[openstack-dev] [VPNaaS] Support for Stronger hashes and combined mode ciphers
Mark Fenwick
mark.fenwick at oracle.com
Tue Jun 14 17:39:31 UTC 2016
Hi Paul,
On 06/14/16 10:27, Paul Michali wrote:
> Certainly the ciphers and hashes could be enhanced for VPNaaS. This would
> require converting the user selections into options for the underlying
> device driver, modifying the neutron client (OSC) to allow entry of the new
> selections, updating unit tests, and likely adding some validators to
> reject these options on drivers that may not support them (e.g. if OpenSwan
> doesn't support an option, you'll want to reject it).
>
I made some changes and got this working quiet quickly, would need some
polish.
> There is not an active VPNaaS team any more, so, if this is something that
> you'd like to see, you'll need to provide some sweat equity to make it
> happen. There are still some people that can core review changes, but don't
> expect much community support for VPNaaS at this time. In fact, I think the
> plan is to archive/mothball/whatever VPNaaS in a few months (it's on double
> secret probation :)), if there is no-one actively supporting it (I'll leave
> to the PTL to define what "support" means - not sure what the
> qualifications will be to maintain this project).
So I'm curious, does anybody actually use VPNaaS for anything ?
Thanks
Mark
More information about the OpenStack-dev
mailing list