From 1272bd0db5ce44b76a8fb7aa50eb58fbcb66ce13 Mon Sep 17 00:00:00 2001
From: Mike Perry <mikeperry-git@torproject.org>
Date: Thu, 26 May 2022 20:01:09 +0000
Subject: Describe a potential (rare) distringuisher in idle circuits.

In the rare event that a user resumes activity after a period between the
"reduced connection timeout" and the full value, and that user has not set
reduced padding, this is a distinguisher on circuits that have been held idle
and open for that long.
---
 padding-spec.txt | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/padding-spec.txt b/padding-spec.txt
index 262e88f..ea16d8b 100644
--- a/padding-spec.txt
+++ b/padding-spec.txt
@@ -306,6 +306,9 @@ Table of Contents
         serves as a reasonable default regardless of implementation.
       - For all use cases, reduced padding clients use half the consensus
         value.
+      - Implementations MAY mark circuits held open past the reduced padding
+        quantity (half the consensus value) as "not to be used for streams",
+        to prevent their use from becoming a distinguisher.
       - Default: 1800
 
     * nf_pad_before_usage
-- 
cgit v1.2.3-54-g00ecf