05/26/2018 (Sat) 09:41:29
WireGuard is not
>formally verified VPN software
>Y-y-yes it is!
No, it's not. It is experimental software that is based on a formally verified protocol
. Protip: TLS is also a formally verified protocol.
>WireGuard is not yet complete. You should not rely on this code. It has not undergone proper degrees of security auditing and the protocol is still subject to change. We're working toward a stable 1.0 release, but that time has not yet come. There are experimental snapshots tagged with "0.0.YYYYMMDD", but these should not be considered real releases and they may contain security vulnerabilities (which would not be eligible for CVEs, since this is pre-release snapshot software).
>I want muh post quantum algo kernelspace VPN too!
WireGuard is not post-quantum secure by default, and in order to be configured to be, it depends on a pre-shared symmetric key that has to be exchanged out of band. At this point, that means hand-delivering the key.