Re: [Openvpn-devel] Support for libsodium?

2013-04-22 Thread Adriaan de Jong
> -Original Message- > From: Ed W [mailto:li...@wildgooses.com] > Sent: vrijdag 19 april 2013 12:35 > To: Adriaan de Jong > Cc: Gert Doering; openvpn-devel@lists.sourceforge.net > Subject: Re: [Openvpn-devel] Support for libsodium? > > On 19/04/2013 11:1

Re: [Openvpn-devel] Support for libsodium?

2013-04-19 Thread Ed W
On 19/04/2013 11:13, Adriaan de Jong wrote: I misunderstood your wish to completely get rid of TLS. That would require a major overhaul in the way the control channel in OpenVPN is handled. OpenVPN is completely centered around the idea of a TLS control channel across which data channel keys

Re: [Openvpn-devel] Support for libsodium?

2013-04-19 Thread Adriaan de Jong
> -Original Message- > From: Ed W [mailto:li...@wildgooses.com] > Sent: vrijdag 19 april 2013 11:50 > To: Adriaan de Jong > Cc: Gert Doering; openvpn-devel@lists.sourceforge.net > Subject: Re: [Openvpn-devel] Support for libsodium? > > Hi > > I think I&#x

Re: [Openvpn-devel] Support for libsodium?

2013-04-19 Thread Ed W
On 18/04/2013 21:44, Gert Doering wrote: Hi, On Thu, Apr 18, 2013 at 08:28:42PM +0100, Ed W wrote: Hi, given the new abstractions to support PolarSSL, what interest/resistance would there be to supporting libsodium? https://github.com/jedisct1/libsodium It took us quite some effort to re

Re: [Openvpn-devel] Support for libsodium?

2013-04-19 Thread Ed W
Hi I think I'm missing some of the subtleties of your reply, please forgive probable ignorance! There's a few issues that we need to overcome though: - Unfortunately as far as I know there's no TLS support in NaCl. I guess it could work as a crypto library for the data channel and TLS-Au

Re: [Openvpn-devel] Support for libsodium?

2013-04-19 Thread Adriaan de Jong
Hi, > From: Gert Doering [mailto:g...@greenie.muc.de] > Sent: donderdag 18 april 2013 22:45 > > Hi, > > On Thu, Apr 18, 2013 at 08:28:42PM +0100, Ed W wrote: > > Hi, given the new abstractions to support PolarSSL, what > > interest/resistance would there be to supporting libsodium? > > http

Re: [Openvpn-devel] Support for libsodium?

2013-04-18 Thread Gert Doering
Hi, On Thu, Apr 18, 2013 at 08:28:42PM +0100, Ed W wrote: > Hi, given the new abstractions to support PolarSSL, what > interest/resistance would there be to supporting libsodium? > https://github.com/jedisct1/libsodium It took us quite some effort to reach the point where a polarssl-compile

[Openvpn-devel] Support for libsodium?

2013-04-18 Thread Ed W
Hi, given the new abstractions to support PolarSSL, what interest/resistance would there be to supporting libsodium? https://github.com/jedisct1/libsodium For reference, the NaCL library comes from Daniel Bernstein, and is a reference implementation of some crypto primitives in a kind of hi