diff options
| author | Nick Mathewson <nickm@torproject.org> | 2018-08-23 11:24:39 -0400 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2018-08-24 12:31:01 -0400 |
| commit | 14be9cba4ee1c3ec96638f4870112848efad2503 (patch) | |
| tree | 5ed835e5bcd9ecf728b60830c6cc709ce8d6d11d /changes | |
| parent | c1ad40627bbccf2682f56053c77ff719c822cbce (diff) | |
| download | tor-14be9cba4ee1c3ec96638f4870112848efad2503.tar.gz tor-14be9cba4ee1c3ec96638f4870112848efad2503.zip | |
Update the protocol versions recommendations to remove LinkAuth=1
LinkAuth method 1 is the one where we pull the TLS master secrets
out of the OpenSSL data structures and authenticate them with
RSA. Right now we list method 1 as required for clients and relays.
That's a problem, since we can't reasonably support it with NSS. So
let's remove it as a requirement and a recommendation.
As for method 3: I'd like to recommend it it, but that would make
0.2.9 start warning. Let's not do that till at least some time
after 0.3.5 (the next LTS) is stable.
Closes ticket 27286
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/27286 | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/changes/27286 b/changes/27286 new file mode 100644 index 0000000000..5f5f7a4ae7 --- /dev/null +++ b/changes/27286 @@ -0,0 +1,4 @@ + o Minor features (directory authorities): + - Authorities no longer vote to make the subprotocol version "LinkAuth=1" + a requirement: it is unsupportable with NSS, and hasn't been needed + since Tor 0.3.0.1-alpha. Closes ticket 27286. |