GitHub - Open-QKD-Network/openvpn: Post-quantum Cryptography VPN (openvpn subproject)

Overview

This note desribes how to checkout and build and run openvpn with openqkdnetwork/liboqs/openssl triple key exchange.

Checkout & build code

Assume the home directory is /home/b43s

2.1 mkdir qkd-test && cd qkd-test

2.2 checkout qkd-network

git clone https://github.com/Open-QKD-Network/qkd-net.git

cd qkd-net

git checkout disable-spring-auth

Please refer https://github.com/Open-QKD-Network for how to build & run openqkd-network

2.3 checkout liboqs

cd qkd-test

git clone https://github.com/Open-QKD-Network/liboqs.git

cd liboqs

git checkout openqkd

2.4 checkout openssl

cd ../

git clone https://github.com/Open-QKD-Network/openssl.git

cd openssl

git checkout openqkd

2.5 build liboqs

cd ../liboqs

mkdir build

cd build

cmake -GNinja -DCMAKE_INSTALL_PREFIX=../../openssl/oqs ..

ninja

ninja install

2.6 build openssl

cd ../../openssl

#Build openssl with shared library

./Configure shared linux-x86_64 --debug --prefix=/home/b43s/qkd-test/openssl-install/openssl --openssldir=/home/b43s/qkd-test/openssl-install/ssl -lm

make

make install

2.7 checkout openvpn

cd ../

git clone https://github.com/Open-QKD-Network/openvpn

cd openvpn

git checkout pqcrypto

./build-openqkd.sh

Run

3.1 Run qkd-network

3.1.1 cd ../qkd-net

3.1.2 cd kms

3.1.3 ./script/run

3.2 Run openvpn

#change to root sudo -s

cd qkd-test

export LD_LIBRARY_PATH=/home/b43s/qkd-test/openssl-install/openssl/lib/

#make sure the openvpn use openssl in above directory

root@ASUS-B43S:~/qkd-test# ldd stage-openqkd/usr/local/openvpn/sbin/openvpn | grep ssl libssl.so.1.1 => /home/b43s/qkd-test/openssl-install/openssl/lib/libssl.so.1.1 (0x00007fb356b70000) libcrypto.so.1.1 => /home/b43s/qkd-test/openssl-install/openssl/lib/libcrypto.so.1.1 (0x00007fb355b03000)

#make sure server.conf/client.conf use openquantumsafe/openqkd key exchange

tls-version-min 1.3

ecdh-curve p384_oqkd_saber

#On server machine

./stage-openqkd/usr/local/openvpn/sbin/openvpn --config ./openssl/openqkd/openvpn-config/server-config/server.conf

#On client machine

./stage-openqkd/usr/local/openvpn/sbin/openvpn --config ./openssl/openqkd/openvpn-config/client-config/client.conf

Name		Name	Last commit message	Last commit date
Latest commit History 2,308 Commits
.travis		.travis
build		build
contrib		contrib
debug		debug
dev-tools		dev-tools
distro		distro
doc		doc
include		include
m4		m4
sample		sample
src		src
tests		tests
vendor		vendor
.gitattributes		.gitattributes
.gitignore		.gitignore
.gitmodules		.gitmodules
.mailmap		.mailmap
.svncommitters		.svncommitters
.travis.yml		.travis.yml
AUTHORS		AUTHORS
CONTRIBUTING.rst		CONTRIBUTING.rst
COPYING		COPYING
COPYRIGHT.GPL		COPYRIGHT.GPL
ChangeLog		ChangeLog
Changes.rst		Changes.rst
INSTALL		INSTALL
Makefile.am		Makefile.am
NEWS		NEWS
OpenVPN.tar		OpenVPN.tar
PORTS		PORTS
README		README
README.IPv6		README.IPv6
README.ec		README.ec
README.mbedtls		README.mbedtls
README.md		README.md
SECURITY.md		SECURITY.md
TODO.IPv6		TODO.IPv6
build-openqkd.sh		build-openqkd.sh
compat.m4		compat.m4
config-msvc-version.h.in		config-msvc-version.h.in
config-msvc.h		config-msvc.h
configure.ac		configure.ac
msvc-build.bat		msvc-build.bat
msvc-dev.bat		msvc-dev.bat
msvc-env.bat		msvc-env.bat
openqkd.md		openqkd.md
openvpn.sln		openvpn.sln
run-jitsi-over-openvpn.md		run-jitsi-over-openvpn.md
run-openvpn-jitsi-client.sh		run-openvpn-jitsi-client.sh
run-openvpn-jitsi-server.sh		run-openvpn-jitsi-server.sh
version.m4		version.m4
version.sh.in		version.sh.in

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Licenses found

Uh oh!

Repository files navigation

About

Licenses found

Uh oh!

Releases

Packages

Languages

License

Licenses found

Open-QKD-Network/openvpn

Folders and files

Latest commit

History

Repository files navigation

About

Resources

License

Licenses found

Contributing

Security policy

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages