On Mon, Aug 13, 2018 at 08:40:11AM -0700, James Bottomley wrote: > Could we please build planning for this crypto failure day into > wireguard now rather than have to do it later? It doesn't need to be > full cipher agility, it just needs to be the ability to handle multiple > protocol versions ... two should do it because that gives a template to > follow (and test version to try to find bugs in the implementation). It's also what provides a *real* upgrade path to future versions : before deploying you need something which works, and the only way to get something working at a large scale is to have early adopters. Those willing to deploy a beta version will not do it if it requires to lose all their users and possibly to make rollbacks impossible. At least for this it's important to support an optionnal new version on top of the existing one (i.e. prod + beta together). Cheers, Willy