ProHoster > Блог > rongo ipurangi > Te tukunga o LibreSSL 3.1.0 me Botan 2.14.0 whare pukapuka cryptographic

Te tukunga o LibreSSL 3.1.0 me Botan 2.14.0 whare pukapuka cryptographic

Nga Kaihanga Kaupapa OpenBSD i tukuna te tukunga o te putanga kawe o te kete LibreSSL 3.1.0, kei roto nei e whakawhanakehia ana he marau o OpenSSL, e whai ana ki te whakarato i te taumata haumarutanga teitei ake. Ko te kaupapa LibreSSL e arotahi ana ki te tautoko kounga teitei mo nga tikanga SSL/TLS ma te tango i nga mahi kore, te taapiri i etahi atu waahanga haumarutanga, me te tino horoi me te mahi ano i te turanga waehere. Ko te tukunga LibreSSL 3.1.0 ka whakaarohia he tukunga whakamatautau e whakawhanake ana i nga ahuatanga ka whakauruhia ki OpenBSD 6.7.

Nga waahanga o LibreSSL 3.1.0:

  • Kua whakaarohia he whakatinanatanga tuatahi o te TLS 1.3, i runga i tētahi pūnaha tukatuka tuhinga hou me te mīhini āhua. Ko te wāhanga taha-kiritaki anake o te TLS 1.3 e whakahohea ana i tēnei wā mā te taunoa; kua whakamaheretia kia whakahohea te wāhanga taha-tūmau mā te taunoa i roto i tētahi putanga ā muri ake nei.
  • Kua horoia te waehere, kua whakapaitia te wetewete kawa me te whakahaere mahara.
  • Kua whakawhitihia ngā tikanga RSA-PSS me RSA-OAEP mai i OpenSSL 1.1.1.
  • Kua whakawhitihia te whakatinanatanga mai i OpenSSL 1.1.1, ā, kua whakahohea inaianei mā te taunoa. CMS (Te Whakatakotoranga Karere Tuhituhi). Kua tāpirihia te whakahau "cms" ki te whaipainga openssl.
  • Kua whakapaitia te hototahitanga ki OpenSSL 1.1.1 mā te tautoko i ētahi huringa.
  • Kua tāpirihia he huinga nui o ngā whakamātautau mahi whakamunatanga hou.
  • Kua tata ake te whanonga o EVP_chacha20() ki te tikanga o OpenSSL.
  • Kua tāpirihia te kaha ki te whirihora i te tauwāhi o te huinga me ngā tiwhikete a ngā mana whakamana.
  • Ka whakatinanahia e te taputapu openssl te kōwhiringa "-addext" i roto i te whakahau "req".

I tua atu, ka taea te tuhi tuku whare pukapuka whakamunatanga Whakaara 2.14.0, whakamahia i roto i te kaupapa NeoPG, he marau o GnuPG 2. He kohinga nui te whare pukapuka mua kua rite, e whakamahia ana i roto i te kawa TLS, ngā tiwhikete X.509, ngā tohu AEAD, ngā kōwae TPM, te PKCS#11, te tātaritanga kupuhipa, me te whakamunatanga muri-inti (ngā waitohu e hangai ana ki te tātaritanga me te whakaaetanga kī e hangai ana ki a McEliece me NewHope). Kua tuhia te whare pukapuka ki te C++11 me tukua i raro i te raihana BSD.

I roto i te huringa I roto i te putanga hou o Botan:

  • Kua tāpirihia te whakatinanatanga o te aratau GCM (Aratau Galois/Kaitatau), i whakaterea ake mō ngā tukatuka POWER8 mā te whakamahi i te tohutohu whārite VPSUMD.
  • Mō ngā pūnaha ARM me POWER, kua tino tere ake te whakatinanatanga o te mahi whakarerekētanga whārite mō te AES me te wā whakatinanatanga pumau.
  • Kua whakaarohia tētahi pūnaha hurihanga modulo hou he tere ake, he pai ake hoki te tiaki i ngā whakaeke taha-hongere.
  • Kua mahia ngā whakapainga hei tere ake i te ECDSA/ECDH mā te whakaiti i te mara NIST.

Source: opennet.ru

Hokona te manaaki pono mo nga waahi me te tiaki DDoS, nga kaiwhakarato VPS VDS 🔥 Hokona he manaaki paetukutuku pono me te tiakitanga DDoS, ngā tūmau VPS VDS | ProHoster