Ukususela kwisiseko sekhowudi apho ukukhululwa kwe-FreeBSD 13 kwenziwa khona, ikhowudi yokuphumeza i-protocol ye-WireGuard VPN, ephuhliswe ngomyalelo we-Netgate ngaphandle kokubonisana nabaphuhlisi be-WireGuard yasekuqaleni, kwaye sele ibandakanyiwe ekukhutshweni okuzinzile kokusasazwa kwe-pfSense, yayihlazo. isusiwe. Emva kokuphononongwa kwekhowudi nguJason A. Donenfeld, umbhali we-WireGuard yasekuqaleni, kwavela ukuba ukuphunyezwa okucetywayo kwe-FreeBSD ye-WireGuard yayiyinxalenye yekhowudi ye-shoddy, egcwele i-buffer ephuphumayo kwaye iphula i-GPL.
Ukuphunyezwa kuqulethe iziphene eziyingozi kwikhowudi ye-cryptography, inxalenye ye-protocol ye-WireGuard yayishiywe, kukho iimpazamo ezikhokelela ekuqhekekeni kwe-kernel kunye neendlela zokukhusela ezidlulayo, kunye ne-fixed-size buffers yasetyenziselwa idatha yokufaka. Ubukho stubs endaweni iitshekhi ezisoloko ukubuyisela "okwenyani", kwakunye ulibele debugging printfs kunye imveliso parameters ezisetyenziselwa ufihlo, kunye nokusetyenziswa umsebenzi ubuthongo ukuthintela iimeko uhlanga bathi kakhulu malunga nomgangatho ikhowudi.
Ezinye iindawo zekhowudi, ezifana nomsebenzi we-crypto_xor, zikhutshwe kwi-WireGuard ukuphunyezwa kwe-Linux, ngokuphulwa kwelayisensi ye-GPL. Ngenxa yoko, uJason Donenfield, kunye noKyle Evans kunye noMat Dunwoodie (umbhali we-WireGuard port ye-OpenBSD), bathatha umsebenzi wokulungisa ukuphunyezwa okuyingxaki kwaye, kwisithuba seveki, bayitshintsha ngokupheleleyo yonke ikhowudi yomphuhlisi oqeshwe yiNetgate. . Uguqulelo olulungisiweyo lukhutshwe njengesethi eyahlukileyo yeepatches, ezibekwe kwindawo yokugcina iprojekthi ye-WireGuard kwaye ayikabandakanywa kwi-FreeBSD.
Okubangela umdla kukuba, ekuqaleni bekungekho zimpawu zengxaki; INetgate, ebifuna ukukwazi ukusebenzisa iWireGuard kusasazo lwe-pfSense, yaqesha uMatthew Macy, oyazi kakuhle i-FreeBSD kernel kunye ne-network stack, ubandakanyeka kulungiso lweebug kwaye unamava okuphuhlisa. abaqhubi benethiwekhi bale nkqubo yokusebenza. UMacy wanikwa ishedyuli eguquguqukayo ngaphandle kwemihla yokugqibela okanye iitshekhi zaphakathi. Abaphuhlisi abadibana noMacy ngelixa besebenza kwi-FreeBSD bamchaze njengomntu onetalente kunye nochwephesha weprogram ongazange enze iimpazamo kunabanye kwaye waphendula ngokufanelekileyo ekugxekeni. Umgangatho ombi wekhowudi yokuphunyezwa kwe-WireGuard ye-FreeBSD yeza kubothusa.
Emva kweenyanga ze-9 zomsebenzi, uMacy wongezelela ukuphunyezwa kwakhe kwisebe le-HEAD, elalisetyenziselwa ukwenza i-FreeBSD 13 ukukhululwa, ngoDisemba wokugqibela ngaphandle kokugqitywa kokuhlolwa koontanga kunye novavanyo.Uphuhliso lwenziwa ngaphandle kokunxibelelana nabaphuhlisi be-WireGuard yasekuqaleni I-OpenBSD kunye ne-NetBSD izibuko. NgoFebruwari, i-Netgate idibanise i-WireGuard ekukhutshweni okuzinzileyo kwe-pfSense 2.5.0 kwaye yaqala ukuthumela i-firewall ngokusekelwe kuyo. Emva kokuba iingxaki zichongiwe, ikhowudi ye-WireGuard yasuswa kwi-pfSense.
Ikhowudi eyongeziweyo ibonise ubuthathaka obubalulekileyo obusetyenzisiweyo kwi-0-day exploits, kodwa ekuqaleni i-Netgate ayizange ivume ubukho bobuthathaka kwaye yazama ukumangalela umphuhlisi we-WireGuard yasekuqaleni yokuhlaselwa kunye nokuthambekela, okuchaphazela kakubi igama layo. Umphuhlisi wechweba waqala ukugatya amabango malunga nomgangatho wekhowudi kwaye wawajonga njengento ebaxiweyo, kodwa emva kokubonisa iimpazamo, wagxininisa into yokuba eyona ngxaki ibaluleke kakhulu kukungabikho kokuphononongwa ngokufanelekileyo komgangatho wekhowudi kwi-FreeBSD, kuba iingxaki zahlala zingabonakali kwiinyanga ezininzi. (Abameli beNetgate babonise ukuba uphononongo luluntu luqalisiwe ngo-Agasti ka-2020, kodwa abaphuhlisi beFreeBSD baqaphele ukuba kwi-Phabricator uphononongo luvalwe nguMacy ngaphandle kokugqitywa kunye nezimvo zingahoywa). Iqela le-FreeBSD Core liphendule kweso siganeko ngokuthembisa ukwenza iinkqubo zabo zokuphononongwa kweekhowudi zibe zezanamhlanje.
UMatthew Macy, ongumphuhlisi wezibuko leFreeBSD elinengxaki, uphawule ngale meko ngelithi wenze impazamo enkulu ngokuthatha umsebenzi ngaphandle kokukulungela ukuphumeza le projekthi. UMacy ucacisa isiphumo sokudinwa ngokweemvakalelo kunye nesiphumo seengxaki eziye zavela ngenxa ye-post-Covid syndrome. Kwangaxeshanye, uMacy akazange afune ukuzimisela ukushiya iimbopheleleko awayesele ezenzile waza wazama ukuzisa le projekthi.
Imeko kaMacy kusenokwenzeka ukuba yachatshazelwa sisigwebo samva nje sokuvalelwa entolongweni ngenxa yokuzama ngokungekho mthethweni ukukhupha abantu abaqeshileyo kwindlu awayeyithengile ababengafuni ukuphuma ngokuzithandela. Endaweni yoko, yena nenkosikazi yakhe basarha imiqadi yomgangatho baqhekeza imingxuma phantsi ukuze indlu ingahlali mntu, bazama nokugrogrisa abahlali, baqhekeza amagumbi ahlala abantu bakhupha izinto zabo (isenzo sachazwa njengokuqhekeza). Ukuze baphephe uxanduva ngezenzo zakhe, uMacy nomfazi wakhe babalekela eItali, kodwa bathunyelwa eUnited States baza bathothoza iminyaka engaphezu kwemine entolongweni.
umthombo: opennet.ru