[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #6033 [Tor Bridge]: Tor v2 handshake does not work with openssl 1.0.1 (was: 0.2.2.35 can't connect to 0.2.3.15-alpha bridges)

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #6033 [Tor Bridge]: Tor v2 handshake does not work with openssl 1.0.1 (was: 0.2.2.35 can't connect to 0.2.3.15-alpha bridges)
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Sat, 02 Jun 2012 21:56:46 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 02 Jun 2012 17:56:56 -0400
In-reply-to: <046.360404451f03d4f0ed3cd8c300e45ad0@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bug tracker status mails <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.360404451f03d4f0ed3cd8c300e45ad0@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#6033: Tor v2 handshake does not work with openssl 1.0.1
------------------------+---------------------------------------------------
 Reporter:  murble      |          Owner:                     
     Type:  defect      |         Status:  new                
 Priority:  critical    |      Milestone:  Tor: 0.2.2.x-final 
Component:  Tor Bridge  |        Version:  Tor: 0.2.3.15-alpha
 Keywords:              |         Parent:                     
   Points:              |   Actualpoints:                     
------------------------+---------------------------------------------------
Changes (by nickm):

  * priority:  major => critical


Comment:

 Further testing shows that when both sides are using a released version of
 openssl 1.0.1 (in other words, not openssl 1.0.1-beta1), the v2 handshake
 does not complete.

 Please correct me if we get any data to contradict the above.

 This issue is probably either:
   * A bug in OpenSSL 1.0.1, or
   * A problem with how Tor is using OpenSSL 1.0.1.

 To confirm 1.0.1, we could write a trivial SSL client and SSL server using
 openssl 1.0.1, and show that they cannot renegotiate.  I think this might
 be worth looking into, since Libevent's unit tests are seeing some issues
 with OpenSSL 1.0.1 and renegotiation as well, and Libevent doesn't do half
 of the crazy stuff that Tor tries.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/6033#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #6033 [Tor Bridge]: 0.2.2.35 can't connect to 0.2.3.15-alpha bridges
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #5603 [Tor Client]: get_configured_bridge_by_addr_port_digest is not robust
Next by Author: Re: [tor-bugs] #6033 [Tor Bridge]: Tor v2 handshake does not work with openssl 1.0.1
Previous by thread: Re: [tor-bugs] #6033 [Tor Bridge]: 0.2.2.35 can't connect to 0.2.3.15-alpha bridges
Next by thread: Re: [tor-bugs] #6033 [Tor Bridge]: Tor v2 handshake does not work with openssl 1.0.1
Index(es):
- Author
- Thread