[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0

Subject: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 15 May 2015 16:03:02 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 15 May 2015 12:03:14 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#16034: Drop support for OpenSSL < 1.0
--------------------------------------+------------------------------------
 Reporter:  nickm                     |          Owner:
     Type:  enhancement               |         Status:  new
 Priority:  normal                    |      Milestone:  Tor: 0.2.7.x-final
Component:  Tor                       |        Version:
 Keywords:  tor-client tor-relay tls  |  Actual Points:
Parent ID:                            |         Points:
--------------------------------------+------------------------------------
 OpenSSL 1.0.0 was released over five years ago.  The only OS I'm aware of
 that ships an older version of OpenSSL is OSX, where sensible developers
 already install their own OpenSSL using Homebrew or something.  Can we
 finally kill off the ability to use OpenSSL 0.9.8 with Tor?

 Doing so would let us:
    * Require ECDHE,
    * Require SSL_export_keying_material for proposal 244
    * Drop all kinds of backward compatibility workarounds
    * Have tor_tls_session_secret_cb always work.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16034>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #16013 [Tor]: Assertion ENTRY_TO_CONN(conn)->state == AP_CONN_STATE_CIRCUIT_WAIT failed in circuit_get_open_circ_or_launch at circuituse.c:1835
Next by Author: [tor-bugs] #16035 [Tor]: Implement proposal 244: RFC5705 for exporting key material in tls handshake
Previous by thread: Re: [tor-bugs] #12498 [Tor]: Implement ed25519 identity keys (prop 220)
Next by thread: Re: [tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0
Index(es):
- Author
- Thread