BoringTun v0.4 Released For CloudFlare's Rust-Based WireGuard

Written by Michael Larabel in Linux Networking on 8 March 2022 at 07:30 AM EST. 43 Comments
LINUX NETWORKING
Back in 2019 the folks at CloudFlare announced BoringTun as a Rust-written WireGuard user-space implementation. Yesterday marked the first tagged release of BoringTun in the form of version 0.4.

BoringTun is CloudFlare's WireGuard play and is their own user-space implementation that leverages Rust for enhanced security. BoringTun is open-source and cross-platform with Linux and macOS being the initial targets on the desktop as well as iOS and Android for mobile. BoringTun is published under a 3-clause BSD license and has been verified to work across x86_64 / AArch64 / ARMv7 architectures.

CloudFlare says that BoringTun is deployed on "millions" of iOS and Android devices and also CloudFlare's Linux servers -- it consists of both the user-space boringtun software and the BoringTun library that can be used by client applications.

CloudFlare announced BoringTun prior to WireGuard's module being mainlined in the Linux kernel. Most Linux desktop users / enthusiasts these days seem to be up for that when running on recent versions of the Linux kernel while BoringTun likely still has interest among enterprise users on older enterprise Linux distributions not yet shipping WireGuard support, similarly for some embedded / consumer electronic devices running on older kernels. BoringTun's library support may also continue to be of interest to some developers.


Since the 2019 announcement of BoringTun we haven't heard much from CloudFlare about the project but was surprised to see yesterday that BoringTun v0.4.0 was quietly released. There isn't any change-log and is their only tagged release available, consisting of all the BoringTun work to this point. Since mid-February was an uptick in activity with various fixes landing into BoringTun though that was the first batch of committed work since one commit in December and a few back in November/October. The project sometimes sees no commits in a given month but does seem to be used and relied upon by CloudFlare and other parties.
43 Comments
Related News
OpenVPN DCO Looks Like It Might Be Ready For Linux 6.14 To Speed-Up VPN Performance
Many Networking Changes In Linux 6.13 - One Line Of Code Helping WireGuard Performance
Intel IWD 3.0 Wireless Daemon Released For Linux Systems
Linux 6.12-rc3 Released With Some Late NTFS Driver Enhancements
NetworkManager 1.50 Released - Now Ensures Offensive Terms Don't Appear In Settings
OpenVPN Kernel Driver Patches Updated For Improving VPN Performance
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal
GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd
KDE Starts December By Landing A Number Of New Features
NTSYNC Linux Patches Revived To Help Boost Steam Play Gaming Performance
Rust-Based, Memory-Safe PNG Decoders "Vastly Outperform" C-Based PNG Libraries