Umbhali we-VPN WireGuard ukhiphe isibuyekezo esisha se-RDRAND

Jason A Donenfeld, umbhali we-VPN WireGuard wazise ezinsukwini ezimbalwa ezedlule ukuqaliswa okusha ibuyekezwa kusuka ku-generator yenombolo engahleliwe i-RDRAND, enesibopho sokusebenza kwe / dev / okungahleliwe kanye / dev / urandom amadivayisi ku-Linux kernel.

Ekupheleni kukaNovemba, u-Jason ufakwe ohlwini lwabanakekeli besilawuli esingahleliwe futhi manje useshicilele imiphumela yokuqala yomsebenzi wakhe wokulungisa kabusha.

Kushiwo esimemezelweni ukuthi ukuqaliswa okusha kuyaphawuleka ukushintshela ekusebenziseni umsebenzi we-BLAKE2s hashi esikhundleni se-SHA1 imisebenzi yokuxuba i-entropy.

I-BLAKE2s ngokwayo inendawo enhle yokuthi isekelwe ngaphakathi
ChaCha permutation, okuyinto i-RNG isivele iyisebenzisela ukunwetshwa, ngakho
akumele kube khona inkinga ngobusha, okwangempela noma i-CPU emangalisayo
ukuziphatha, ngoba kusekelwe kokuthile osekusetshenziswa kakade.

Ngaphezu kwalokho, kuyaphawulwa ukuthi ushintsho iphinde yathuthukisa ukuvikeleka kwejeneretha yenombolo-mbumbulu ngokususa i-algorithm enzima ye-SHA1 nokugwema ukubhala ngaphezulu i-RNG ivector yokuqalisa. Njengoba i-algorithm ye-BLAKE2s ingaphambi kwe-SHA1 ekusebenzeni, ukusetshenziswa kwayo nakho kube nomthelela omuhle ekusebenzeni kwejeneretha yenombolo engahleliwe (ukuhlolwa ohlelweni olunephrosesa ye-Intel i7-11850H kubonise ukukhuphuka kwejubane okungu-131%). .

Enye inzuzo egqamayo eyokudlulisela ingxube ye-entropy ku-BLAKE2 ukuhlanganisa ama-algorithms asetshenzisiwe: I-BLAKE2 isetshenziswa ekubetheleni kwe-ChaCha, osekuvele kusetshenziselwa ukukhipha ukulandelana okungahleliwe.

I-BLAKE2s ivamise ukushesha futhi ngokuqinisekile ivikeleke kakhulu, Iphukile ngempela. Ngaphezu kwalokho, i- Ukwakhiwa kwamanje ku-RNG akusebenzisi umsebenzi ogcwele we-SHA1, njenge icacisa, futhi ikuvumela ukuthi ubhale phezu kwe-IV ngokukhiphayo kwe-RDRAND ngendlela ayibhaliwe phansi, noma ngabe i-RDRAND ingasethiwe 'njengethembekile', yona okusho ukuthi kungenzeka izinketho ezinonya IV.

Futhi ubude bayo obufushane busho ukugcina ingxenye yemfihlo kuphela lapho ubuyisela ku-mixer isinika kuphela 2^80 izingcezu zokufihla phambili. Ngamanye amazwi, hhayi kuphela ukukhethwa komsebenzi we-hashi kuphelelwe yisikhathi, kodwa ukusetshenziswa kwawo akukuhle ngempela.

Futhi, kwenziwe ukuthuthukiswa kwe-crypto-secure CRNG pseudo-random generator inombolo esetshenziswe ocingweni lwe-gerandom.

Kuyashiwo futhi ukuthi ukuthuthukiswa kukhuphukela ekukhawuleleni ucingo kujeneretha ye-RDRAND kancane lapho ukhipha i-entropy, okuyinto Ingathuthukisa ukusebenza ngesilinganiso esingu-3,7. U-Jason ubonise ukuthi ucingo oluya ku-RDRAND Kunengqondo kuphela esimweni lapho i-CRNG ingakaqaliswa ngokugcwele, kodwa uma ukuqaliswa kwe-CRNG kuqedile, inani layo alithinti ikhwalithi yokusakaza okukhiqizwayo, futhi kulokhu, kungenzeka ukwenza kanjalo ngaphandle kokushaya ucingo. I-RDRAND.

Lokhu kuvumelana kuhlose ukuxazulula lezi zinkinga ezimbili futhi, ngesikhathi esifanayo, ukugcina ukwakheka okujwayelekile kanye nesemantics kusondele kakhulu kweyokuqala.
Ngokuqondile:

a) Esikhundleni sokubhala phezu kwe-IV hashi nge-RDRAND, sifaka i-BLAKE2 ebhaliwe "usawoti" kanye nezinkambu "zomuntu siqu", okuyizimo yakhelwe ngokukhethekile lolu hlobo lokusetshenziswa.
b) Njengoba lo msebenzi ubuyisela umphumela we-hashi ephelele ku- entropy collector, sibuyisela kuphela isigamu sobude be hash, njengoba nje kwenziwa ngaphambili. Lokhu kwandisa amandla ukwakha imfihlo kusengaphambili kusuka 2^80 kuya 2^128 ntofontofo kakhulu.
c) Esikhundleni sokusebenzisa nje "sha1_transform" eluhlaza, esikhundleni salokho sisebenzisa umsebenzi ogcwele nofanelekile we-BLAKE2s, ngokuqeda.

Izinguquko zihlelelwe ukufakwa ku-kernel 5.17 futhi sezivele zibuyekeziwe onjiniyela u-Ted Ts'o (umnakekeli wesibili womshayeli ongahleliwe), u-Greg Kroah-Hartman (obhekele ukugcina i-Linux kernel izinzile), kanye no-Jean-Philippe Aumasson (umbhali we-BLAKE2 algorithms /3).

Okokugcina, uma ungathanda ukwazi okwengeziwe ngakho, ungathintana nemininingwane ku isixhumanisi esilandelayo.


Yiba ngowokuqala ukuphawula

Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.