govpn - Virtual Private Network Implementation

Property Value
Distribution openSUSE Leap 15.0
Repository openSUSE Oss all
Package name govpn
Package version 7.4
Package release lp150.1.6
Package architecture x86_64
Package type rpm
Installed size 6.52 MB
Download size 1.52 MB
Official Mirror
GoVPN is a virtual private network daemon, written in Go.
It uses strong passphrase authenticated key agreement protocol with
augmented zero-knowledge mutual peers authentication (PAKE DH A-EKE).
It features encrypted authenticated data transport that hides
message's length and timestamps, has the Perfect Forward Secrecy
property, is resistant to offline dictionary attacks, replay attacks,
client's passphrases compromising and dictionary attacks on the
server side, has built-in heartbeating, rehandshaking, real-time
statistics, the ability to work through UDP, TCP and HTTP proxies,
and IPv4/IPv6-compatibility.


Package Version Architecture Repository
govpn - - -


Name Value
info - - - - -


Name Value
govpn = 7.4-lp150.1.6
govpn(x86-64) = 7.4-lp150.1.6


Type URL
Binary Package govpn-7.4-lp150.1.6.x86_64.rpm
Source Package govpn-7.4-lp150.1.6.src.rpm

Install Howto

Install govpn rpm package:

# zypper install govpn




2017-11-23 -
- Update to version 7.4:
* Tiny refactoring. Go 1.9 is a minimal required version.
* Dependant cryptographic libraries are updated.
- Add govpn-go-1.7-compat.patch: Restore Go 1.7 compatibility.
Apply it on openSUSE older than Leap 15.0.
2017-05-11 -
- Do not suppress errors from user/group creation
- Fix grammar problems in description, and drop filler wording.
2017-05-09 -
- Update to version 7.3 (changes since 5.10):
* Argon2d is replaced with Balloon hashing. Found Argon2
libraries written on pure Go have various problems. Moreover
Argon2i should be used instead, but it has some possible
cryptographic defects (
So it is replaced with much more simpler (and seems even
cryptographically better) Balloon hashing
* (X)Salsa20 is replaced with ChaCha20. Theoretically it should
be faster and more secure. Previous versions are not compatible
with it!
* Ability to use TUN-interfaces under GNU/Linux.
* Fix a bug in client?s identity generation and detection code:
simultaneous clients may be incorrectly identified, preventing
their connection establishing and allowing DPI to detect GoVPN
* Fix seldom possible segmentation fault on the server during
* Dependant cryptographic libraries are updated.
2016-07-23 -
- Update to version 5.10 (changes since 5.8):
* Client reconnects in the loop when connection is lost.
Optionally you can disable that behaviour: client will exit
immediately, as it previously did.
* -version option added, printing application version.
2016-05-28 -
- Update to version 5.8:
* Optional ability to use syslog for logging, with RFC 5424-like
structured records.
* XTEA algorithm is not used anymore for nonce obfuscation, but
BLAKE2b-MAC instead. Encryptionless mode now really does not
depend on encryption functions.
2016-03-17 -
- Update to 5.7:
* TAP interface name and remote peer's address are passed to up-
and down- scripts through environment variables.
* Update Argon2 library to use version 1.3 of the algorithm.
2016-02-11 -
- Update to 5.6 (changes since 5.2):
* Ability to read passphrases directly from the terminal (user's
input) without using of keyfiles. utility removed.
* Fix minor bug with that caught "Passphrase:"
prompt and inserted it into example YAML output.
Just replaced stdout output to stderr for that prompt.
* Add optional Timesync requirement.
It will add timestamps in handshake PRP authentication,
disallowing to repeat captured packet and get reply from the
server, making it visible to DPI.
* Ability to work on 32-bit platforms. sync library has some
specific issues that caused panics on previous versions.
* Add up/down example script for replacing default route.
* Fix documentation bug: .info was not being installed.
2016-01-15 -
- Update to 5.2 (changes since 4.2):
* New optional encryptionless mode of operation.
Technically no encryption functions are applied for outgoing
packets, so you can not be forced to reveal your encryption
keys or sued for encryption usage.
* MTUs are configured on per-user basis.
* Simplified payload padding scheme, saving one byte of data.
* Ability to specify TAP interface name explicitly without any
up-scripts for convenience.
* govpn-verifier utility now also can use EGD.
* Server is configured using YAML file. It is very convenient to
have comments and templates, comparing to JSON.
* Incompatible with previous versions replacement of HSalsa20
with BLAKE2b in handshake code.
* Ability to read passphrases directly from the terminal (user's
input) without using of keyfiles. utility removed.

See Also

Package Description
govpn-server-7.4-lp150.1.6.x86_64.rpm Simple Virtual Private Network Server
gp2c-0.0.10pl1-lp150.1.3.x86_64.rpm GP script to PARI C program compiler
gpa-0.9.10-lp150.1.10.x86_64.rpm GNU Privacy Assistant
gpa-lang-0.9.10-lp150.1.10.noarch.rpm Translations for package gpa
gpart-0.3-lp150.1.10.x86_64.rpm Tool That Can Guess a Lost Partition Table
gparted-0.31.0-lp150.1.2.x86_64.rpm Gnome Partition Editor
gparted-lang-0.31.0-lp150.1.2.noarch.rpm Translations for package gparted
gpaste-3.26.0-lp150.1.7.x86_64.rpm Clipboard management system for GNOME
gpaste-devel-3.26.0-lp150.1.7.x86_64.rpm Library for managing clipboard history -- Development Files
gpaste-lang-3.26.0-lp150.1.7.noarch.rpm Translations for package gpaste
gperf-3.1-lp150.1.13.x86_64.rpm A Compiler Tool for Generating Perfect Hash Functions
gperftools-2.5-lp150.3.2.x86_64.rpm Performance Tools for C++
gperftools-devel-2.5-lp150.3.2.x86_64.rpm Performance tools for C++
gperiodic-3.0.2-lp150.1.5.x86_64.rpm A program for looking up data of elements from the periodic table
gperiodic-lang-3.0.2-lp150.1.5.noarch.rpm Translations for package gperiodic