wireguard-tools

History

Greg Kroah-Hartman 01d00bc035 global: add SPDX tags to all files It's good to have SPDX identifiers in all files as the Linux kernel developers are working to add these identifiers to all files. Update all files with the correct SPDX license identifier based on the license text of the project or based on the license in the file itself. The SPDX identifier is a legally binding shorthand, which can be used instead of the full boiler plate text. Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Modified-by: Jason A. Donenfeld <Jason@zx2c4.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>		2017-12-09 22:29:28 +01:00
..
src	global: add SPDX tags to all files	2017-12-09 22:29:28 +01:00
curve25519_generate.js	global: add SPDX tags to all files	2017-12-09 22:29:28 +01:00
keygen.html	global: add SPDX tags to all files	2017-12-09 22:29:28 +01:00
README	contrib: keygen-html for generating keys in the browser	2017-12-03 15:07:52 +01:00

README

WireGuard Key Generation in JavaScript
======================================

Various people believe in JavaScript crypto, unfortunately. This small
example helps them fuel their poor taste.

It's possible to generate WireGuard keys (and thus configurations) in the
browser. The webpage here simulates talking to a server to exchange keys
and then generates a configuration file for the user to download.

Bugs
----

Who knows how emscripten actually compiles this and whether or not it
introduces interesting side-channel attacks.

Secrets aren't zerored after use. Maybe you can get around this with
some tricks taking advantage of browser allocator behavior and different
processes, but it seems pretty hard.