summaryrefslogtreecommitdiff
path: root/changes
diff options
context:
space:
mode:
authorNick Mathewson <nickm@torproject.org>2016-12-08 16:49:24 -0500
committerNick Mathewson <nickm@torproject.org>2016-12-08 16:49:24 -0500
commite93234af70da5cf3d513e57b12e4934b1c4d9529 (patch)
treee8c72b7f9a1cbbedd154444bdb23b54c051c48ea /changes
parente33c85a450c4819cdad30acfc280aece7c521d6e (diff)
parent236e8b605e6aebf87787951ca05f5c75ad530c8a (diff)
downloadtor-e93234af70da5cf3d513e57b12e4934b1c4d9529.tar.gz
tor-e93234af70da5cf3d513e57b12e4934b1c4d9529.zip
Merge branch 'feature15056_v1_squashed'
Diffstat (limited to 'changes')
-rw-r--r--changes/feature1505628
1 files changed, 28 insertions, 0 deletions
diff --git a/changes/feature15056 b/changes/feature15056
new file mode 100644
index 0000000000..46226f881f
--- /dev/null
+++ b/changes/feature15056
@@ -0,0 +1,28 @@
+ o Major features (ed25519 identity keys):
+ - Relays now understand requests to extend to other relays
+ by their Ed25519 identity keys. When an Ed25519 identity key
+ is included in an EXTEND2 cell, the relay will only extend
+ the circuit if the other relay can prove ownership of that identity.
+ Implements part of ticket 15056; part of proposal 220.
+ - Clients now support including Ed25519 identity keys in the EXTEND2
+ cells they generate. By default, this is controlled by a consensus
+ parameter, currently disabled. You can turn this feature on for
+ testing by setting ExtendByEd25519ID in your configuration. This might
+ make your traffic appear different than the traffic generated by other
+ users, however.
+ Implements part of ticket 15056; part of proposal 220.
+
+ o Code simplification and refactoring:
+ - The code to generate and parse EXTEND and EXTEND2 cells has
+ been replaced with code automatically generated by the "trunnel"
+ utility.
+ - Remove data structures that were used to index or_connection objects by
+ their RSA identity digests. These structures are fully redundant with
+ the similar structures used in the channel abstraction.
+
+ o Minor features (directory authority):
+ - Add a new authority-only AuthDirTestEd25519LinkKeys option (on by
+ default) to control whether authorities should try to probe relays by
+ their Ed25519 link keys. This option will go away in a few
+ releases--unless we encounter major trouble in our ed25519 link
+ protocol rollout, in which case it will serve as a safety option.