Received: by 2002:ac0:a5a7:0:0:0:0:0 with SMTP id m36-v6csp3347068imm; Mon, 13 Aug 2018 10:03:27 -0700 (PDT) X-Google-Smtp-Source: AA+uWPx/VzKy8CCVRRRkJj3OE7RXmq8mIBgB0PIymszQ8WPgFrpsI/C0Tfw1SLKXXjcmUu7SHUUW X-Received: by 2002:a62:4796:: with SMTP id p22-v6mr14824106pfi.170.1534179807645; Mon, 13 Aug 2018 10:03:27 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1534179807; cv=none; d=google.com; s=arc-20160816; b=xsgXLKh6ll88NGpiu2LVhRJtkpCeux+qZ28LBgc5GKRfVVQ0jlpNC+XnENc1JoVz7N YObPxIcn6kJFMtZLEpVQvS+oGOjGjAwJw6GvYHnNOm3aKRYyEul7jNwn8k6ME+Rngnfb kX6vR/RPOwiPY99KnLEXF7Q/mC8ran78rXYk4nnVgimr//Prqg1SIf3DYBR9w911z/Ji 7DB8BKMaMqQUof62dOggSIcPI64/n9uLe+18xF1yTZ+JKtleCn/1EjbCyhhhnU8lAF/i VIIgHfeKjJjQXXHqzGCgiCGJsOsDoCrC4/TkQMXFB8ivG2oPhWyn5A9jkW5P+3mBGKuD DI9g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:arc-authentication-results; bh=HC42rvZ+deJL+sHDi0pzdbcnexqkdUj9oP3ftCBPiq0=; b=dYxlUyiJWHoS4KErM5eZ2VhqWuaQepMeCwhj408ZH2afvsppHh0L+ph19n9wjiHxEK PeF2nt23qco5jGsO/HfE0Z7KIyH3vcl+cDHJoZaEa6E2iWKJ5XLXndT34DDXxJ6r7vMJ eIoxZOyKUFWslZXcweklbbbG9EGp1JNpNtJ6lLbe/QbsY0ZzkM2uHwc5DEE7ZV5UOSas oS6JM0Ki9Q0QLrHwbwU6hqHxNOLg6s7MCkHfnAv2Y7RHpF4ZlLMc1jdChSySHBOtu3x6 Z5QtyAWm5PApYaLlQNBk66nz/HmwYPkFBACuHrBncyQ0hUA+e/n41FhppAXWEsxHu2ke qttw== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id l127-v6si19584850pfc.135.2018.08.13.10.03.12; Mon, 13 Aug 2018 10:03:27 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729902AbeHMSgy (ORCPT + 99 others); Mon, 13 Aug 2018 14:36:54 -0400 Received: from wtarreau.pck.nerim.net ([62.212.114.60]:32827 "EHLO 1wt.eu" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1729191AbeHMSgy (ORCPT ); Mon, 13 Aug 2018 14:36:54 -0400 Received: (from willy@localhost) by pcw.home.local (8.15.2/8.15.2/Submit) id w7DFrwh7014771; Mon, 13 Aug 2018 17:53:58 +0200 Date: Mon, 13 Aug 2018 17:53:58 +0200 From: Willy Tarreau To: James Bottomley Cc: "Jason A. Donenfeld" , linux-kernel@vger.kernel.org, netdev@vger.kernel.org, davem@davemloft.net, linux-crypto@vger.kernel.org Subject: Re: [PATCH v1 0/3] WireGuard: Secure Network Tunnel Message-ID: <20180813155358.GK14633@1wt.eu> References: <20180731191102.2434-1-Jason@zx2c4.com> <1534174811.7872.3.camel@HansenPartnership.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1534174811.7872.3.camel@HansenPartnership.com> User-Agent: Mutt/1.6.1 (2016-04-27) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Aug 13, 2018 at 08:40:11AM -0700, James Bottomley wrote: > Could we please build planning for this crypto failure day into > wireguard now rather than have to do it later? It doesn't need to be > full cipher agility, it just needs to be the ability to handle multiple > protocol versions ... two should do it because that gives a template to > follow (and test version to try to find bugs in the implementation). It's also what provides a *real* upgrade path to future versions : before deploying you need something which works, and the only way to get something working at a large scale is to have early adopters. Those willing to deploy a beta version will not do it if it requires to lose all their users and possibly to make rollbacks impossible. At least for this it's important to support an optionnal new version on top of the existing one (i.e. prod + beta together). Cheers, Willy