diff options
| author | Nick Mathewson <nickm@torproject.org> | 2018-11-09 10:10:25 -0500 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2018-11-09 10:10:25 -0500 |
| commit | 1ba1a1ceca4501b673bfc56b15f1063ce35afe4e (patch) | |
| tree | 355ff85aa5efa422d4264ee49a7d1a90300a9bd2 /changes | |
| parent | 0a824bd88998be66bfd8d55c7200fe3903e19739 (diff) | |
| download | tor-1ba1a1ceca4501b673bfc56b15f1063ce35afe4e.tar.gz tor-1ba1a1ceca4501b673bfc56b15f1063ce35afe4e.zip | |
Always declare groups when building with openssl 1.1.1 APIs
Failing to do on clients was causing TLS 1.3 negotiation to fail.
Fixes bug 28245; bugfix on 0.2.9.15, when we added TLS 1.3 support.
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/bug28245 | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/changes/bug28245 b/changes/bug28245 new file mode 100644 index 0000000000..d7e6deb810 --- /dev/null +++ b/changes/bug28245 @@ -0,0 +1,6 @@ + o Major bugfixes (OpenSSL, portability): + - Fix our usage of named groups when running as a TLS 1.3 client in + OpenSSL 1.1.1. Previously, we only initialized EC groups when running + as a server, which caused clients to fail to negotiate TLS 1.3 with + relays. Fixes bug 28245; bugfix on 0.2.9.15 when TLS 1.3 support was + added. |