[Openvpn-devel,00/10] Client-specific tls-crypt keys (--tls-crypt-v2)

Message ID 1512734870-17133-1-git-send-email-steffan.karger@fox-it.com
Headers show
Series
  • Client-specific tls-crypt keys (--tls-crypt-v2)
Related show

Message

Steffan Karger Dec. 8, 2017, 12:07 p.m.
Hi,

The following patch set adds support for client-specific tls-crypt keys.

For a rationale, description and specification see patch 2/10, which
adds all that to doc/tls-crypt-v2.txt.

This set is also available as a branch in my github fork:
https://github.com/syzzer/openvpn/tree/tls-crypt-v2-preview4

-Steffan


------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot

Comments

Antonio Quartulli Oct. 25, 2018, 11:40 a.m. | #1
Hi all,

I am happy to say that finally I couldn't find anything wrong in the
last version of this patches.

Other then reviewing and providing feedback to Steffan, I have also
tested the code in various setups, including the usage of custom
metadata and its verify script.

On top of that, I used the documentation provided by Steffan to port
this feature to the OpenVPN 3 codebase and I can say that my
implementation happily co-operates with OpenVPN 2.

This makes me think that Steffan's code follows the doc properly (or
that both implementations have the same mistakes :-P but it is quite
unlikely).

I have ack'd the various patches one by one and I believe they are ready
to be merged into master.

The ball now goes to the repo maintainers.


Regards,


On 08/12/17 20:07, Steffan Karger wrote:
> Hi,
> 
> The following patch set adds support for client-specific tls-crypt keys.
> 
> For a rationale, description and specification see patch 2/10, which
> adds all that to doc/tls-crypt-v2.txt.
> 
> This set is also available as a branch in my github fork:
> https://github.com/syzzer/openvpn/tree/tls-crypt-v2-preview4
> 
> -Steffan
> 
> 
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Openvpn-devel mailing list
> Openvpn-devel@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/openvpn-devel
>