHA1 mo nga mahi whakaranu entropy. Na te huringa i pai ake te haumarutanga o te kaihanga tau pseudo-tupurangi ma te whakakore i te raru SHA1 algorithm me te whakakore i te tuhirua o te vector arawhiti RNG. I te mea ko te BLAKE2s algorithm he pai ake i te SHA1 i roto i te mahi, i whai hua ano tana whakamahinga ki te mahi a te kaihanga tau pseudo-tupurangi (whakamatautau i runga i te punaha me te Intel i7-11850H i whakaatu he 131% te piki o te tere). Ko tetahi atu painga o te whakawhiti i te ranu entropy ki BLAKE2 ko te whakakotahitanga o nga algorithms i whakamahia - ka whakamahia te BLAKE2 ki te ChaCha cipher, kua whakamahia ki te tango i nga raupapa matapōkere.

I tua atu, kua pai ake te whakapai ake ki te crypto-secure pseudo-random number generator CRNG i whakamahia i roto i te waea getrandom. Ko nga whakapainga ka pupuhi ki raro ki te whakaiti i te piiraa ki te kaiwhakaputa RDRAND puhoi i te wa e tango ana i te entropy, ka pai ake te mahi ma te 3.7 wa. I whakaatu a Jason ko te karanga RDRAND he mea tika anake i roto i tetahi ahuatanga kaore ano kia tino tiimata te CRNG, engari mena ka oti te whakaurunga o te CRNG, kaore e pa ana tona uara ki te kounga o te raupapa i hangaia, a, i tenei keehi ka karanga ki a RDRAND ka taea te tuku.

Ko nga huringa kua whakaritea mo te whakauru ki roto i te kernel 5.17, kua arotakehia e nga kaiwhakawhanake a Ted Ts'o (kaiwhakahaere tuarua o te taraiwa matapōkere), Greg Kroah-Hartman (he kawenga mo te pupuri i te peka pumau o te kernel Linux) me Jean-Philippe. Aumasson (kaituhi o te BLAKE2/3 algorithms).

Source: opennet.ru

Tāpiri i te kōrero