[tor-bugs] #6033 [Tor Bridge]: Tor v2 handshake does not work with openssl 1.0.1
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Sat Jun 2 22:37:40 UTC 2012
#6033: Tor v2 handshake does not work with openssl 1.0.1
------------------------+---------------------------------------------------
Reporter: murble | Owner:
Type: defect | Status: new
Priority: critical | Milestone: Tor: 0.2.2.x-final
Component: Tor Bridge | Version: Tor: 0.2.3.15-alpha
Keywords: | Parent:
Points: | Actualpoints:
------------------------+---------------------------------------------------
Comment(by nickm):
It appears that renegotiation in openssl 1.0.1 is broken when you use TLS
1.1 or TLS 1.2. To reproduce: Run openssl s_server. Run openssl
s_client. Type "R" into the s_client, and hit enter.
To prevent this from messing up the Tor network, we should disable TLS 1.1
and TLS 1.2 when they are present, until some version of OpenSSL
implements them correctly. To fix this, we should report it to
appropriate OpenSSL devs.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/6033#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list