[tor-bugs] #16034 [Tor]: Drop support for OpenSSL < 1.0

Tor Bug Tracker & Wiki blackhole at torproject.org
Fri May 15 16:03:02 UTC 2015


#16034: Drop support for OpenSSL < 1.0
--------------------------------------+------------------------------------
 Reporter:  nickm                     |          Owner:
     Type:  enhancement               |         Status:  new
 Priority:  normal                    |      Milestone:  Tor: 0.2.7.x-final
Component:  Tor                       |        Version:
 Keywords:  tor-client tor-relay tls  |  Actual Points:
Parent ID:                            |         Points:
--------------------------------------+------------------------------------
 OpenSSL 1.0.0 was released over five years ago.  The only OS I'm aware of
 that ships an older version of OpenSSL is OSX, where sensible developers
 already install their own OpenSSL using Homebrew or something.  Can we
 finally kill off the ability to use OpenSSL 0.9.8 with Tor?

 Doing so would let us:
    * Require ECDHE,
    * Require SSL_export_keying_material for proposal 244
    * Drop all kinds of backward compatibility workarounds
    * Have tor_tls_session_secret_cb always work.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16034>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list