[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] Re: Post-Quantum Cryptography in Tor's TLS Layer: Help needed!



Hi Alex

> Key Exchange Groups:
>     - `X25519`: 4827.
>     - `X25519MLKEM768`: 4326.
>     - `secp256r1`: 554.

> Directory Authorities:
>     - 10 out of 10 were reachable.
>     - `TLS13_AES_256_GCM_SHA384` was used by all 10.
>     - `X25519` was used by 5, and `X25519MLKEM768` was used by 5.

> 4326 / 9707 * 100 = 44.57% of the relays support PQC handshakes right
> now.

> If your relay does not yet support the `X25519MLKEM768` group, it
> would be really lovely if you could look into upgrading your TLS
> library (OpenSSL >= 3.5.0 and LibreSSL >= 4.3.0) used by your relay.

The relays are 

since
May 08 22:38:42.281 [notice] Tor 0.4.9.8 running on FreeBSD 
with ... OpenSSL LibreSSL 4.3.1, ...

since
Jun 02 19:17:27.354 [notice] Tor 0.4.9.9 running on FreeBSD 
with ... OpenSSL LibreSSL 4.3.1, ...

but are still listed without PQC.

What should log notice state for a correct PQC key exchange? Or am I
missing something?

Cheers!

Attachment: pgp4Sd0Y9X_Sz.pgp
Description: Digitale Signatur von OpenPGP

_______________________________________________
tor-relays mailing list -- tor-relays@xxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to tor-relays-leave@xxxxxxxxxxxxxxxxxxxx