This integration is currently not supported due to the end of life of oqs-openssl111. Feel free to vote this back into supported state by visiting the discussion on the topic.
This directory contains a Dockerfile that builds Envoy with the OQS BoringSSL master-with-bazel branch modified to build the liboqs library and use the most updated BoringSSL source code.
A pre-built Docker image has been provided for streamlined use in envoy implementations.
It can be used identically to the standard envoy images. For example, when setting a base image for a standard Envoy implementation, one may write
FROM envoyproxy/envoy-dev:latest
To use the post-quantum image, replace with
FROM openquantumsafe/envoy:latest
Install Docker and run the following commands:
docker build -t envoy .
Full source code, instructions, and demo can be found here.
An example implementation of oqs-enabled envoy terminating a tls handshake and proxying to an http backend has been included.
For questions or contributions to the post-quantum cloud native project: