Abathuthukisi beFedora Project baveze uhlelo lokukhubaza ukwesekwa kwamasignesha edijithali asekelwe ku-SHA-1 eFedora. Linux 39. Ukukhubaza kuzosusa ukwethenjwa kwamasignesha kusetshenziswa ama-hashe e-SHA-1 (i-SHA-224 izomenyezelwa njenge-hash esekelwayo encane yamasignesha edijithali), kodwa izogcina ukwesekwa kwe-HMAC nge-SHA-1 futhi inikeze inketho yokunika amandla iphrofayela ye-LEGACY nge-SHA-1. Ngemva kokusebenzisa izinguquko, umtapo wolwazi we-OpenSSL uzovimba ukukhiqizwa nokuqinisekiswa kwamasignesha e-SHA-1 ngokuzenzakalelayo.
Ukuvalwa kuhlelwe ukuthi kwenziwe ngezigaba eziningana: E-Fedora Linux Amasiginesha angu-36 asekelwe ku-SHA-1 azokhishwa kunqubomgomo ethi "FUTURE". Inqubomgomo yokuhlola, i-TEST-FEDORA39, inikeziwe ukuze ikhubaze i-SHA-1 ngokubona komsebenzisi (buyekeza-imigomo-ye-crypto-i--set TEST-FEDORA39). Izexwayiso zizofakwa lapho kudalwa futhi kuqinisekiswa amasiginesha asekelwe ku-SHA-1. Ngesikhathi sokulungiselela ukukhishwa kwe-Fedora, Linux 38 Ngaphambi kwe-beta, indawo yokugcina i-rawhide izoba nenqubomgomo evimbela ukusetshenziswa kwamasignesha asekelwe ku-SHA-1, kodwa ekukhishweni kwe-beta kanye ne-Fedora Linux 38 lolu shintsho ngeke lusetshenziswe. Ekukhululweni kwe-Fedora Linux Inqubomgomo ye-39 yokwenqaba amasignesha asekelwe ku-SHA-1 izosetshenziswa ngokuzenzakalelayo.
Uhlelo oluhlongozwayo alukabuyekezwa yi-FESCo (Fedora Engineering Steering Committee), enesibopho sengxenye yezobuchwepheshe yokuthuthukiswa kokusatshalaliswa kwe-Fedora. Ukuphela kosekelo lwamasiginesha asekelwe ku-SHA-1 kungenxa yokwanda kokusebenza kahle kokuhlaselwa kokushayisana ngesiqalo esinikeziwe (izindleko zokukhetha ukushayisana zilinganiselwa emashumini ambalwa ezinkulungwane zamadola). Iziphequluli zinezitifiketi ezimakiwe ezisayinwe kusetshenziswa i-algorithm ye-SHA-1 njengokungavikelekile kusukela maphakathi no-2016.
Source: opennet.ru
