ProHoster > Blog > litaba tsa inthanete > Ts'ebetsong ea /dev/random e hlahisitsoe bakeng sa Linux kernel, e lokollotsoeng ho tlamang SHA-1.

Ts'ebetsong ea /dev/random e hlahisitsoe bakeng sa Linux kernel, e lokollotsoeng ho tlamang SHA-1.

Jason A. Donenfeld, mongoli oa VPN WireGuard, o hlahisitse ts'ebetsong e nchafalitsoeng ea jenereithara ea nomoro ea pseudo-random ea RDRAND e ikarabellang bakeng sa ts'ebetso ea lisebelisoa tsa / dev / random le / dev / urandom Linux kernel. Qetellong ea Pulungoana, Jason o kenyellelitsoe palong ea bahlokomeli ba mokhanni ea sa sebetseng mme joale o phatlalalitse liphetho tsa pele tsa mosebetsi oa hae mabapi le ts'ebetso ea eona.

Ts'ebetsong e ncha e hlokomeleha ka phetoho ea eona ea ho sebelisa BLAKE2s hash function sebakeng sa SHA1 bakeng sa ts'ebetso ea ho kopanya entropy. Phetoho e ntlafalitse ts'ireletso ea jenereithara ea pseudo-random ea linomoro ka ho felisa algorithm e nang le bothata ea SHA1 le ho felisa ho ngola holimo ha vector ea ho qala ea RNG. Kaha algorithm ea BLAKE2s e phahametse SHA1 ts'ebetsong, ts'ebeliso ea eona e boetse e na le phello e ntle ts'ebetsong ea jenereithara ea pseudo-random (teko ea tsamaiso e nang le motlakase oa Intel i7-11850H e bontšitse keketseho ea 131% ea lebelo). Molemo o mong oa ho fetisetsa motsoako oa entropy ho BLAKE2 e ne e le ho kopanngoa ha li-algorithms tse sebelisoang - BLAKE2 e sebelisoa ho ChaCha cipher, e seng e sebelisetsoa ho ntša tatellano e sa tloaelehang.

Ho phaella moo, lintlafatso li entsoe ho "crypto-secure pseudo-random number generator CRNG e sebelisoang pitso ea getrandom. Lintlafatso li theohela ho fokotsa mohala ho jenereithara e liehang ea RDRAND ha e ntša entropy, e ntlafatsang ts'ebetso ka makhetlo a 3.7. Jason o bontšitse hore ho letsetsa RDRAND hoa utloahala boemong boo CRNG e e-s'o qalisoe ka botlalo, empa haeba ho qalisoa ha CRNG ho phethehile, boleng ba eona ha bo ame boleng ba tatellano e hlahisitsoeng 'me tabeng ena pitso ho RDRAND. e ka tsamaisoa ka.

Liphetoho li reretsoe ho kenyelletsoa kernel ea 5.17 'me li se li hlahlobiloe ke baetsi ba Ted Ts'o (mohlokomeli oa bobeli oa mokhanni ea sa sebetseng), Greg Kroah-Hartman (ea ikarabellang bakeng sa ho boloka lekala le tsitsitseng la Linux kernel) le Jean-Philippe. Aumasson (mongoli oa BLAKE2/3 algorithms).

Source: opennet.ru

Eketsa ka tlhaloso