On Fri, Sep 24, 2004 at 02:01:46PM -0600, James Yonan wrote:
> On Fri, 24 Sep 2004, JuanJo Ciarlante wrote:
> > On Fri, Sep 24, 2004 at 10:39:59AM +0200, Matthias Andree wrote:
> > > On Fri, 24 Sep 2004, JuanJo Ciarlante wrote:
> > >
> > > > This README covers UDP/IPv6 ( --udp6 ) support for openvpn-2.0_beta11
> > > > Also, with address family "generalization" changes came local AF_UNIX
> > > > socket
> > > > support.
> > >
> > > Is there a use for AF_UNIX in a VPN driver?
> > It stated in README file.. it allows the creation of local specialized
> > proxys that can take full advantage of POSIX fileystem perm. semantics.
> > Currently I;'m working on a Jabber one 8))
> > regards...
> I must say that the thought of running a VPN over Jabber is deliciously
> subversive :)
> But I cringe when I think of the potential complexification in the sockets
> We are already moving in the direction of having lots of transport layer
> options (i.e. TCP, UDP, IPv4, IPv6, HTTP, Socks). Now we're talking about
> local unix sockets and Jabber! Maybe it's time to formally codify a
> transport layer driver model, i.e. a pluggable architecture.
Totally agreed, in fact my 1st thought was to try to abstract proxys code
paths, but I left for new now the of the impact.
My patch has a lot of work in this direction (functions like
proto_is_dgram... addr_copy, etc ); you know my first approach was to thinks
AF_UNIX as http/socks, but later I concluded that if we DONT require openvpn
to specify destination to the proxy entity its not a proxy, its a (tunneled)
pee; in the JAbber case , this could be an _already_ connected, _already_
configured destination JID not even known to openvpn, ... for openvpn its
just another channel (socket).
Indeed , AF_INET , AF_INET6 and AF_UNIX are mostly "siblings" from the
connection pointo of view.
> Then people
> can add new drivers to their heart's content, while OpenVPN itself will
> conveniently interact with a generalized abstraction of the model.
Count on me for that ... hope I can resist the temptation 8)))
# Juan Jose Ciarlante (JuanJo) jjo ;at; mendoza.gov.ar #
# GnuPG Public Key: gpg --keyserver wwwkeys.eu.pgp.net --recv-key 66727177 #
# Key fingerprint: 0D2F 3E5D 8B5C 729E 0560 F453 A3F7 E249 6672 7177 #