Pretty much this exactly. There's not a lot here, but what is there leaves you kind of confused about what the point is.
I'm not a cryptographer and can't vouch one way or another for the safety of their fork, but a lot of the changes are just stuff like moving whitespace around, and the stuff that isn't pointless sometimes involves changes to important cryptography functions without clear explanations or justifications given in the commit messages. All of the changes are by a single user without any clear indication that they've been reviewed by someone qualified to do cryptography.
And above all there's no obvious reason this fork needs to exist. There's no evidence that it's fixing any "critical bugs" that the OpenVPN project is ignoring, and if the changes are worthwhile they should just be upstreamed. If you're going to pursue something as major as forking OpenVPN, it's really on you to provide some evidence that people should trust your work.
> Surely it's good though that someone has started adding ChaCha20 and Poly1305 to OpenVPN?
For sure, but maybe they should put more effort into getting Wireguard support for their servers instead?
Pretty much this exactly. There's not a lot here, but what is there leaves you kind of confused about what the point is.
I'm not a cryptographer and can't vouch one way or another for the safety of their fork, but a lot of the changes are just stuff like moving whitespace around, and the stuff that isn't pointless sometimes involves changes to important cryptography functions without clear explanations or justifications given in the commit messages. All of the changes are by a single user without any clear indication that they've been reviewed by someone qualified to do cryptography.
And above all there's no obvious reason this fork needs to exist. There's no evidence that it's fixing any "critical bugs" that the OpenVPN project is ignoring, and if the changes are worthwhile they should just be upstreamed. If you're going to pursue something as major as forking OpenVPN, it's really on you to provide some evidence that people should trust your work.
> Surely it's good though that someone has started adding ChaCha20 and Poly1305 to OpenVPN?
For sure, but maybe they should put more effort into getting Wireguard support for their servers instead?