ProHoster > Ibhulogi > iindaba ze-intanethi > Ukuphunyezwa kwe-kernel ye-WireGuard ye-OpenBSD ibhengezwe

Ukuphunyezwa kwe-kernel ye-WireGuard ye-OpenBSD ibhengezwe

Kwi-Twitter yenkampani EdgeSecurity, yasekwa ngumbhali weWireGuard, ingxelo malunga nokudala umthonyama kunye nokuphunyezwa ngokupheleleyo kweVPN WireGuard phantsi kwe-OpenBSD. Ukuqinisekisa amagama, umfanekiso weskrini obonisa umsebenzi wapapashwa. Ubukho beepetshi ze-OpenBSD kernel kuye kwaqinisekiswa nguJason A. Donenfeld, umbhali we WireGuard, kwi. isaziso wireguard-izixhobo eziluncedo uhlaziyo.

Ukuphunyezwa kwe-kernel ye-WireGuard ye-OpenBSD ibhengezwe

Ngoku ifumaneka kuphela amabala angaphandleNangona kunjalo, ababhali bathembisa ukuthumela inguqulelo yabo yokugqibela kuluhlu lokuposa lomphuhlisi we-OpenBSD kungekudala. Ikhowudi ye-WireGuard ye-OpenBSD kernel iqukethe imigca ye-3322, engaphantsi kokuphunyezwa kwe-Linux kernel. Ukuba ikhowudi yokuphumeza i-WireGuard ekugqibeleni yamkelwe kumthi womthombo we-OpenBSD, iya kuba yi-OS yesibini (emva kwe-Linux) kunye nenkxaso epheleleyo kunye nedibeneyo ye-WireGuard ngaphandle kwebhokisi. Inkxaso ebanzi ye-WireGuard ilindeleke kukukhutshwa kwe-OpenBSD 6.8 (kukhupho lwe-OpenBSD 6.7, olwalukho. isusiwe ukusuka ngoMeyi 1 ukuya kuMeyi 19, iipatches azifumaneki). Okwangoku, abo banqwenela ukusebenzisa i-WireGuard kwi-OpenBSD kufuneka basebenzise izibuko inet/wireguard-go okanye uzifakele iipetshi ezinikiweyo.

Ukongeza, unokuqaphela ukupapashwa kohlaziyo lwephakheji yokulungisa wireguard-izixhobo v1.0.20200510 и wireguard-linux-compat v1.0.20200506, kuquka izinto eziluncedo kwisithuba somsebenzisi ezifana ne-wg kunye ne-wg-ekhawulezayo, kunye nomaleko wokubonelela ngokuhambelana ne-Linux kernels ezindala (3.10 ukuya kunye nokubandakanya i-5.5) ezingenayo inkxaso eyakhelwe-ngaphakathi ye-WireGuard. Ukukhutshwa okutsha kwe-wg kunye ne-wg-ekhawulezayo eziluncedo zongeza inkxaso yokusebenzisana kunye nokuphunyezwa kwekernel ye-OpenBSD ye-WireGuard. Kuxelwe ukuba iipetshi ze-OpenBSD kernel zicwangciswe ukuba zisasazwe kwiveki ezayo. Ukumisela itonela kwi-OpenBSD, ujongano lwewg oluqhelekileyo kunye ne "ifconfig wg0 create" iya kusetyenziswa.

Phakathi kweenguqu ezingahambelaniyo nenkxaso ye-OpenBSD, eyona nto iphawulekayo yongezwa kwi-wg-quick utility ye-domains ewela phantsi kwe-"dns search" imaski kwi-resolv.conf. Kwi-Android, inkxaso eyongeziweyo yokwenziwa kwesicelo esimhlophe ukongeza kuluhlu olumnyama. Inkonzo eyongeziweyo ye-wg-quick.target ye-systemd ukuqala kwakhona kwaye ilawule i-wg-ngokukhawuleza. Olona tshintsho luphawulekayo kwiphakheji ye-wireguard-linux-compat kukuqinisekisa ukuhambelana nohlaziyo lwexesha elizayo kwiiphakheji ze-kernel ze-Ubuntu 19.10 kunye ne-18.04-hwe, okwangoku kwicandelo "elicetywayo" kwaye alizange lihanjiswe kuhlaziyo.

umthombo: opennet.ru

Yongeza izimvo