[tor-bugs] #27286 [Core Tor/Tor]: Update recommended and required protocol versions for "LinkAuth"

Tor Bug Tracker & Wiki blackhole at torproject.org
Fri Aug 24 16:29:07 UTC 2018 

#27286: Update recommended and required protocol versions for "LinkAuth"
-------------------------------------------------+-------------------------
 Reporter:  nickm                                |          Owner:  nickm
     Type:  enhancement                          |         Status:
                                                 |  merge_ready
 Priority:  High                                 |      Milestone:  Tor:
                                                 |  0.3.5.x-final
Component:  Core Tor/Tor                         |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  032-backport 033-backport            |  Actual Points:
  034-backport                                   |
Parent ID:  #26631                               |         Points:
 Reviewer:  teor                                 |        Sponsor:
                                                 |  Sponsor8
-------------------------------------------------+-------------------------

Comment (by nickm):

 Replying to [comment:6 arma]:
 > To make sure I understand: (a) does that mean that nss-based Tor clients
 won't be able to establish a link connection to 0.2.9 relays or bridges?
 Since quite a few of the big relays are still on 0.2.9 -- including guards
 -- that limitation could be a big deal. Specifically, of the 1919 guards,
 it looks like 345 of them are on 0.2.9. I guess we figure nss-based
 clients won't be that relevant for another couple of years, by which point
 0.2.9 will be dying away?

 It is correct that with NSS, we can't connect to 0.2.9-based bridges or
 guards.

 > And (b) it seems weird to say that we support a version if, when you run
 it, it tells you to upgrade. I guess the choice is between "be able to
 implement newer client variants and not be disobeying our spec" vs "have
 existing versions that we claim to support tell people that they need to
 upgrade"?

 We support 0.2.9, but we wish people running it would/could upgrade.  I
 don't see a contradiction there: we'll keep it working and keep fixing
 important bugs in it, but it is subject to inherent limitations (RSA1024)
 that mean it sure would be nice for people to upgrade.

 That said...

 > If it really is a choice between these two, is there any rush to push
 through the "start warning" part?

 I guess we could refrain from adding 3 to the recommended list, so that
 neither of the two protocols is described as recommended or required.  We
 could wait at least until 0.3.5 (which will be the next LTS) is out.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/27286#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list