Tell openssl to build its TLS contexts with security level 1

Fixes bug 27344, where we'd break compatibility with old tors by rejecting RSA1024 and DH1024.
author: Nick Mathewson <nickm@torproject.org> 2018-09-07 08:57:14 -0400
committer: Nick Mathewson <nickm@torproject.org> 2018-09-07 09:15:06 -0400
commit: 2ec88a2a6ddef1b916425438b9648879a977b120 (patch)
tree: 1d43e91f803355e7612e1461dd2b653bfc2c7410 /changes
parent: 9fcb3ef787285fcb116d07fc2ff563e80a0c8a0e (diff)
download: tor-2ec88a2a6ddef1b916425438b9648879a977b120.tar.gz
tor-2ec88a2a6ddef1b916425438b9648879a977b120.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/changes/bug27344 b/changes/bug27344
new file mode 100644
index 0000000000..9f66855586
--- /dev/null
+++ b/changes/bug27344
@@ -0,0 +1,4 @@
+  o Minor features (compatibility):
+    - Tell OpenSSL to maintain backward compatibility with previous
+      RSA1024/DH1024 users in Tor. With OpenSSL 1.1.1-pre6, these ciphers
+      are disabled by default. Closes ticket 27344.
author	Nick Mathewson <nickm@torproject.org>	2018-09-07 08:57:14 -0400
committer	Nick Mathewson <nickm@torproject.org>	2018-09-07 09:15:06 -0400
commit	2ec88a2a6ddef1b916425438b9648879a977b120 (patch)
tree	1d43e91f803355e7612e1461dd2b653bfc2c7410 /changes
parent	9fcb3ef787285fcb116d07fc2ff563e80a0c8a0e (diff)
download	tor-2ec88a2a6ddef1b916425438b9648879a977b120.tar.gz tor-2ec88a2a6ddef1b916425438b9648879a977b120.zip