diff options
| author | Linus Färnstrand <faern@faern.net> | 2023-04-03 11:38:53 +0200 |
|---|---|---|
| committer | Linus Färnstrand <faern@faern.net> | 2023-04-03 11:42:27 +0200 |
| commit | e19a2aec5b838023c12af800bf2afdc2207a61a6 (patch) | |
| tree | 64206f5997caa11d5adada562867513616b886b2 | |
| parent | 7621bb162de0a721697c99d29ca91087803c8fa4 (diff) | |
| download | mullvadvpn-e19a2aec5b838023c12af800bf2afdc2207a61a6.tar.xz mullvadvpn-e19a2aec5b838023c12af800bf2afdc2207a61a6.zip | |
Change WireGuard key rotation interval to 14 days on all platforms
| -rw-r--r-- | CHANGELOG.md | 5 | ||||
| -rw-r--r-- | ios/CHANGELOG.md | 2 | ||||
| -rw-r--r-- | ios/MullvadVPN/TunnelManager/TunnelManager.swift | 2 | ||||
| -rw-r--r-- | mullvad-types/src/wireguard.rs | 2 |
4 files changed, 5 insertions, 6 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index 40d56e949f..63fd3c26c5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -25,9 +25,8 @@ Line wrap the file at 100 chars. Th ## [Unreleased] ### Changed - Update Electron from 21.1.1 to 23.2.0. - -#### Android -- Change Android key rotation interval to 7 days instead of 4. +- Change WireGuard key rotation interval to 14 days. It was 7 days on desktop and 4 days on + Android. ### Deprecated #### Linux diff --git a/ios/CHANGELOG.md b/ios/CHANGELOG.md index faa22d3ac1..6572a6bd59 100644 --- a/ios/CHANGELOG.md +++ b/ios/CHANGELOG.md @@ -24,7 +24,7 @@ Line wrap the file at 100 chars. Th ## [Unreleased] ### Changed -- Changed key rotation interval from 4 to 7 days. +- Changed key rotation interval from 4 to 14 days. - Delay tunnel reconnection after a WireGuard private key rotates. Accounts for latency in key propagation to relays. diff --git a/ios/MullvadVPN/TunnelManager/TunnelManager.swift b/ios/MullvadVPN/TunnelManager/TunnelManager.swift index 247715f879..196561af5e 100644 --- a/ios/MullvadVPN/TunnelManager/TunnelManager.swift +++ b/ios/MullvadVPN/TunnelManager/TunnelManager.swift @@ -28,7 +28,7 @@ private let establishingTunnelStatusPollInterval: TimeInterval = 3 private let establishedTunnelStatusPollInterval: TimeInterval = 5 /// Private key rotation interval (in seconds). -private let privateKeyRotationInterval: TimeInterval = 60 * 60 * 24 * 7 +private let privateKeyRotationInterval: TimeInterval = 60 * 60 * 24 * 14 /// Private key rotation retry interval (in seconds). private let privateKeyRotationFailureRetryInterval: TimeInterval = 60 * 15 diff --git a/mullvad-types/src/wireguard.rs b/mullvad-types/src/wireguard.rs index 8b69af374b..36a560e7b2 100644 --- a/mullvad-types/src/wireguard.rs +++ b/mullvad-types/src/wireguard.rs @@ -7,7 +7,7 @@ use std::{convert::TryFrom, fmt, time::Duration}; use talpid_types::net::wireguard; pub const MIN_ROTATION_INTERVAL: Duration = Duration::from_secs(1 * 24 * 60 * 60); -pub const MAX_ROTATION_INTERVAL: Duration = Duration::from_secs(7 * 24 * 60 * 60); +pub const MAX_ROTATION_INTERVAL: Duration = Duration::from_secs(14 * 24 * 60 * 60); pub const DEFAULT_ROTATION_INTERVAL: Duration = MAX_ROTATION_INTERVAL; /// Whether to enable or disable quantum resistant tunnels when the setting |