Jason A. Donenfeld, wolemba buku la VPN WireGuard, о mu core OpenBSD kernel driver "wg" ya protocol WireGuard, mawonekedwe a netiweki enieni ndi zida zogwirira ntchito pamalo ogwiritsira ntchito. OpenBSD idakhala OS yachiwiri pambuyo pake ndi chithandizo chathunthu komanso chogwirizana WireGuard. Kuyatsa WireGuard akuyembekezeka kutulutsidwa kwa OpenBSD 6.8.
Ma patches akuphatikizapo dalaivala wa kernel ya OpenBSD, kusintha kwa ma ifconfig ndi ma tcpdump utilities ndi chithandizo cha magwiridwe antchito. WireGuard, zolemba ndi zosintha zazing'ono zogwirizanitsa WireGuard ndi dongosolo lonse. Dalaivala amagwiritsa ntchito njira yakeyake yogwiritsira ntchito ma algorithms , и , komanso kukhazikitsa kwa SipHash komwe kulipo kale mu OpenBSD kernel.
Kukhazikitsa kumeneku kumagwirizana ndi makasitomala onse ovomerezeka WireGuard chifukwa Linux, Windows, macOS, *BSD, iOS ndi AndroidKuyesa magwiridwe antchito pa laputopu ya wopanga mapulogalamu (Lenovo x230) kunawonetsa mphamvu yokwanira 750 Mbps. Poyerekeza, isakmpd yokhala ndi zoikamo zokhazikika ndi ike psk imapereka mphamvu yokwanira 380 Mbps.
Mukamapanga dalaivala wa kernel ya OpenBSD, zofanana zina ndi dalaivala wa Linux zisankho za zomangamanga, koma dalaivala adapangidwira makamaka OpenBSD, poyang'ana kwambiri za dongosololi komanso poganizira zomwe zapezeka popanga dalaivala wa LinuxNdi chilolezo cha wolemba woyambirira WireGuard Khodi yatsopano yoyendetsera galimoto imagawidwa kwathunthu pansi pa laisensi yaulere ya ISC.
Dalaivala imagwirizana kwambiri ndi OpenBSD network stack ndipo imagwiritsa ntchito subsystems zomwe zilipo, zomwe zimathandiza kuti code ikhale yaying'ono kwambiri (pafupifupi mizere 3000 ya code). Kusiyana kwina ndi: Linux, kulekanitsa zigawo za dalaivala: Ma interfaces enieni a OpenBSD ali mu mafayilo a "if_wg.*", khodi yoteteza ya DoS ili mu "wg_cookie.*", ndipo mfundo yolumikizirana ndi kubisa ili mu "wg_noise.*".
Source: opennet.ru
