Kua tukuna e Jason A. Donenfeld, te kaituhi o WireGuard VPN, te tukunga nui tuatahi o te pūmanawa kiritaki WireGuard mō Windows 1.0, me ngā taraiwa WireGuardNT 1.0 me te tauranga VPN Ko WireGuard mō te kernel Windows 10 me te 11, e tautoko ana i ngā hoahoanga AMD64, x86, me ARM64. Kei raro i te raihana GPLv2 te waehere wāhanga kernel Windows, ā, kei raro i te raihana MIT te raihana pūmanawa kiritaki.
Ko te tauranga e hangai ana ki te pūtake waehere o te whakatinanatanga matua o WireGuard mō te kernel Linux, kua hurihia hei whakamahi i ngā hinonga kernel Windows me te puranga whatunga NDIS. Ki te whakataurite ki te whakatinanatanga wireguard-go, e rere ana i roto i te wāhi kaiwhakamahi me te whakamahi i te atanga whatunga Wintun, ka tukuna e WireGuardNT he whakapainga mahi nui mā te whakakore i ngā pana horopaki me te tārua i ngā ihirangi mōkihi mai i te kernel ki te wāhi kaiwhakamahi. He rite ki ngā whakatinanatanga mō Linux, OpenBSD, me FreeBSD, ko ngā arorau tukatuka kawa katoa i roto i te WireGuardNT ka rere tika i te taumata puranga whatunga.
I tohua te Putanga 1.0 hei tohu nui, e tohu ana i te whakataunga o ētahi take me te whakatutukitanga o ngā mahi i whakaritea, pēnei i: te whakamahinga o te mahi NdisWdfGetAdapterContextFromAdapterHandle() hei utu mō te rokiroki iti ake te haumaru o te āhua taraiwa i roto i te āpure Rāhui me te whakamahinga o ngā taupatupatu kāore i tuhia; te aroturuki tika me te tere o te rahi MTU (Maximum Transmission Unit) mā te hopu i ngā waeatanga pūnaha; te whakamahinga o te paerewa C23 i roto i te waehere.
Hei whakamaumahara, ko te WireGuard VPN e hangai ana ki ngā tikanga whakamunatanga hou, e tuku ana i te mahi tino pai, he ngāwari ki te whakamahi, kāore he raruraru, ā, kua whakamātauhia tōna kaha i roto i te maha o ngā whakatinanatanga nui e whakahaere ana i ngā rahinga nui o te waka. Kei te whanakehia te kaupapa mai i te tau 2015, ā, kua arotakehia, kua whakamanahia hoki ōna tikanga whakamunatanga. Ka whakamahia e WireGuard tētahi ariā ara whakamunatanga e hangai ana ki te kī, e uru ana ki te here i tētahi kī tūmataiti ki ia atanga whatunga me te whakamahi i ngā kī tūmatanui mō te here kī.
He rite te whakawhitiwhiti kī tūmatanui hei whakatū hononga ki te SSH. Hei whiriwhiri i ngā kī me te hono atu me te kore e whakahaere i tētahi daemon motuhake i roto i te wāhi kaiwhakamahi, ka whakamahia te tikanga Noise_IK mai i te Noise Protocol Framework, he rite ki te tiaki i ngā authorized_key i roto i te SSH. Ka mahia te whakawhiti raraunga mā te whakakī i roto i ngā mōkihi UDP. Ka tautokona te whakarerekētanga. Wāhitau IP Ngā tūmau VPN (haereere) me te kore e motu te hononga me te whirihoranga aunoa o te kiritaki.
Ko te whakamunatanga rerenga ChaCha20 me te raupapatanga whakamotuhēhē karere Poly1305 (MAC), i whakawhanakehia e Daniel J. Bernstein, Tanja Lange, me Peter Schwabe, e whakamahia ana mō te whakamunatanga. E hokohokohia ana a ChaCha20 me Poly1305 hei huarahi tere ake, haumaru ake hoki hei whakakapi i te AES-256-CTR me te HMAC, ā, mā te whakatinanatanga pūmanawa ka taea te whakahaere i te wā-pūmau me te kore e hiahiatia he tautoko taputapu motuhake. Ka hangaia te kī ngaro tiritahi mā te whakamahi i te kawa Diffie-Hellman, he pihi porowhita, i roto i te whakatinanatanga Curve25519, i whakaarohia anō hoki e Daniel Bernstein. Ka whakamahia te raupapatanga BLAKE2s (RFC7693) mō te hashing.
Source: opennet.ru
